Establishing Digital Trust: Don't Sacrifice Security for Convenience
It's a familiar refrain. A new Linux kernel is released and a short time later it's augmented by a point release that addresses a potential security vulnerability.
The new 188.8.131.52 Linux kernel point release follows the 2.6.16 release by a week and includes various bug fixes, as well as a fix for a potential security vulnerability.
The potential vulnerability is called the "Linux Kernel IP ID Value Increment Weakness" by security firm Secunia and carries a "not-critical" rating.https://o1.qnsr.com/log/p.gif?;n=203;c=204650394;s=9477;x=7936;f=201801171506010;u=j;z=TIMESTAMP;a=20392931;e=iThe "weakness" could have potentially allowed for unauthorized system information disclosure, as well as a security restriction bypass. The problem is due to an error in the "ip_push_pending_frames()" function, which has been corrected in the new point release.