Major flaw found in Wi-Fi Linux

By
Follow google news

Researcher held back news until patch was released.

Major flaw found in Wi-Fi Linux
A major flaw that imperils Linux users of Wi-Fi has been found in the widely-used MadWiFi Linux kernel device driver for Atheros-based Wi-Fi chipsets.

The kernel stack-overflow bug could be used to take control of computers, even if they are not on a Wi-Fi network.

"You may be vulnerable if you do not manually patch your MadWi-Fi driver," Laurent Butti, a researcher from France Telecom Orange who discovered the issue, told the Washington Post.

Butti gave details of the flaw at last month's Black Hat Briefing convention, where security researchers and hackers meet to exchange ideas and information.

But the news was held back from general release until a patch had been built and distributed.

Butti found the flaw by 'fuzzing' the code. This involves feeding the software random data until it crashes and reveals a flaw.

He is now turning his attention to WiMax and wireless USB.

Add iTnews as your trusted source

Add iTnews As Your Trusted Source Add iTnews As Your Trusted Source
Got a news tip for our journalists? Share it with us anonymously here.
Copyright ©v3.co.uk
Tags:
flawfoundinlinuxmajorsecuritywifi

Sponsored Whitepapers

Agile in the AI Era: why projects still fail
Agile in the AI Era: why projects still fail
When Technology Becomes the Blocker: Unlocking Real Outcomes from AI and Cloud
When Technology Becomes the Blocker: Unlocking Real Outcomes from AI and Cloud
High-volume data sources for AI-driven security analytics
High-volume data sources for AI-driven security analytics
How healthcare organisations can get more value from cloud
How healthcare organisations can get more value from cloud
1 in 3 companies lose SaaS data. Here’s how to prevent it
1 in 3 companies lose SaaS data. Here’s how to prevent it

Events

Most Read Articles

Anthropic opens Claude Mythos Preview AI program to Australia

Anthropic opens Claude Mythos Preview AI program to Australia
Defence says Palantir is "sandboxed" in its environment

Defence says Palantir is "sandboxed" in its environment
Services Australia describes fraud, debt-related machine learning use cases

Services Australia describes fraud, debt-related machine learning use cases
Microsoft backs down on legal threats against 0day disclosing researchers

Microsoft backs down on legal threats against 0day disclosing researchers
techpartner.news logo
Sydney-based AI-cloud waste startup raises $3m
Sydney-based AI-cloud waste startup raises $3m
Brennan uses NiCE to modernise its contact centre
Brennan uses NiCE to modernise its contact centre
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Interactive introduces private cloud platform
Interactive introduces private cloud platform
Digital61 expands cybersecurity portfolio
Digital61 expands cybersecurity portfolio

Log In

  |  Forgot your password?