Kernel Linux dapat memperoleh fitur penghentian fungsi untuk fungsi yang rentan

Indonesia

Insinyur NVIDIA, Sasha Levin, telah mengusulkan mekanisme baru untuk kernel Linux yang memungkinkan administrator untuk menonaktifkan fungsi yang cacat dengan cepat pada sistem yang sedang berjalan. Patch yang disebut killswitch ini bertujuan untuk memitigasi risiko eskalasi hak akses tanpa harus menunggu perbaikan penuh. Fitur ini masih dalam tahap peninjauan di Mailing List Kernel Linux.

Sasha Levin, salah satu pemelihara untuk kernel stabil dan dukungan jangka panjang, mengirimkan patch tersebut menyusul kekhawatiran atas kerentanan seperti Copy Fail dan Dirty Frag. Alat ini akan memungkinkan pengguna root untuk menentukan nama fungsi dan nilai pengembalian, yang menyebabkan fungsi tersebut segera keluar tanpa mengeksekusi kodenya. Pendekatan ini dapat diterapkan secara instan di seluruh inti CPU dan akan tetap aktif hingga dinonaktifkan atau sistem dimulai ulang.

Artikel Terkait

Illustration depicting the Linux CopyFail vulnerability enabling root access exploits alongside Ubuntu's DDoS-induced outage.
Gambar dihasilkan oleh AI

Linux CopyFail exploit threatens root access amid Ubuntu outage

Dilaporkan oleh AI Gambar dihasilkan oleh AI

A critical Linux vulnerability known as CopyFail, tracked as CVE-2026-31431, allows attackers to gain root access on systems running kernels since 2017. Publicly released exploit code has heightened risks for data centers and personal devices. Ubuntu's infrastructure has been offline for over a day due to a DDoS attack, hampering security communications.

Linux kernel flaw lets unprivileged users gain root access

Qualys researchers have identified a logic flaw in the Linux kernel that enables unprivileged local users to disclose sensitive files and execute arbitrary commands as root.

Single character triggers high-severity Linux kernel vulnerability

Dilaporkan oleh AI

A single misplaced exclamation point in the Linux kernel introduced a use-after-free bug that allows unprivileged users to gain root access. The flaw, tracked as CVE-2026-23111, resides in the nf_tables subsystem used for packet filtering. It was fixed in February and backported to major distributions.

Linux

Canonical extends Livepatch to ARM64 Ubuntu systems

Linux

Linux kernel adopts guidelines for AI-assisted code

Gaming

Linux kernel patch targets smoother gaming on older hardware

Linus Torvalds flags AI reports flooding kernel security list

Linus Torvalds has announced the latest Linux release candidate while calling attention to a growing issue with AI-generated bug reports. The flood of such reports has rendered the kernel security mailing list nearly impossible to manage.

Greg Kroah-Hartman runs AI-assisted fuzzing on Linux kernel

Dilaporkan oleh AI

Linux stable kernel maintainer Greg Kroah-Hartman has started using an AI-assisted fuzzing tool in a branch named 'clanker' to test the kernel codebase. The tool has already prompted fixes for vulnerabilities in subsystems like ksmbd and SMB. Patches from this effort now cover areas including USB, HID, WiFi, and networking.

22 Juni 2026 00.04

Linux 7.2 removes strncpy function after six years

09 Juni 2026 17.20

Single errant character triggers high-severity Linux vulnerability

24 Mei 2026 22.08

Linus Torvalds notes AI boost to Linux kernel commits

21 Mei 2026 05.10

Rust proposal targets 80 percent of linux kernel cves

13 Mei 2026 20.07

New fragnesia linux kernel flaw disclosed

09 Mei 2026 20.17

New dirty frag exploit grants root access on linux systems

05 Mei 2026 17.44

US government issues urgent CopyFail warning as Linux patches roll out

Situs web ini menggunakan cookie

Kami menggunakan cookie untuk analisis guna meningkatkan situs kami. Baca kebijakan privasi kami untuk informasi lebih lanjut.
Tolak