There are at least 11 unpatched security vulnerabilities in the Linux kernel (according to Secunia).
Please fix these. Some of them are many years old...
* Linux Kernel CHRP Denial of Service Security Issue
* Linux Kernel Multiple Vulnerabilities
* Linux Kernel Various Vulnerabilities
* Linux Kernel SMP "/proc" Race Condition Denial of Service
* Linux Kernel perfmon Local Denial of Service Vulnerability
* Linux Kernel IP ID Value Increment Weakness
* Linux Kernel Socket Data Buffering Denial of Service
* Linux Kernel URB and IPv6 Flowlabel Handling Denial of Service
* Linux Kernel "syscall()" Argument Handling Denial of Service
* Linux Kernel "is_hugepage_only_range()" Denial of Service
* Linux Kernel Multiple Vulnerabilities
* Linux Kernel Page Fault Handler Privilege Escalation
* Linux Kernel Multiple Vulnerabilities
* Linux Kernel Binary Format Loaders Privilege Escalation
* Linux Kernel Multiple Vulnerabilities
* Linux Kernel Local DoS and Memory Content Disclosure Vulnerabilities
* Linux Kernel smb Filesystem Implementation Multiple Vulnerabilities
* Linux Kernel ELF Binary Loader Setuid File Handling Vulnerabilities
* Linux Kernel ide-cd SG_IO Functionality Permission Bypass Vulnerability
* Linux Kernel NFS and ptmx Denial of Service Vulnerabilities
* Linux Kernel File Offset Pointer Handling Memory Disclosure Vulnerability
* Linux Kernel IEEE 1394 Driver Integer Overflow Vulnerabilities
* Linux Kernel Framebuffer Driver Direct Userspace Access Vulnerability
See Secunia for more information:
* http://secunia.com/product/2719/?task=advisories
again?
haven't we had that posting some months ago? there were log entries in the kernel sources about every of this errors being closed (which was expectable because kernel people are no idiots), just secunia didn't reclassify the bugs. one could argue that secunia didn't do its job for years, not the maintainers. and of course the vulns still exists in the old kernels: if you download or run an old kernel, you keep the vuln.