Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror

Submission Summary: 0 pending, 4 declined, 2 accepted (6 total, 33.33% accepted)

Security

Submission + - Linux CIFS vulnerability discovered->

jnetsurfer writes: A vulnerability in the CIFS client in the Linux Kernel code makes it possible for a manipulated SMB server to cause users systems to crash or be compromised. The problem is caused by a buffer in the CIFSTCon function in fs/cifs/connect.c file being too small. This function is used when the server responds to a connection request for a resource, known as a Tree Connect.
Link to Original Source

You cannot have a science without measurement. -- R. W. Hamming

Working...