Easy-to-use make-me-root exploit lands for recent Linux kernels. Get patching 2024-03-29[theregister.co.uk] CVE-2024-1086 turns the page tables on system admins
A Linux privilege-escalation proof-of-concept exploit has been published that, according to the bug hunter who developed it, typically works effortlessly on kernel versions between at least 5.14 and 6.6.14. Részletek >
Linux kernel 4.14 gets a life extension, thanks to OpenELA 2024-03-19[theregister.co.uk] Could this be the first green shoot of enterprise vendors paying for long-term maintenance?
The Open Enterprise Linux Association (OpenELA) has stepped up to maintain Linux kernel version 4.14 - which went out of support in January - to the end of the year. But why that particular version? Részletek >
Microsoft waited 6 months to patch actively exploited admin-to-kernel vulnerability 2024-03-11[theregister.co.uk] PLUS: NSA shares cloud security tips; Infosec training for Jordanian women; Critical vulnerabilities
Infosec in brief Cybersecurity researchers informed Microsoft that Notorious North Korean hackers Lazarus Group discovered the "holy grail" of rootkit vulnerabilities in Windows last year, but Redmond still took six months to patch the problem. Részletek >