Latest Linux Kernel news

Snowblind malware abuses Android security feature to bypass security

A novel Android attack vector from a piece of malware tracked as Snowblind is abusing a security feature to bypass existing anti-tampering protections in apps that handle sensitive user data.
- Bill Toulas
- June 26, 2024
- 09:33 AM
- 1
CISA warns of actively exploited Linux privilege elevation flaw

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has added two vulnerabilities in its Known Exploited Vulnerabilities (KEV) catalog, including a Linux kernel privilege elevation flaw.
- Bill Toulas
- May 31, 2024
- 03:30 PM
- 0
Almost 40% of Ubuntu users vulnerable to new privilege elevation flaws

Two Linux vulnerabilities introduced recently into the Ubuntu kernel create the potential for unprivileged local users to gain elevated privileges on a massive number of devices.
- Bill Toulas
- July 26, 2023
- 02:51 PM
- 0
New StackRot Linux kernel flaw allows privilege escalation

A new privilege escalation vulnerability impacting Linux was discovered, enabling unprivileged local users to compromise the kernel and elevate their rights to attain root-level access.
- Bill Toulas
- July 06, 2023
- 03:27 AM
- 1
New Linux kernel NetFilter flaw gives attackers root privileges

A new Linux NetFilter kernel flaw has been discovered, allowing unprivileged local users to escalate their privileges to root level, allowing complete control over a system.
- Bill Toulas
- May 09, 2023
- 12:49 PM
- 0
Linux Kernel 5.19.12 bug could damage Intel laptop displays

Linux users have reported seeing weird white flashes and rapid blinking on their Intel laptop displays after upgrading to Linux kernel version 5.19.12, leading to warnings that the bug may damage displays.
- Bill Toulas
- October 06, 2022
- 11:07 AM
- 1
Linux kernel bug can let hackers escape Kubernetes containers

A vulnerability affecting Linux kernel and tracked as CVE-2022-0185 can be used to escape Kubernetes containers, giving access to resources on the host system.
- Bill Toulas
- January 25, 2022
- 11:56 AM
- 0
Linux bans University of Minnesota for committing malicious code

Linux kernel project maintainers have imposed a ban on the University of Minnesota (UMN) from contributing to the open-source Linux project after a group of UMN researchers were caught submitting a series of malicious code commits, or patches that deliberately introduced security vulnerabilities in the official Linux project.
- Ax Sharma
- April 21, 2021
- 01:08 PM
- 1
Linux Kernel 5.6 Source Tree Includes WireGuard VPN

The lean-coded, fast, modern, and secure WireGuard VPN protocol has made it into the Linux kernel as Linus Torvalds merged it into the git repository for version 5.6.
- Ionut Ilascu
- January 30, 2020
- 03:34 AM
- 0
Multiple Linux and FreeBSD DoS Vulnerabilities Found by Netflix

A denial of service flaw found in the way recent Linux and FreeBSD kernels handle TCP networking can be exploited by remote attackers to trigger a kernel panic in vulnerable systems.
- Sergiu Gatlan
- June 17, 2019
- 04:18 PM
- 0
Linux Kernel Spectre Protection Changes to Boost App Performance

The Speculative Store Bypass Disable (SSBD) bit will be toggled off for programs that do not require the extra protection against the Spectre Variant 4 hardware security issue according to a proposed Linux kernel patch
- Sergiu Gatlan
- January 31, 2019
- 12:23 PM
- 0
Linus Torvalds Apologizes, Takes Break to Patch Behavior

In a mailing list message on Sunday, Linus Torvalds apologizes for a lifelong of outbursts and snappy retorts at developers that may have driven them away from the Linux project.
- Ionut Ilascu
- September 17, 2018
- 07:10 AM
- 8
Two DDoS Friendly Bugs Fixed in Linux Kernel

Maintainers behind the Linux kernel have rolled out patches in the past weeks for two bugs that are just ideal for causing havoc via DDoS attacks.
- Catalin Cimpanu
- August 16, 2018
- 11:41 AM
- 0
LKRG: Linux to Get a Loadable Kernel Module for Runtime Integrity Checking

Members of the open source community are working on a new security-focused project for the Linux kernel. Named Linux Kernel Runtime Guard (LKRG), this is a loadable kernel module that will perform runtime integrity checking of the Linux kernel.
- Catalin Cimpanu
- February 04, 2018
- 06:33 AM
- 1
Linux Has a USB Driver Security Problem

USB drivers included in the Linux kernel are rife with security flaws that in some cases can be exploited to run untrusted code and take over users' computers.
- Catalin Cimpanu
- November 07, 2017
- 06:05 PM
- 9
Patch Available for Linux Kernel Privilege Escalation

The Linux kernel team has released a patch to fix a security bug that could allow an attacker to execute code with elevated privileges.
- Catalin Cimpanu
- October 16, 2017
- 08:07 AM
- 2
Linux Kernel Bug Reclassified as Security Issue After Two Years

Multiple Linux distros are issuing security updates for OS versions that still use an older kernel branch after it recently came to light that a mild memory bug was in reality much worse, and the bug was recently categorized as a security flaw.
- Catalin Cimpanu
- September 27, 2017
- 04:15 PM
- 2
First Android Malware Discovered Using Dirty COW Exploit

Security researchers from Trend Micro published a report detailing a new malware family named ZNIU that uses Dirty COW to root devices and plant a backdoor.
- Catalin Cimpanu
- September 26, 2017
- 04:35 AM
- 0
Another Years-Old Flaw Fixed in the Linux Kernel

The Linux team has patched a "dangerous" vulnerability in the Linux kernel that allowed attackers to elevate their access rights and crash affected systems.
- Catalin Cimpanu
- March 16, 2017
- 10:38 AM
- 0
Linux Project Patches 11-Year-Old Security Flaw That Gives Attackers Root Access

The Linux team has patched a security flaw in the Linux kernel that can be exploited to gain root-level code execution rights from a low-privileged process.
- Catalin Cimpanu
- February 23, 2017
- 04:56 AM
- 0