Linux

Debian 13.6 security update patches over a hundred advisories in trixie

Debian 13.6 security update patches over a hundred advisories in trixie 2026-07-13 at 01:25 By Anamarija Pogorelec Most PCs still run with a UEFI Secure Boot certificate authority, installed by default since 2013, that has now expired. That certificate signed the bootloaders letting machines start with Secure Boot turned on. Its expiry sits at the […]

Debian 13.6 security update patches over a hundred advisories in trixie Read More »

15-Year-Old Linux Vulnerability ‘GhostLock’ Earns Researchers $92k From Google

15-Year-Old Linux Vulnerability ‘GhostLock’ Earns Researchers $92k From Google 2026-07-09 at 14:52 By Ionut Arghire Affecting every major distribution since 2011, the Linux kernel vulnerability allows attackers to gain root access. The post 15-Year-Old Linux Vulnerability ‘GhostLock’ Earns Researchers $92k From Google appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

15-Year-Old Linux Vulnerability ‘GhostLock’ Earns Researchers $92k From Google Read More »

Linux Kernel Vulnerability Allows VM Escape on Intel and AMD Systems

Linux Kernel Vulnerability Allows VM Escape on Intel and AMD Systems 2026-07-07 at 13:00 By Ionut Arghire The 16-year-old Januscape flaw affects Linux’s KVM hypervisor, allowing attackers to escape virtual machines and potentially execute code on the underlying host. The post Linux Kernel Vulnerability Allows VM Escape on Intel and AMD Systems appeared first on

Linux Kernel Vulnerability Allows VM Escape on Intel and AMD Systems Read More »

Apple Container: Open-source tool for Linux containers on the Mac

Apple Container: Open-source tool for Linux containers on the Mac 2026-07-07 at 08:00 By Anamarija Pogorelec Developers on Apple silicon Macs have run Linux containers through software built around a single shared virtual machine for years. Apple’s open-source Container project gives each Linux workload its own lightweight virtual machine. Container is written in Swift and

Apple Container: Open-source tool for Linux containers on the Mac Read More »

Proof-of-Concept Exploit Released for Linux ‘Bad Epoll’ Root Access Vulnerability

Proof-of-Concept Exploit Released for Linux ‘Bad Epoll’ Root Access Vulnerability 2026-07-06 at 15:48 By Ionut Arghire Organizations are urged to patch after proof-of-concept code makes the Linux root escalation flaw easier to exploit. The post Proof-of-Concept Exploit Released for Linux ‘Bad Epoll’ Root Access Vulnerability appeared first on SecurityWeek. This article is an excerpt from

Proof-of-Concept Exploit Released for Linux ‘Bad Epoll’ Root Access Vulnerability Read More »

SimpleHelp vulnerability exploited to deliver mighty Djinn Stealer (CVE-2026-48558)

SimpleHelp vulnerability exploited to deliver mighty Djinn Stealer (CVE-2026-48558) 2026-06-30 at 13:25 By Zeljka Zorz Attackers are exploiting CVE-2026-48558, a recently patched authentication bypass vulnerability in SimpleHelp RMM, to drop the novel Djinn Stealer malware on victim computers. The malware is capable of targeting Windows, macOS, and Linux systems, and “collects credentials associated with cloud

SimpleHelp vulnerability exploited to deliver mighty Djinn Stealer (CVE-2026-48558) Read More »

Kali Linux 2026.2 trims VM boot times, refreshes its desktops

Kali Linux 2026.2 trims VM boot times, refreshes its desktops 2026-06-30 at 11:16 By Sinisa Markovic Penetration testers who run Kali Linux inside virtual machines boot their systems faster after the 2026.2 release. The change comes from a decision about graphics firmware, the code that drives NVIDIA, AMD, and Intel GPUs. That firmware has grown

Kali Linux 2026.2 trims VM boot times, refreshes its desktops Read More »

‘DirtyClone’ Linux Kernel Vulnerability Leads to Root Access

‘DirtyClone’ Linux Kernel Vulnerability Leads to Root Access 2026-06-29 at 14:20 By Ionut Arghire A variant of DirtyFrag, the flaw allows unprivileged local users to manipulate the Linux page cache and gain root privileges. The post ‘DirtyClone’ Linux Kernel Vulnerability Leads to Root Access appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

‘DirtyClone’ Linux Kernel Vulnerability Leads to Root Access Read More »

Atomic Arch Supply Chain Attack Hits 1,500 AUR Packages

Atomic Arch Supply Chain Attack Hits 1,500 AUR Packages 2026-06-16 at 13:51 By Ionut Arghire Arch Linux suspended account registrations in response to the wave of malicious packages being uploaded to AUR. The post Atomic Arch Supply Chain Attack Hits 1,500 AUR Packages appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

Atomic Arch Supply Chain Attack Hits 1,500 AUR Packages Read More »

China-linked spies backdoored authentication stack to stay hidden for years

China-linked spies backdoored authentication stack to stay hidden for years 2026-06-15 at 18:27 By Zeljka Zorz A China-linked cyber espionage group known as Velvet Ant spent nearly a decade inside the internal network of an unnamed organization without being detected, according to the results of a forensic investigation published by cybersecurity firm Sygnia. The group’s

China-linked spies backdoored authentication stack to stay hidden for years Read More »

Organizations Warned of Exploited Linux Kernel Vulnerability

Organizations Warned of Exploited Linux Kernel Vulnerability 2026-06-03 at 14:56 By Ionut Arghire An improper authentication bug allows attackers to escalate their privileges and escape containers. The post Organizations Warned of Exploited Linux Kernel Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Organizations Warned of Exploited Linux Kernel Vulnerability Read More »

KDE Linux security audit cuts kernel modules and unused packages

KDE Linux security audit cuts kernel modules and unused packages 2026-06-02 at 11:55 By Anamarija Pogorelec KDE Linux, the in-progress operating system from the KDE community, removed several kernel modules and software packages after a security audit of the components shipped with the system. The work followed the discovery of multiple security issues in the

KDE Linux security audit cuts kernel modules and unused packages Read More »

19-Year-Old Linux Kernel Vulnerability Exposes Systems to Root Access

19-Year-Old Linux Kernel Vulnerability Exposes Systems to Root Access 2026-06-01 at 17:37 By Ionut Arghire Proof-of-concept (PoC) exploit code has been released for the CIFSwitch flaw, which allows low-privileged users to escalate to root on vulnerable Linux systems. The post 19-Year-Old Linux Kernel Vulnerability Exposes Systems to Root Access appeared first on SecurityWeek. This article

19-Year-Old Linux Kernel Vulnerability Exposes Systems to Root Access Read More »

DNS-AID lets AI agents find and verify each other through DNS

DNS-AID lets AI agents find and verify each other through DNS 2026-06-01 at 11:46 By Sinisa Markovic AI agents run across many platforms, and each one needs a way to locate and confirm the identity of the others it works with. The Linux Foundation’s DNS-AID project gives them that capability through the Domain Name System,

DNS-AID lets AI agents find and verify each other through DNS Read More »

Canonical ships Ubuntu Core 26 with 15 years of security maintenance

Canonical ships Ubuntu Core 26 with 15 years of security maintenance 2026-05-19 at 15:47 By Anamarija Pogorelec Operators of industrial sensors, edge AI controllers, and connected medical equipment now have a refreshed long-term Linux option for fleets that must stay patched for more than a decade. Canonical released Ubuntu Core 26, the latest long-term supported

Canonical ships Ubuntu Core 26 with 15 years of security maintenance Read More »

AI is drowning software maintainers in junk security reports

AI is drowning software maintainers in junk security reports 2026-05-18 at 21:32 By Zeljka Zorz AI-assisted vulnerability research has exploded, unleashing a firehose of low-quality reports on overworked software maintainers who are wasting hours sifting through noise instead of fixing real problems. Linus Torvalds, the Linux kernel’s creator, says the flood has made the project’s

AI is drowning software maintainers in junk security reports Read More »

Debian 13.5 point release lands with security fixes, bug patches

Debian 13.5 point release lands with security fixes, bug patches 2026-05-18 at 01:03 By Anamarija Pogorelec Debian 13.5 is the fifth point release for the stable distribution “trixie.” The update folds in roughly 100 Debian Security Advisories and corrections for more than 130 source packages, covering everything from the Linux kernel and Apache HTTP Server

Debian 13.5 point release lands with security fixes, bug patches Read More »

Rocky Linux launches opt-in security repository for urgent fixes

Rocky Linux launches opt-in security repository for urgent fixes 2026-05-15 at 14:32 By Sinisa Markovic Rocky Linux has introduced a Security Repository that allows the distribution to ship urgent security fixes ahead of upstream Enterprise Linux when public exploit code exists and upstream patches are unavailable. “The repository is disabled by default. That’s intentional. The

Rocky Linux launches opt-in security repository for urgent fixes Read More »

Fragnesia: New Linux kernel LPE bug was spawned by Dirty Frag patch (CVE-2026-46300)

Fragnesia: New Linux kernel LPE bug was spawned by Dirty Frag patch (CVE-2026-46300) 2026-05-14 at 17:34 By Zeljka Zorz Researchers have found and disclosed yet another local privilege escalation (LPE) vulnerability in the Linux kernel: CVE-2026-46300, aka “Fragnesia”. The flaw is in the same class of vulnerabilities as the recently disclosed Dirty Frag bug(s). Like

Fragnesia: New Linux kernel LPE bug was spawned by Dirty Frag patch (CVE-2026-46300) Read More »

New Linux Kernel Vulnerability Fragnesia Allows Root Privilege Escalation

New Linux Kernel Vulnerability Fragnesia Allows Root Privilege Escalation 2026-05-14 at 16:44 By Eduard Kovacs The vulnerability, tracked as CVE-2026-46300, is similar to the recently disclosed exploits named Dirty Frag and Copy Fail. The post New Linux Kernel Vulnerability Fragnesia Allows Root Privilege Escalation appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

New Linux Kernel Vulnerability Fragnesia Allows Root Privilege Escalation Read More »

Scroll to Top