Follow Cyber Kendra on Google News! | WhatsApp | Telegram

Add as a preferred source on Google
Linux
A Forged Kernel Key and a Rootful Helper: Inside the CIFSwitch Linux Privilege Escalation

A Forged Kernel Key and a Rootful Helper: Inside the CIFSwitch Linux Privilege Escalation

A security researcher has disclosed a Linux local privilege escalation — dubbed CIFSwitch — that lets any unprivileged user silently escalate to roo…
Nine-Year-Old Linux Kernel Flaw CVE-2026-46333 Lets Attackers Steal SSH Keys, Shadow Passwords, and Root Access

Nine-Year-Old Linux Kernel Flaw CVE-2026-46333 Lets Attackers Steal SSH Keys, Shadow Passwords, and Root Access

The Qualys Threat Research Unit (TRU) has released the full advisory for CVE-2026-46333, a logic flaw in the Linux kernel's __ptrace_may_access()…
PinTheft: New Linux Exploit Steals Kernel References to Root Shell

PinTheft: New Linux Exploit Steals Kernel References to Root Shell

A working proof-of-concept exploit for a new Linux kernel privilege escalation bug called PinTheft went public this week, adding another name to a gr…
Linux Kernel Had a Six-Year Bug That Let Anyone Steal SSH Host Keys and Root Passwords

Linux Kernel Had a Six-Year Bug That Let Anyone Steal SSH Host Keys and Root Passwords

A logic flaw sitting quietly in the Linux kernel since at least 2020 — possibly longer — just got a working exploit, a public proof-of-concept, and a…
Linux Kernel Strikes Again: "Fragnesia" Is the Third Root-Level Flaw in Two Weeks

Linux Kernel Strikes Again: "Fragnesia" Is the Third Root-Level Flaw in Two Weeks

Linux administrators have barely had time to recover from Copy Fail and Dirty Frag — and now there's a third exploit joining the same dangerous f…
Dirty Frag — No Patch, No Warning — Root Access on Every Major Linux Distro

Dirty Frag — No Patch, No Warning — Root Access on Every Major Linux Distro

Discovered by Korean security researcher Hyunwoo Kim, Dirty Frag chains two separate kernel vulnerabilities to hand any local user a root shell on vi…
Pack2TheRoot Flaw Lets Root to Any Linux User — Ubuntu, Debian, Fedora at Risk

Pack2TheRoot Flaw Lets Root to Any Linux User — Ubuntu, Debian, Fedora at Risk

A newly disclosed vulnerability in a near-universal Linux component has handed any local, unprivileged user the keys to the entire system — no passwo…
Linux's Print System Has a Zero-Click Root Hole — and No Fix Yet

Linux's Print System Has a Zero-Click Root Hole — and No Fix Yet

If your Linux server runs a shared PostScript print queue, a remote attacker with no credentials whatsoever can — right now — execute arbitrary code …
Ubuntu Isn't Adding Age Verification Now — But California's Law Still Has Linux Cornered

Ubuntu Isn't Adding Age Verification Now — But California's Law Still Has Linux Cornered

AI Created A wave of alarming headlines this week declared that Ubuntu was planning to implement age verification for its users. The reality is consi…
Critical Flaw in Dropbear SSH Puts Millions of Routers and IoT Devices at Risk

Critical Flaw in Dropbear SSH Puts Millions of Routers and IoT Devices at Risk

Security researchers have disclosed a severe privilege escalation vulnerability in Dropbear SSH that could allow authenticated users to gain root acc…
First Rust Vulnerability in Linux Kernel Proves Memory Safety Isn't Bulletproof

First Rust Vulnerability in Linux Kernel Proves Memory Safety Isn't Bulletproof

The Linux kernel's ambitious experiment with Rust—a language championed for preventing memory bugs—has hit its first security vulnerability, reve…
13-Year-Old QEMU Bug Enabled Guest-to-Host Escape Attacks

13-Year-Old QEMU Bug Enabled Guest-to-Host Escape Attacks

A critical vulnerability that lurked in QEMU virtualization software for over a decade has been exposed, allowing attackers to break out of virtual m…
Critical Linux Kernel Flaw Exposes Millions to Memory Corruption Attacks

Critical Linux Kernel Flaw Exposes Millions to Memory Corruption Attacks

A severe vulnerability in the Linux kernel's TLS (Transport Layer Security) subsystem could allow attackers to corrupt memory and potentially gai…
Critical Sudo Vulnerabilities Leads Root Access to Any Linux User

Critical Sudo Vulnerabilities Leads Root Access to Any Linux User

Two newly disclosed vulnerabilities in Sudo, the ubiquitous Linux privilege escalation tool, could allow virtually any local user to gain complete ad…
Linux Kernel SMB Zero-Day Vulnerability Discovered Using OpenAI's o3 Model

Linux Kernel SMB Zero-Day Vulnerability Discovered Using OpenAI's o3 Model

By using OpenAI's o3 artificial intelligence model, a security researcher has discovered a previously unknown remote zero-day vulnerability in th…
Researchers Uncover Three Bypasses of Ubuntu's Namespace Restrictions

Researchers Uncover Three Bypasses of Ubuntu's Namespace Restrictions

Security researchers at Qualys have identified three methods to bypass Ubuntu's unprivileged user namespace restrictions, a security feature intr…
New Linux Backdoor "Auto-Color" Targets Universities and Government Offices

New Linux Backdoor "Auto-Color" Targets Universities and Government Offices

Palo Alto Networks' Unit 42 researchers have discovered a sophisticated new Linux malware called " Auto-Color ," which primarily target…
CUPS Vulnerability Allows Unauthenticated RCE on Linux System

CUPS Vulnerability Allows Unauthenticated RCE on Linux System

Several critical security vulnerabilities have been uncovered in the Common UNIX Printing System (CUPS), a widely used open-source printing system fo…
"Dirty Pagedirectory": New Linux Kernel Exploit Bypass Hardening Mitigations

"Dirty Pagedirectory": New Linux Kernel Exploit Bypass Hardening Mitigations

A security researcher published a detailed technical blog post analyzing a new Linux kernel vulnerability in the nf_tables component and demonstratin…
Urgent Alert: Stealthy Backdoor Discovered in XZ Compression Utilities

Urgent Alert: Stealthy Backdoor Discovered in XZ Compression Utilities

A serious security vulnerability has been discovered in recent versions of the widely-used xz data compression tool and liblzma libraries. …