CISA flags actively exploited ‘Copy Fail’ Linux kernel flaw enabling root takeover across major distros — unpatched systems may remain vulnerable to attack
… Linux vendors have begun rolling out kernel updates to address the flaw. …
Search
Related topics:
Linux
Linus Torvalds says flood of duplicate AI-generated vulnerability reports have made Linux security mailing list 'almost entirely unmanageable' — private list 'a waste of time for everybody involved' in switch to new public system
Linus Torvalds declared the Linux kernel's private security mailing list "almost entirely unmanageable" on Sunday in his weekly post to the Linux Kernel Mailing List LKML , blaming a flood of duplicate vulnerability reports generated by researchers running the same AI tools against the same code. …
Devastating 'Dirty Frag' exploit leaks out, gives immediate root access on most Linux machines since 2017, no patches available, no warning given — Copy Fail-like vulnerability had its embargo broken
… We even tested WSL2 ourselves and sure enough, "root" was the word. sh -c "printf 'install esp4 /bin/false\ninstall esp6 /bin/false\ninstall rxrpc /bin/false\n' /etc/modprobe.d/dirtyfrag.conf; rmmod esp4 esp6 rxrpc 2 /dev/null; true" The reason why Dirty Frag is catching everyone flat-footed is bec… …
Standard 90-day vulnerability disclosure policy is likely dead thanks to AI, expert warns that AI can weaponize patches in 30 minutes — LLM-assisted bug-hunting ushers in a new cyberworld order
… Both aforementioned exploits for the Linux kernel took advantage of insecure zero-copy mechanisms performing calculations on data in-place instead of copying/calculating/replacing . …
First Apple M5 memory exploit discovered using Anthropic AI, gives root access on MacOS — Claude Mythos helps security researchers bypass Memory Integrity Enforcement
… Calif published the vulnerability overview as part of a series of blog posts called the Month of AI-Discovered Bugs, since this new Apple vulnerability falls within a set of security findings aided by AI tools — in this case, Anthropic's Mythos Preview. …
Researchers say they can spy on your browsing by measuring SSD activity through a browser API — claim FROST attack requires no permissions or user interaction to identify which apps and websites you're using
… Previous SSD side-channel attacks that we’ve seen require native code running through privileged kernel interfaces, but FROST eliminates that requirement. …
News Archive | August 2024 | Tom's Hardware
… The Hackberry Pi Zero is a tinker tool for hackers that fits in your pocket August 6 Intel 18A Panther Lake and Clearwater Forest CPUs are booting — steady progress toward the next-gen lithography node New AMD gaming bundle for Ryzen 7000 CPUs and Radeon RX 7000 GPUs — get up to two free games, tho… …
3 sources covering this — show 2 more
News Archive | August 2021 | Tom's Hardware
… Chinese Hotels Offer In-Room RTX Gaming Rigs New AMD Patent Proposes Teleportation to Make Quantum Computing More Efficient Dual Threadripper Pro 3995WX Surpasses Two EPYC CPUs to Set New CPU Record Apple's M1 Chip Boots NetBSD Operating System Intel XTU Update Adds Full Support for Alder Lake Chip… …
To show you the most relevant results, we’ve omitted some entries very similar to those already shown. Repeat the search with the omitted results included.