[olug] Linux Kernel 'sock_sendpage()' NULL Pointer Dereference

Garrity, Christopher Christopher.Garrity at networksolutions.com
Fri Jan 22 12:30:31 UTC 2010


If you got a host with 2 or more processors and you're doing http or ftp
hosting, you might what to patch your kernel ->
http://www.securityfocus.com/bid/36038/info

An attacker can upload an exploit for the above bug via something like
-> http://www.securityfocus.com/bid/374

So, allow_url_include should be Off in php.ini (the default.)




More information about the OLUG mailing list