A newly discovered local privilege escalation vulnerability dubbed 'CIFSwitch' in the Linux kernel could allow attackers to forge CIFS authentication key descriptions, abuse the kernel's key request ...

There was a way to elevate normal Linux users' privileges to root, granting threat actors admin access.

If you love your Flipper Zero, you're really going to dig the new Flipper On, which runs on Linux and can do so much more.

Google’s Project Zero demonstrates a new zero-click exploit for the Pixel 10 phones, showing a full escalation from remote to kernel without user interaction. During the investigation Project Zero ...

Introduced in 2007, the CIFSwitch Linux kernel bug allows users to modify CIFS key description fields and gain root ...

Another bad Linux kernel bug has appeared. Fragnesia can give unauthorized users root powers. More open-source security bugs are likely coming. According to Linus's law, "Given enough eyeballs, all ...

Major Linux distributions are rushing to fix two new vulnerabilities after the disclosure embargo was broken. The vulnerability, comprised of two chained issues in subsystems of the Linux kernel and ...

A code-reuse attack named "Segmentation Fault Oriented Programming (SFOP)" exploits weaknesses in signal handling and Intel CET in Linux systems. SFOP is capable of bypassing Intel CET in any program ...

Torvalds says everyone is using AI to report on the same flaws, most of which have already been fixed.

In our last post we used a Claude skill to systematically beat down VirusTotal detection rates on offensive security tools, ...

Learn why Linux Kernel developers want to deprecate AF_ALG features, and the security concerns driving the decision.