Collaborate Disseminate
Looking at all the recent Linux kernel crash CVEs I see that the "Scope Changed" metric is always "Unchanged" indicating that "The vulnerable component is the affected component".
My question is, why wouldn’t … Continue reading Why is the "Scope Changed" CVSS Metric for Kernel Crash Vectors always "Unchanged"? [closed]
Looking at all the recent Linux kernel crash CVEs I see that the "Scope Changed" metric is always "Unchanged" indicating that "The vulnerable component is the affected component".
My question is, why wouldn’t … Continue reading Why is the "Scope Changed" CVSS Metric for Kernel Crash Vectors always "Unchanged"? [closed]
CISA instructs federal agencies to mitigate CVE-2024-1086, a Linux kernel flaw leading to privilege escalation.
The post CISA Warns of Exploited Linux Kernel Vulnerability appeared first on SecurityWeek.
Continue reading CISA Warns of Exploited Linux Kernel Vulnerability
For example, Meltdown and Spectre are serious security issues since they allow application to read unauthorized memory. However, from my understanding, most everyday computer setup allow any untrusted code to read personal files.
So are th… Continue reading How relevant are OS security measures for everyday single-user personal computers? [closed]
At home, my personal PC and work computers all connect to the same network, via ethernet and WiFi.
A video game on my personal PC is requiring an install of a "kernel mode driver." At the risk of asking the obvious,
Can this com… Continue reading Will installing a kernel mode driver onto a PC compromise the entire network it’s connected to?
I am testing this VMBR concept in my environment (for research purposes).
Since I am very new to this concept, want to understand how this VMBR or Subvirt and Bluepill can be implemented; is it possible?
and
To start, I am working with CoV… Continue reading Want to know about Virtual Machine Based Rootkit (Subvirt & Blue Pill rootkits) [closed]
From my understanding:
I can emulate many different architectures and systems with qemu as a user(mode) process.
There is separate user address space per process.
If a malicious process were to escape emulation it could compromise the use… Continue reading Does emulation/software virtualization provide more isolation/security vs hardware virtualization?
I recently learned about the feature in Windows 10 called Windows Secure Mode (https://learn.microsoft.com/en-us/virtualization/hyper-v-on-windows/tlfs/vsm). I’m trying to understand what exactly it is trying to achieve by sandboxing itsel… Continue reading What is Virtual Secure Mode trying to achieve?
It used to be that building the Linux kernel was not easy. Testing and debugging were even worse. Nowadays, it is reasonably easy to build a custom kernel and test …read more Continue reading Linux Fu: Easy Kernel Debugging
In a Unix-like system, the concept of privileged and non-privileged users is used for security, preventing numerous attacks. When a non-privileged user executes malicious code at a normal level, the kernel can reject its execution by recog… Continue reading Kernel level attack?