New Linux Kernel Vulnerablility

Recently a new Linux Kernel vulnerability has been detected. The person who found the exploit will reveal the exploit code at the end of July.
This Exploit allows hackers to intrude Linux Systems with elevated privileges, known as StackRot.
Vulnerable Kernels are currently 6.1.x - 6.4.x
Hope there will be quick solutions here for endeavour…

Read more here:

A patch is available for the affected stable kernels since July 1st and full details about the issue along with a complete exploit code are expected by the end of the month.

These patches were subsequently backported to stable kernels (6.1.37, 6.3.11, and 6.4.1), effectively resolving the “Stack Rot” bug on July 1st," the researcher clarified.

https://www.bleepingcomputer.com/news/security/new-stackrot-linux-kernel-flaw-allows-privilege-escalation/

The latest linux-lts 6.1.38-1 and linux 6.4.2.arch1-1 should already be patched against this vulnerability.

EndeavourOS doesn’t ship their own kernels. The kernels and almost everything else, apart from a few scripts and applications, come directly from Arch Linux’ repositories.

2 Likes

Fix

(taken from here: https://github.com/lrh2000/StackRot)

I reported this vulnerability to the Linux kernel security team on June 15th. Following that, the process of addressing this bug was led by Linus Torvalds. Given its complexity, it took nearly two weeks to develop a set of patches that received consensus.

On June 28th, during the merge window for Linux kernel 6.5, the fix was merged into Linus’ tree. Linus provided a comprehensive merge message to elucidate the patch series from a technical perspective.

These patches were subsequently backported to stable kernels (6.1.37, 6.3.11, and 6.4.1), effectively resolving the “Stack Rot” bug on July 1st.

Edit pebcak was quicker :wink:

2 Likes