[GTALUG] Federal agency warns critical Linux vulnerability being actively exploited
D. Hugh Redelmeier
hugh at mimosa.com
Tue Jun 4 08:01:20 EDT 2024
| From: Steve Litt via talk <talk at gtalug.org>
| 1) Removed the nftables package from my computer
As I understand it, the bug involves the kernel nf_tables features.
That is partly implemented by the kernel module
kernel/net/netfilter/nf_tables.ko.xz
The userland package nftables isn't involved.
Removing it won't do any good.
In general, a local priviledge escalation bug doesn't depend on userland
code (unless the userland code is setuid). More clearly: a particular
exploitation may use userland code, but it could always bring its own.
| Like Ron said, thanks!
You mean: Like Hugh said, thanks Ron!
More information about the talk
mailing list