Tag Archives: Linux

High-severity vulnerability in Linux caused by a single errant character

When a verdict map is deleted from memory, catchall elements are deactivated and a chain’s reference counter is decremented. When errors occur the deletion can be reversed and the counter incremented. CVE-2026-53111 allows for that process to be altered. As a result, the exploit can decrement the variable an arbitrary number of times and then… Read More: High-severity vulnerability in Linux caused by a single errant character »

Linux bitten by second severe vulnerability in as many weeks

Both privilege escalation vulnerabilities stem from bugs in the kernel’s handling of page caches stored in memory, allowing untrusted users to modify them. They target caches in networking and memory-fragment handling components. Specifically, CVE-2026-43284 attacks the esp4 and esp6 () processes, and CVE-2026-43500 zeroes in on rxrpc. Last week’s CopyFail exploited faulty page caching in… Read More: Linux bitten by second severe vulnerability in as many weeks »

The most severe Linux threat to surface in years catches the world flat-footed

Publicly released exploit code for an effectively unpatched vulnerability that gives root access to virtually all releases of Linux is setting off alarm bells as defenders scramble to ward off severe compromises inside data centers and on personal devices. The vulnerability and exploit code that exploits it were released Wednesday evening by researchers from security… Read More: The most severe Linux threat to surface in years catches… »

Never-before-seen Linux malware is “far more advanced than typical”

Researchers have discovered a never-before-seen framework that infects Linux machines with a wide assortment of modules that are notable for the range of advanced capabilities they provide to attackers. The framework, referred to as VoidLink by its source code, features more than 30 modules that can be used to customize capabilities to meet attackers’ needs… Read More: Never-before-seen Linux malware is “far more advanced than typical” »

As the Kernel Turns: Rust in Linux saga reaches the “Linus in all-caps” phase

“Put another way: the ‘nobody is forced to deal with Rust’ does not imply ‘everybody is allowed to veto any Rust code.’” Maintainers might also find space in the middle, being aware of Rust bindings and working with Rust developers, but not actively involved, Torvalds writes. “Why wouldn’t we do this?” In an earlier response… Read More: As the Kernel Turns: Rust in Linux saga reaches the… »

Code found online exploits LogoFAIL to install Bootkitty Linux backdoor

Normally, Secure Boot prevents the UEFI from running all subsequent files unless they bear a digital signature certifying those files are trusted by the device maker. The exploit bypasses this protection by injecting shell code stashed in a malicious bitmap image displayed by the UEFI during the boot-up process. The injected code installs a cryptographic key… Read More: Code found online exploits LogoFAIL to install Bootkitty Linux backdoor »

Removal of Russian coders spurs debate about Linux kernel’s politics

“Remove some entries due to various compliance requirements. They can come back in the future if sufficient documentation is provided.” That two-line comment, submitted by major Linux kernel maintainer Greg Kroah-Hartman, accompanied a patch that removed about a dozen names from the kernle’s MAINTAINERS file. “Some entries” notably had either Russian names or .ru email… Read More: Removal of Russian coders spurs debate about Linux kernel’s politics »

North Korean hackers use newly discovered Linux malware to raid ATMs

Credit: haxrob Credit: haxrob The malware resides in the userspace portion of the interbank switch connecting the issuing domain and the acquiring domain. When a compromised card is used to make a fraudulent translation, FASTCash tampers with the messages the switch receives from issuers before relaying it back to the merchant bank. As a result,… Read More: North Korean hackers use newly discovered Linux malware to raid… »

Thousands of Linux systems infected by stealthy malware since 2021

This Reddit comment posted to the CentOS subreddit is typical. An admin noticed that two servers were infected with a cryptocurrency hijacker with the names perfcc and perfctl. The admin wanted help investigating the cause. “I only became aware of the malware because my monitoring setup alerted me to 100% CPU utilization,” the admin wrote… Read More: Thousands of Linux systems infected by stealthy malware since 2021 »

Real-time Linux is officially part of the kernel after decades of debate

Enlarge / Cutting metal with lasers is hard, but even harder when you don’t know the worst-case timings of your code. Getty Images reader comments 45 As is so often the case, a notable change in an upcoming Linux kernel is both historic and no big deal. If you wanted to use “Real-Time Linux” for… Read More: Real-time Linux is officially part of the kernel after decades… »