#lpe — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #lpe, aggregated by home.social.
-
Keep calm that they keep on coming... Better fire up you mitigations because this is probably going to take a while to patch fully.
-
Learn how Fragnesia (Copy Fail 3.0) exploits a Linux kernel logic bug to achieve 100% reliable root access. Find out if your distro is affected and how to patch.
Full details here: https://ostechnix.com/fragnesia-linux-root-exploit-copy-fail-3/
#Fragnesia #Copyfail30 #LPE #Linuxkernel #LocalPrivilegeEscalation #Security #Linux
-
Learn how Fragnesia (Copy Fail 3.0) exploits a Linux kernel logic bug to achieve 100% reliable root access. Find out if your distro is affected and how to patch.
Full details here: https://ostechnix.com/fragnesia-linux-root-exploit-copy-fail-3/
#Fragnesia #Copyfail30 #LPE #Linuxkernel #LocalPrivilegeEscalation #Security #Linux
-
Learn how Fragnesia (Copy Fail 3.0) exploits a Linux kernel logic bug to achieve 100% reliable root access. Find out if your distro is affected and how to patch.
Full details here: https://ostechnix.com/fragnesia-linux-root-exploit-copy-fail-3/
#Fragnesia #Copyfail30 #LPE #Linuxkernel #LocalPrivilegeEscalation #Security #Linux
-
Learn how Fragnesia (Copy Fail 3.0) exploits a Linux kernel logic bug to achieve 100% reliable root access. Find out if your distro is affected and how to patch.
Full details here: https://ostechnix.com/fragnesia-linux-root-exploit-copy-fail-3/
#Fragnesia #Copyfail30 #LPE #Linuxkernel #LocalPrivilegeEscalation #Security #Linux
-
Learn how Fragnesia (Copy Fail 3.0) exploits a Linux kernel logic bug to achieve 100% reliable root access. Find out if your distro is affected and how to patch.
Full details here: https://ostechnix.com/fragnesia-linux-root-exploit-copy-fail-3/
#Fragnesia #Copyfail30 #LPE #Linuxkernel #LocalPrivilegeEscalation #Security #Linux
-
@bortzmeyer Effectivement sur Ubuntu 24.04 kernel 6.8 non patché + AppArmor désactivé =
192/192 bytes ✅
whoami→ root 🎉Exploit confirmé.
AppArmor tient la barrière, ne le désactivez pas 😉
-
And again, and again, and again, and again.
Local privilege escalation in #Linux Kernel.
-
A proposed Linux kernel patch adds a “killswitch” mechanism letting admins disable vulnerable kernel functions at runtime until security fixes are released. 🐧
The patch targets threats like LPE exploits, taints modified kernels with a new flag, and was developed with documented AI-assisted contributions. 🔒🔗 https://itsfoss.com/news/linux-killswitch-proposal/
#TechNews #Linux #Kernel #LinuxKernel #CyberSecurity #OpenSource #LPE #NVIDIA #FOSS #SysAdmin #AI #Claude #Security #Infrastructure #KillSwitch #Patch
-
A proposed Linux kernel patch adds a “killswitch” mechanism letting admins disable vulnerable kernel functions at runtime until security fixes are released. 🐧
The patch targets threats like LPE exploits, taints modified kernels with a new flag, and was developed with documented AI-assisted contributions. 🔒🔗 https://itsfoss.com/news/linux-killswitch-proposal/
#TechNews #Linux #Kernel #LinuxKernel #CyberSecurity #OpenSource #LPE #NVIDIA #FOSS #SysAdmin #AI #Claude #Security #Infrastructure #KillSwitch #Patch
-
A proposed Linux kernel patch adds a “killswitch” mechanism letting admins disable vulnerable kernel functions at runtime until security fixes are released. 🐧
The patch targets threats like LPE exploits, taints modified kernels with a new flag, and was developed with documented AI-assisted contributions. 🔒🔗 https://itsfoss.com/news/linux-killswitch-proposal/
#TechNews #Linux #Kernel #LinuxKernel #CyberSecurity #OpenSource #LPE #NVIDIA #FOSS #SysAdmin #AI #Claude #Security #Infrastructure #KillSwitch #Patch
-
A proposed Linux kernel patch adds a “killswitch” mechanism letting admins disable vulnerable kernel functions at runtime until security fixes are released. 🐧
The patch targets threats like LPE exploits, taints modified kernels with a new flag, and was developed with documented AI-assisted contributions. 🔒🔗 https://itsfoss.com/news/linux-killswitch-proposal/
#TechNews #Linux #Kernel #LinuxKernel #CyberSecurity #OpenSource #LPE #NVIDIA #FOSS #SysAdmin #AI #Claude #Security #Infrastructure #KillSwitch #Patch
-
A proposed Linux kernel patch adds a “killswitch” mechanism letting admins disable vulnerable kernel functions at runtime until security fixes are released. 🐧
The patch targets threats like LPE exploits, taints modified kernels with a new flag, and was developed with documented AI-assisted contributions. 🔒🔗 https://itsfoss.com/news/linux-killswitch-proposal/
#TechNews #Linux #Kernel #LinuxKernel #CyberSecurity #OpenSource #LPE #NVIDIA #FOSS #SysAdmin #AI #Claude #Security #Infrastructure #KillSwitch #Patch
-
Linux Distributions Scramble to Patch Dirty Frag Kernel Vulnerabilities
A critical vulnerability known as Dirty Frag has been discovered in the Linux kernel, allowing attackers with local access to gain root privileges across major distributions. Linux distributions are now racing against the clock to patch this chained local privilege escalation flaw.
#DirtyFrag #Linux #LocalPrivilegeEscalation #Lpe #KernelVulnerability
-
Linux Distributions Scramble to Patch Dirty Frag Kernel Vulnerabilities
A critical vulnerability known as Dirty Frag has been discovered in the Linux kernel, allowing attackers with local access to gain root privileges across major distributions. Linux distributions are now racing against the clock to patch this chained local privilege escalation flaw.
#DirtyFrag #Linux #LocalPrivilegeEscalation #Lpe #KernelVulnerability
-
Linux Distributions Scramble to Patch Dirty Frag Kernel Vulnerabilities
A critical vulnerability known as Dirty Frag has been discovered in the Linux kernel, allowing attackers with local access to gain root privileges across major distributions. Linux distributions are now racing against the clock to patch this chained local privilege escalation flaw.
#DirtyFrag #Linux #LocalPrivilegeEscalation #Lpe #KernelVulnerability
-
Linux Distributions Scramble to Patch Dirty Frag Kernel Vulnerabilities
A critical vulnerability known as Dirty Frag has been discovered in the Linux kernel, allowing attackers with local access to gain root privileges across major distributions. Linux distributions are now racing against the clock to patch this chained local privilege escalation flaw.
#DirtyFrag #Linux #LocalPrivilegeEscalation #Lpe #KernelVulnerability
-
Linux Distributions Scramble to Patch Dirty Frag Kernel Vulnerabilities
A critical vulnerability known as Dirty Frag has been discovered in the Linux kernel, allowing attackers with local access to gain root privileges across major distributions. Linux distributions are now racing against the clock to patch this chained local privilege escalation flaw.
#DirtyFrag #Linux #LocalPrivilegeEscalation #Lpe #KernelVulnerability
-
FreeBSD 這次的 execve() 的問題...
#advisory #bug #escalation #execve #freebsd #local #lpe #privilege #root #security
-
You gave me a u32. I gave you root. (io_uring ZCRX freelist LPE)
https://ze3tar.github.io/post-zcrx.html
#HackerNews #io_uring #ZCRX #LPE #root #exploit #security #research #hacking
-
@jwildeboer Good distinction to be aware of. Just to clarify, both can apply:
#RCE must not be privileged. It gives *any* kind of remote capability to run code. Could e.g. be with the highly restricted privileges of the web server process.
An #LPE vulnerability like #CopyFail or #DirtyFrag could however be chained with such an RCE vulnerability to get full root access to the target.
-
#LPE — Local Privilege Escalation. A class of vulnerabilities that need a local user account on the target machine to reach higher levels of privilege, up to superuser/root
#RCE — Remote Code Execution. A class of vulnerabilities that can be exploited over unprivileged network connections, giving the attacker privileged access to the target machine.
#CopyFail, #DirtyFrag are LPEs that affect Linux systems. LPEs are typically harder to exploit than RCEs.
Hope this helps to avoid Clickbait.
-
Dirty Frag – kolejna metoda na root’a pod Linuxem
Pamiętacie Dirty Pipe? Łataliście ostatnio Copy Fail? Pasy zapięte? Nie? To niedobrze, bo kilka godzin temu pojawiła się nowa podatność określona mianem Dirty Frag. W ramce poniżej znajduje się tymczasowe rozwiązanie mające na celu wyłączenie niebezpiecznych modułów. Jest to luka klasy LPE (local privilege escalation), która pozwala na podniesienie uprawnień...
#Aktualności #EskalacjaUprawnień #Kernel #Linux #LocalRoot #Lpe #Pipe
https://sekurak.pl/dirty-frag-kolejna-metoda-na-roota-pod-linuxem/
-
A new day, a new exploit. A security researcher has published a PoC for Dirty Frag which like Copy Fail allow attackers with local access to gain root. Like Copy Fail, no patch is available at disclosure but mitigations exist. Mitigation has a side effect that IPSec would fail though.
This flaw affects all kernel versions including the latest Linux 7.0.4.
This disclosure was originally scheduled for next month, so no CVE either. It was disclosed early because the embargo was broken.
github.com/V4bel/dirtyfrag
#Linux #DirtyFrag #infosec #cybersecurity #LPE #root -
The xz backdoor storm isn't over yet and the next storm seems coming up: #LocalPrivilegeEscalation in the #Linux #kernel 5.15 to 6.5 (at least): https://github.com/YuriiCrimson/ExploitGSM
Affects at least #Debian 12 Stable and #Ubuntu 22.04 LTS (including HWE kernels).
(Via https://twitter.com/matteyeux/status/1777974230325354579 and https://www.reddit.com/r/linux/comments/1c0i7tx/someone_found_a_kernel_0day/)