We remember when getting Linux on your average desktop computer was a tricky enough endeavor that only those with the most luxurious of graybeards would even attempt it. A “Linux box” in those heady ...

漏洞虽然主要针对Linux内核6.14及以上版本，但由于近期漏洞修补的“向前回溯（Backport）”影响，许多旧版本同样面临风险，受波及系统最远可追溯至2007年，跨度长达19年。 不过并非所有发行版均受影响，Ubuntu 26.04、Fedora 40+、CentOS Stream 10及openSUSE Leap 16因默认安全策略能有效阻挡该攻击手法，目前不受CIFSwitch威胁。

各大Linux发行版的开发者已开始发布补丁，以修复一个由逻辑缺陷引发的本地权限提升（LPE）漏洞。 这个新披露的LPE漏洞被命名为"Copy Fail"（CVE-2026-31431），源于Linux内核加密模板authencesn中的一处漏洞。 安全公司Theori在其分析报告中解释道："一个无特权的本地 ...

CISA warns that the nine-year-old Linux Copy Fail flaw is being actively exploited, allowing local attackers to gain root access on affected systems.

Researchers have analyzed a high-severity vulnerability in Linux that’s able to escalate untrusted users to root by exploiting a bug you don’t often see: a single errant character inside the kernel.

Vulnerabilities recently discovered by Microsoft make it easy for people with a toehold on many Linux desktop systems to quickly gain root system rights— the latest elevation of privileges flaw to ...

Two vulnerabilities in the Ubuntu implementation of a popular container-based file system allow attackers to execute code with root privileges on 40% of Ubuntu Linux cloud workloads, researchers have ...

Attackers hijacked 400+ Arch Linux AUR packages to run a Rust credential stealer, with optional eBPF rootkit support on root ...

One of the major reasons behind choosing Linux as an operating system is that it’s much more secure than Windows. There are plenty of reasons for this including appropriate user permissions, ...

Unprivileged attackers can gain root privileges by exploiting a local privilege escalation (LPE) vulnerability in default configurations of the Linux Kernel's filesystem layer on vulnerable devices.