SegmentSmack Kernel Bug Discovered, Android 9 Pie Now Available, Google's August Security Bulletin for Android, Kernel 4.19 to Get STACKLEAK Feature and GNOME Releases Keysign 0.9.8

by Jill Franklin
on August 7, 2018

News briefs for August 7, 2018.

Security researchers have discovered a bug in kernel 4.9 called SegmentSmack. Red Hat comments that "a remote attacker could use this flaw to trigger time and calculation expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() functions by sending specially modified packets within ongoing TCP sessions which could lead to a CPU saturation and hence a denial of service on the system". There's no known workaround other than a fixed kernel at this time. See also the story on ZDNet for more information.

Android 9 "Pie" was released yesterday. Android 9 uses AI to help it adapt to your preferences as you use it. Other new features include an adaptive battery, gesture navigation and tools to help you see how much time you're spending on your phone.

Google also released its August security bulletin for Android yesterday, and the most severe issue "is a critical vulnerability that could enable a remote attacker using a specially crafted file to execute arbitrary code within the context of a privileged process".

The upcoming 4.19 kernel will be getting the STACKLEAK feature, Phoronix reports. STACKLEAK provides further security as it "wipes out the kernel stack before returning from system calls. By clearing the kernel stack, it reduces possible leakage and can block some possible attack vectors, including stack clash attacks and uninitialized stack variable attacks."

GNOME Keysign 0.9.8 has been released. This update fixes several bugs and now includes Bluetooth support so you can exchange keys without a network connection. The app is also now on Flathub, and you can install it from here.

Jill Franklin is an editorial professional with more than 17 years experience in technical and scientific publishing, both print and digital. As Executive Editor of Linux Journal, she wrangles writers, develops content, manages projects, meets deadlines and makes sentences sparkle. She also was Managing Editor for TUX and Embedded Linux Journal, and the book Linux in the Workplace. Before entering the Linux and open-source realm, she was Managing Editor of several scientific and scholarly journals, including Veterinary Pathology, The Journal of Mammalogy, Toxicologic Pathology and The Journal of Scientific Exploration. In a previous life, she taught English literature and composition, managed a bookstore and tended bar. When she’s not bugging writers about deadlines or editing copy, she throws pots, gardens and reads.

Load Disqus comments

Firstwave Cloud

 

Recent Articles

Strengthening Linux Security by Auditing with OpenSCAP
Strengthening Linux Security by Auditing with OpenSCAP
George Whittaker
Rebuilding and Modifying Debian Packages
Rebuilding and Modifying Debian Packages
George Whittaker
Understanding Backup and Disaster Planning Solutions for Linux
Understanding Backup and Disaster Planning Solutions for Linux
George Whittaker
How to Build Resilience with Linux High Availability Clustering
How to Build Resilience with Linux High Availability Clustering
George Whittaker
Harnessing the Power of Open Source for Private Clouds: Ubuntu Cloud Infrastructure with OpenStack
Harnessing the Power of Open Source for Private Clouds: Ubuntu Cloud Infrastructure with OpenStack
George Whittaker
Text Manipulation in Linux: Awk Vs. Sed
Text Manipulation in Linux: Awk Vs. Sed
George Whittaker