January 31, 2024 at 01:24AM A new security flaw in the GNU C library (glibc) allows local attackers to gain full root access on Linux machines. Tracked as CVE-2023-6246, the vulnerability impacts major Linux distributions and could be exploited to obtain elevated permissions through specially crafted inputs. Further analysis uncovered additional flaws in glibc, emphasizing … Read more
November 6, 2023 at 09:00AM A serious privilege escalation vulnerability, known as CVE-2023-4911 or Looney Tunables, has been exploited by the Kinsing threat group. The group, known for its cryptojacking operations, has targeted major Linux distributions. They have also started collecting new types of information, indicating a potential shift in their activities. Security firm Aqua … Read more
October 9, 2023 at 04:11PM Proof-of-concept (PoC) exploits for the critical buffer overflow vulnerability in the GNU C Library (glibc) have been developed, putting Linux systems at risk. The flaw, disclosed by Qualys researchers, could lead to unauthorized data access and system alterations, potentially granting attackers root privileges. Linux root takeovers are highly dangerous as … Read more