Tag Archives: kernel

High-severity vulnerability in Linux caused by a single errant character

When a verdict map is deleted from memory, catchall elements are deactivated and a chain’s reference counter is decremented. When errors occur the deletion can be reversed and the counter incremented. CVE-2026-53111 allows for that process to be altered. As a result, the exploit can decrement the variable an arbitrary number of times and then… Read More: High-severity vulnerability in Linux caused by a single errant character »

Windows 0-day was exploited by North Korea to install advanced rootkit

Getty Images reader comments 32 A Windows zero-day vulnerability recently patched by Microsoft was exploited by hackers working on behalf of the North Korean government so they could install custom malware that’s exceptionally stealthy and advanced, researchers reported Monday. The vulnerability, tracked as CVE-2024-38193, was one of six zero-days—meaning vulnerabilities known or actively exploited before… Read More: Windows 0-day was exploited by North Korea to install advanced… »

Federal agency warns critical Linux vulnerability being actively exploited

Getty Images reader comments 40 The US Cybersecurity and Infrastructure Security Agency has added a critical security bug in Linux to its list of vulnerabilities known to be actively exploited in the wild. The vulnerability, tracked as CVE-2024-1086 and carrying a severity rating of 7.8 out of a possible 10, allows people who have already… Read More: Federal agency warns critical Linux vulnerability being actively exploited »

Buffer overruns, license violations, and bad code: FreeBSD 13’s close call

Enlarge / FreeBSD’s core development team, for the most part, does not appear to see the need to update their review and approval procedures. (credit: Aurich Lawson (after KC Green)) At first glance, Matthew Macy seemed like a perfectly reasonable choice to port WireGuard into the FreeBSD kernel. WireGuard is an encrypted point-to-point tunneling protocol,… Read More: Buffer overruns, license violations, and bad code: FreeBSD 13’s close… »