kernel – WindowsTechs.com

The security of different virtualization systems, specifically comparing Qubes hypervisor with separation kernels like INTEGRITY-178B and LynxSecure

Posted on January 16, 2025 by Scientist NA

I’ve often heard that Qubes is considered one of the most secure virtualization options because it uses a small Xen hypervisor, which is only about 150KB in size. However, even Qubes isn’t immune to side-channel attacks, such as the Spectr… Continue reading The security of different virtualization systems, specifically comparing Qubes hypervisor with separation kernels like INTEGRITY-178B and LynxSecure→

The security of different virtualization systems, specifically comparing Qubes hypervisor with separation kernels like INTEGRITY-178B and LynxSecure

Posted on January 16, 2025 by Scientist NA

Additional: What does enabling kernel.unprivileged_userns_clone do? [closed]

Posted on January 1, 2025 by jac

The theme was published five years ago, and I don’t understand it.

I was blocked by clamAV to update my signatures for some weeks ago. ClamAV itself doesn’t give answer.

During SSH installation, Thunderbird was uninstalled beside other p… Continue reading Additional: What does enabling kernel.unprivileged_userns_clone do? [closed]→

Was Unpriviledged User Namespaces exploited since it started to default to YES?

Posted on October 8, 2024 by gcb

We had good discussions about it being safe or not five years ago, and it was defaulted to yes on the kernel way over 3 years ago (with a note calling anyone security conscious who disable it as paranoid)
So, was it exploited after all in … Continue reading Was Unpriviledged User Namespaces exploited since it started to default to YES?→

Linux, Now In Real Time

Posted on September 21, 2024 by Bryan Cockfield

Although Linux runs almost every supercomputer, most of the web, the majority of smart phones, and a few writers’ ancient Macbooks, there’s one major weak point in the Linux world …read more Continue reading Linux, Now In Real Time→

Post-CrowdStrike Fallout: Microsoft Redesigning EDR Vendor Access to Windows Kernel

Posted on September 13, 2024 by Ryan Naraine

Microsoft is revamping how anti-malware tools interact with the Windows kernel to avoid another CrowdStrike faulty update catastrophe.
The post Post-CrowdStrike Fallout: Microsoft Redesigning EDR Vendor Access to Windows Kernel appeared first on Secur… Continue reading Post-CrowdStrike Fallout: Microsoft Redesigning EDR Vendor Access to Windows Kernel→

If You Give A Dev A Tricked Out Xbox, They’ll Patch Halo 2

Posted on August 11, 2024 by Matthew Carlson

[Ryan Miceli] had spent a few years pouring over and reverse-engineering Halo 2 when a friend asked for a favor. His friend created an improved Xbox with significant overclocks, RAM …read more Continue reading If You Give A Dev A Tricked Out Xbox, They’ll Patch Halo 2→

New SLUBStick Attack Makes Linux Kernel Vulnerabilities More Dangerous

Posted on August 5, 2024 by Eduard Kovacs

A new Linux kernel exploitation technique named SLUBStick makes heap vulnerabilities more dangerous.
The post New SLUBStick Attack Makes Linux Kernel Vulnerabilities More Dangerous appeared first on SecurityWeek.
Continue reading New SLUBStick Attack Makes Linux Kernel Vulnerabilities More Dangerous→

Verify Executables/Application before launching [duplicate]

Posted on July 24, 2024 by Learner88

Linux kernel has a feature to verify Linux kernel modules before loading them. This verification assures that modification made to Linux kernel is authentic. Does kernel have similar features to validate each application/binary while launc… Continue reading Verify Executables/Application before launching [duplicate]→

How does an eBPF program cause a kernel panic?

Posted on July 20, 2024 by Evan Carroll

According to this RedHat knowledge base entry CrowdSource has similarly caused a kernel panic on Linux as well with eBPF program.
My question is how is this possible? eBPF is described as,

eBPF changes this formula fundamentally. It allow… Continue reading How does an eBPF program cause a kernel panic?→