11 articles tagged #kernel
CVE-2026-23111 is a Linux nf_tables privilege escalation, CVSS 7.8. A full working exploit dropped June 8. Patches available since February — if you haven't applied them yet, now is the deadline.
Seven kernel branches shipped June 1. Three security fixes land in 7.0.11 — TCP ISN leak, tap stack leak, and a keyring race. Dirty Frag is now half-patched: CVE-2026-43500 fixed, CVE-2026-43284 still open upstream.
The 23 May batch release patched a UDP/IPsec corruption bug, a ptrace vulnerability, and the Copy Fail LPE across all active LTS branches.
CVE-2026-31431 lets any local user escalate to root on Linux 4.14+ via a logic flaw in the AF_ALG crypto socket interface. A 732-byte Python script works every time, on every major distro. Here is how to check your exposure and apply the fix.
OpenBSD 7.9 adds P/E-core-aware scheduling and unlocked socket splicing for multi-core throughput. The 60th release of the most security-focused BSD.
Three Linux kernel LPEs in 14 days. This is a triage guide for sysadmins deciding which reboot to schedule first — and what to do until you can.
CVE-2026-46333 lets unprivileged users steal SSH host keys and shadow passwords. Here is how to patch, mitigate, rotate keys, and audit for breach.
Google Project Zero built a zero-click root exploit for Pixel 10 in under a day. Arbitrary kernel read/write in 5 lines. 71 days to patch.
Researchers at Calif published the first public kernel exploit for macOS on M5 hardware that survives Apple's Memory Integrity Enforcement — a data-only LPE chain completed in five days.
Linux 7.0 is out. SHA-1 module signing removed, NFSv4.0 becomes kconfig-optional, lazy preemption replaces the old default. Audit your config before upgrading.
CVE-2026-31431 (Copy Fail) is a Linux kernel LPE, CVSS 7.8. Working PoC is public. CISA KEV. Patches out for Ubuntu, Debian, AlmaLinux, and RHEL.