A race condition was found in the way the Linux kernel's memory subsystem handled the copy-on-write (COW) breakage of private read-only memory mappings.An unprivileged local user could use this flaw to gain write access to otherwise read-only memory mappings and thus increase their privileges on the system.By default, Ksplice Uptrack will reinstall rebootless updates during the boot process. If you'd like to see it for your distribution, please contact us.

To apply Ksplice updates, just run reflects the updated running kernel, as shown in Listing 7: Listing 7.

Ksplice Uptrack Alert Icon You can click the icon to view the available updates, as shown in Figure 2: Figure 2.

New Updates Available Click the Install all updates button to start the update process.

This could be abused by an attacker to modify existing setuid files with instructions to elevate privileges.

An exploit using this technique has been found in the wild. This flaw allows an attacker with a local system account to modify on-disk binaries, bypassing the standard permission mechanisms that would prevent modification without an appropriate permission set.

To enable autoinstall, set flag during installation. It is a scalable way to ensure that updates get installed quickly as they become available, regardless of when they are released.

Please note that enabling autoinstall does not mean the Ksplice Uptrack client itself is automatically upgraded.

A progress bar shows you the updates as they are being installed, as shown in Figure 3: Figure 3.

Progress Bar During Update When the process is complete, the update list will look like Figure 4: Figure 4.

