📢 CIFSwitch : élévation de privilèges root via le sous-système CIFS du noyau Linux
📝 ## 🔍 Contexte

Publié le 30 mai 2026 sur BleepingComputer, cet article rapporte la divulgation d'une **vulnér...
📖 cyberveille : https://cyberveille.ch/posts/2026-06-01-cifswitch-elevation-de-privileges-root-via-le-sous-systeme-cifs-du-noyau-linux/
🌐 source : https://www.bleepingcomputer.com/news/security/new-cifswitch-linux-flaw-gives-root-on-multiple-distributions/
#CIFS #Linux #Cyberveille

📢 CIFSwitch : LPE Linux via CIFS/cifs-utils, élévation de privilèges locale multi-distros
📝 ## 🔍 Contexte

Publié le 27 mai 2026 par Asim Viladi Oglu Manizada sur son blog personnel, cet article détaille la découverte et l'exploitation d'une vulnérabilité d'éléva...
📖 cyberveille : https://cyberveille.ch/posts/2026-06-01-cifswitch-lpe-linux-via-cifs-cifs-utils-elevation-de-privileges-locale-multi-distros/
🌐 source : https://heyitsas.im/posts/cifswitch/
#CIFS #IOC #Cyberveille

🚨 Alerte #Linux : la #faille "CIFSwitch" offre les clés Root de votre système

https://goodtech.info/cifswitch-faille-critique-linux-escalade-privileges-root/

> Un bug tapi dans l'ombre depuis 2007 vient d'être réveillé. Découvrez comment une simple faille logique fait tomber les plus grandes distributions Linux. #cifs

Linux Flaw Exposes Multiple Distributions to Root Privilege Escalation

A single misstep in the Linux CIFS subsystem, dating back nearly two decades, leaves multiple distributions vulnerable to a devastating root privilege escalation attack, dubbed CIFSwitch. This flaw allows attackers to exploit the kernel's keyring mechanism and gain control of modern Linux systems.

https://osintsights.com/linux-flaw-exposes-multiple-distributions-to-root-privilege-escalation?utm_source=mastodon&utm_medium=social

#LinuxPrivilegeEscalation #RootAccess #Cifs #KernelVulnerability #LinuxDistributions

Is there any Linux distribution/flavour where access by file manager works with SMB/CIFS connection and can authenticate?

GNOME on Ubuntu 24 fails.
Dolphin KDE/KIO on Debian 12/13/Testing fails.

And now?

#Linux #SMB #CIFS #Windows #fp #FollowerPower

Wondered why my images folder is so huge. Turns out there's a hidden .recycle folder used by Samba/CIFS to act as network level trash bin. You know… in case someone deletes something from a network share by accident.

So all the time I was freeing up space on purpose I ended up with an additional copy on the remote fs 😩

* I use the F-Droid app SMBSync2 to backup my images from the smartphone automatically to my local network share.

#smb #cifs #fdroid

We have a set of #CIFS #DFS servers in Europe and in America. The clients in Europe expect to automatically mount on the European DFS server, the ones in America in on the American DFS server.

Which works fine on Linux servers joined to the domain, using mount.cifs. If you define everything correctly that is (ad_site in /etc/sssd/sssd.conf, the networks in AD etc).

And still we had Linux servers being slow and getting data from the European DFS server, while others stayed on the American DFS server.... Unmount and mount didn't resolve it. Wireshark showed "Yes it tries the American one... And then moves to the European one!".

At the end, it was a DFS caching issue on the Linux servers: /proc/fs/cifs/dfscache showed the target to be to the EU server.

echo 0 > /proc/fs/cifs/dfscache, then remount, and all was fine again!

Another check in #nagios !