Gnoppix Security Update GSA-6306-1: Critical Linux Kernel Flaw Patched
Gnoppix 23/25 and 25 users must immediately apply a security update addressing a critical vulnerability in the Linux kernel. The flaw could allow local attackers to escalate privileges.
## Vulnerability Details
The issue stems from multiple weaknesses in the Netfilter subsystem, which is used for network packet filtering and firewall rules.
- Netfilter use-after-free flaw. A race condition in the connection tracking system (conntrack) can lead to memory reuse after it has been freed.
- Potential for full system compromise. An unprivileged attacker with local access can exploit this to gain root privileges.
## Affected Systems and Update Information
- Gnoppix 23/25 (bookworm). The update is included in kernel version 6.1.133-1.
- Gnoppix 25 (trixie). The update is included in kernel version 6.12.22-1.
Action required. Immediate system reboot is mandatory after applying the updated kernel package to activate the fix.
## Background and Classification
This update resolves a critical security vulnerability with a high severity rating. It is part of Gnoppix’s regular security maintenance. - Please update your systems.