Une nouvelle faille du noyau Linux baptisée Fragnesia a été révélée

Français

Une nouvelle vulnérabilité d'élévation de privilèges locale dans Linux, connue sous le nom de Fragnesia, a été rendue publique. Le défaut est décrit comme étant similaire à Dirty Frag et implique un bug de logique ESP/XFRM.

La vulnérabilité permet des écritures d'octets arbitraires dans le cache de pages du noyau pour des fichiers en lecture seule. Cette capacité pourrait permettre à des attaquants locaux d'obtenir des privilèges élevés sur les systèmes affectés.

Articles connexes

Illustration depicting the Linux CopyFail vulnerability enabling root access exploits alongside Ubuntu's DDoS-induced outage.
Image générée par IA

Linux CopyFail exploit threatens root access amid Ubuntu outage

Rapporté par l'IA Image générée par IA

A critical Linux vulnerability known as CopyFail, tracked as CVE-2026-31431, allows attackers to gain root access on systems running kernels since 2017. Publicly released exploit code has heightened risks for data centers and personal devices. Ubuntu's infrastructure has been offline for over a day due to a DDoS attack, hampering security communications.

New dirty frag exploit grants root access on linux systems

A security researcher has disclosed Dirty Frag, a new Linux kernel exploit that allows local users to gain root privileges. The flaw affects major distributions and remains unpatched on most systems despite earlier fixes for a similar issue.

Linux kernel flaw lets unprivileged users gain root access

Rapporté par l'IA

Qualys researchers have identified a logic flaw in the Linux kernel that enables unprivileged local users to disclose sensitive files and execute arbitrary commands as root.

Linux

Red Hat directs users to security page for CopyFail vulnerability

Linux

Linux kernel 7.0 released with major hardware and storage upgrades

Technology

Google publishes exploit code for unfixed chromium vulnerability

Linux kernel patch targets smoother gaming on older hardware

A proposed update to the Linux scheduler aims to reduce frame time issues on aging computers during heavy CPU loads.

Rust proposal targets 80 percent of linux kernel cves

Rapporté par l'IA

Linux kernel maintainer Greg Kroah-Hartman presented a new Rust type at RustWeek 2026 that could prevent most security vulnerabilities. The approach focuses on handling untrusted data from userspace and hardware. It builds on existing Rust safety features already in the kernel.

mardi 09 juin 2026 17h20

Single errant character triggers high-severity Linux vulnerability

mardi 09 juin 2026 04h36

Single character triggers high-severity Linux kernel vulnerability

mardi 26 mai 2026 07h15

Ghost CMS flaw leveraged in ClickFix attacks

lundi 18 mai 2026 02h56

Linus Torvalds flags AI reports flooding kernel security list

lundi 11 mai 2026 16h32

Linux kernel could gain kill switch for vulnerable functions

mardi 05 mai 2026 17h44

US government issues urgent CopyFail warning as Linux patches roll out

lundi 13 avril 2026 10h46

Developer releases VRAM fix for AMD GPUs on Linux

vendredi 10 avril 2026 14h10

Greg Kroah-Hartman runs AI-assisted fuzzing on Linux kernel

Ce site utilise des cookies

Nous utilisons des cookies pour l'analyse afin d'améliorer notre site. Lisez notre politique de confidentialité pour plus d'informations.
Refuser