TugaTech 🖥️9m ago

Falha no kernel Linux permite acesso a ficheiros do utilizador root
🔗 https://tugatech.com.pt/t83692-falha-no-kernel-linux-permite-acesso-a-ficheiros-do-utilizador-root

#falha #kernel #linux #root #utilizador 

Falha no kernel Linux permite acesso a ficheiros do utilizador root

Investigadores de segurança da Qualys identificaram uma nova vulnerabilidade no kernel Linux que possibilita que um utilizador comum, sem privilégios elevados,

TugaTech
Christian Noll41m ago

First public macOS kernel memory corruption exploit on Apple M5 (calif.io)

https://blog.calif.io/p/first-public-kernel-memory-corruption

#macos #kernel #bug #exploit #m5 #apple #mythos

First public macOS kernel memory corruption exploit on Apple M5

Apple spent five years building hardware and software to make memory corruption exploits dramatically harder. Our engineers, working together with Mythos Preview, built a working exploit in five days.

Calif
Martinus Hoevenaar1h ago

Updating while posting this.

#linux #security #kernel #distro

https://www.zdnet.com/article/third-major-linux-kernel-flaw-in-two-weeks-found-by-ai/

The third major Linux kernel flaw in two weeks has been found - thanks to AI

AI is exposing Linux security holes faster than developers can patch them. Fragnesia is the latest. Here's what we know about it.

ZDNET
𝕂𝚞𝚋𝚒𝚔ℙ𝚒𝚡𝚎𝚕1h ago

«„Fragnesia“ — Nächste Rechteausweitungslücke im Linux-Kernel:
Microsoft warnt vor einer weiteren Variante der CopyFail-Lücke namens „Fragnesia“ im Linux-Kernel. Sie verschafft root-Rechte.»

Mist, die nächste Linux-Lücke heute und dies noch von Microsoft entdeckt. Moment mal, könnte es sein dass es…, oder doch nicht…, ach komm…, ne es ist…?!??

🐧 https://www.heise.de/news/Fragnesia-Microsoft-warnt-vor-weiterer-Rechteausweitungsluecke-in-Linux-11294817.html

#linux #fragnesia #microsoft #itsicherheit #lucke #copyfail #root #kernel #itsec #it #linuxkernel #opensource #0day #zeroday

„Fragnesia“: Nächste Rechteausweitungslücke im Linux-Kernel

Microsoft warnt vor einer weiteren Variante der CopyFail-Lücke namens „Fragnesia“ im Linux-Kernel. Sie verschafft root-Rechte.

heise online
Dwight Walker2h ago
this is scaremongering - there is no patch for Debian 11 for Fragnesia Linux kernel hack - https://www.zdnet.com/article/third-major-linux-kernel-flaw-in-two-weeks-found-by-ai/
#ai #linux #kernel #fragnesia #dirtyfrag #security #bugs #debian
The third major Linux kernel flaw in two weeks has been found - thanks to AI

AI is exposing Linux security holes faster than developers can patch them. Fragnesia is the latest. Here's what we know about it.

ZDNET
OSTechNix2h ago

Rocky Linux team introduced an optional, opt-in Security Repository to provide urgent security hot-fixes for critical Kernel vulnerabilities.

More details here: https://ostechnix.com/rocky-linux-security-repository-emergency-fixes/

#RockyLinux #SecurityRepository #Kernel #Copyfail #Drityfrag #Fragnesia #KernelPatch

Rocky Linux Launched Security Repository to Fix Critical Vulnerabilities - OSTechNix

Rocky Linux team introduced an optional, opt-in Security Repository to provide urgent security hot-fixes for critical kernel vulnerabilities.

OSTechNix
LWN.net2h ago

[$] Controlling memory-management with BPF

Roman Gushchin began his session in the memory-management track of the 2026 Linux Storage, Filesystem, Memory Management, and BPF Summit by saying that the community has seen a lot [...]

https://lwn.net/Articles/1072538/ #LWN #Linux #kernel #Git #systemd #BPF

AskUbuntu2h ago

Fans at max speed on Alienware 18 Area-51 AA18250 running Ubuntu 25.10/26.04 #kernel #fan #2510 #2604 #alienware

https://askubuntu.com/q/1566822/612

Fans at max speed on Alienware 18 Area-51 AA18250 running Ubuntu 25.10/26.04

I applied updates yesterday to prepare for my upgrade to Ubuntu 26.04 today. However, when I came back this morning, before the upgrade, I found my fans running at max speed as soon as Ubuntu boote...

Ask Ubuntu
Archie13h ago

#Microsoft has patched about 136 CVEs.

#Adobe has pushed out about 52 patches.

#Google more than 30 across its product lines.

All of this in May-2026.

#Linux Kernel has about 3 issues, ssh-keysign-pwn, #fragnesia and #dirty-frag, till now. This is expected to go up. Patches from #Microsoft, #Google, #Apple, etc are paid for. For many Open Source projects that is not the case. They are work done by unpaid volunteers. Expect burn out to happen. Expect no embargoes.

#OpenSource #Linux #Kernel

LWN.net3h ago

Seven new stable kernels with patches for CVE-2026-46333

https://lwn.net/Articles/1073060/ #LWN #Linux #kernel

Seven new stable kernels with patches for CVE-2026-46333

Greg Kroah-Hartman has announced the 7.0.8, 6.18.31, 6.12.89, 6.6.139, 6.1.173, 5.15.207, and 5 [...]

LWN.net