GNOME users at risk of RCE attack (CVE-2023-43641)

If you’re running GNOME on you Linux system(s), you are probably open to remote code execution attacks via a booby-trapped file, thanks to a memory corruption vulnerability (CVE-2023-43641) in the libcue library. About CVE-2023-43641 Discovered b… Continue reading GNOME users at risk of RCE attack (CVE-2023-43641)

Greg Kroah-Hartman Chastises Critic, Says Linux Foundation Strongly Supports Kernel Developers

It started when Linux blogger Bryan Lunduke complained about how the Linux Foundation was reducing the six-year long-term support (LTS) window for the Linux kernel to two years. Lunduke argued that the Foundation seemed more interested in funding comp… Continue reading Greg Kroah-Hartman Chastises Critic, Says Linux Foundation Strongly Supports Kernel Developers

“Looney Tunables” bug allows root access on Linux distros (CVE-2023-4911)

A vulnerability (CVE-2023-4911) in the GNU C Library (aka “glibc”) can be exploited by attackers to gain root privileges on many popular Linux distributions, according to Qualys researchers. About CVE-2023-4911 Dubbed “Looney Tunables… Continue reading “Looney Tunables” bug allows root access on Linux distros (CVE-2023-4911)

Severe Glibc Privilege Escalation Vulnerability Impacts Major Linux Distributions

A local privilege escalation vulnerability (CVE-2023-4911) in the GNU C Library (glibc) can be exploited to gain full root privileges.
The post Severe Glibc Privilege Escalation Vulnerability Impacts Major Linux Distributions appeared first on Security… Continue reading Severe Glibc Privilege Escalation Vulnerability Impacts Major Linux Distributions

Critical zero-days in Exim revealed, only 3 have been fixed

Six zero-days in Exim, the most widely used mail transfer agent (MTA), have been revealed by Trend Micro’s Zero Day Initiative (ZDI) last Wednesday. Due to what seems to be insufficient information and poor communication, fixes for only three of … Continue reading Critical zero-days in Exim revealed, only 3 have been fixed

If the Linux Foundation Was a Software Company, It’d Likely Be the Biggest in the World

An anonymous reader shares a report: The Cloud Native Computing Foundation has returned to Shanghai for the city’s first Kubecon since the pandemic. During a keynote that switched languages several times, demonstrating the challenges faced by both AI a… Continue reading If the Linux Foundation Was a Software Company, It’d Likely Be the Biggest in the World