Unprivileged attackers can gain root privileges by exploiting a local privilege escalation (LPE) vulnerability in default configurations of the Linux Kernel's filesystem layer on vulnerable devices.
  • DeathByDenim@lemmy.ml
    15·
    3 years ago

    I like how this requires creating so many nested directories that the total file path length exceeds 1 GB. That’s nuts!

  • AgreeableLandscape@lemmy.mlM
    9·
    3 years ago

    Genuinely wondering why are so many system 0wning vulnerabilities being discovered this year? Not sure if this says something about security researchers stepping up their game or software security getting worse at the development level.

    • Helix@lemmy.ml
      7·
      3 years ago

      A few months ago, the University of Minnesota got themselves banned for submitting faulty patches to the Kernel.

      Maybe security researchers currently focus on more security-related bugs which aren’t obvious at all, maybe it’s just a statistical accumulation of critical patches. Critical vulnerabilities get much more press nowadays and the researchers make up fancy names and webpages for their bugs.

      In my opinion, it’s just a coincidence that you notice more of those vulnerabilities this year.

    • lorabe@lemmy.ml
      5·
      3 years ago

      Maybe it’s not a mistake… remember, when windows developers find a bug, they first report it to the american agencies before patching it.

    • spytfyre@lemmy.ml
      2·
      3 years ago

      If I’m not mistaken this bug was present in the kernel for years and to be honest was extremely subtle in the first place