Linux kernel could gain kill switch for vulnerable functions

Italiano

NVIDIA engineer Sasha Levin has proposed a new mechanism for the Linux kernel that would let administrators quickly disable flawed functions on live systems. The patch, called killswitch, aims to mitigate privilege escalation risks without waiting for full fixes. It remains under review on the Linux Kernel Mailing List.

Sasha Levin, a co-maintainer of the stable and long-term support kernel trees, submitted the patch following concerns over vulnerabilities such as Copy Fail and Dirty Frag. The tool would allow root users to specify a function name and a return value, causing the function to exit immediately without executing its code. This approach could apply instantly across all CPU cores and persist until disabled or the system restarts.

Articoli correlati

Illustration depicting the Linux CopyFail vulnerability enabling root access exploits alongside Ubuntu's DDoS-induced outage.
Immagine generata dall'IA

Linux CopyFail exploit threatens root access amid Ubuntu outage

Riportato dall'IA Immagine generata dall'IA

A critical Linux vulnerability known as CopyFail, tracked as CVE-2026-31431, allows attackers to gain root access on systems running kernels since 2017. Publicly released exploit code has heightened risks for data centers and personal devices. Ubuntu's infrastructure has been offline for over a day due to a DDoS attack, hampering security communications.

Linux kernel flaw lets unprivileged users gain root access

Qualys researchers have identified a logic flaw in the Linux kernel that enables unprivileged local users to disclose sensitive files and execute arbitrary commands as root.

Single character triggers high-severity Linux kernel vulnerability

Riportato dall'IA

A single misplaced exclamation point in the Linux kernel introduced a use-after-free bug that allows unprivileged users to gain root access. The flaw, tracked as CVE-2026-23111, resides in the nf_tables subsystem used for packet filtering. It was fixed in February and backported to major distributions.

Linux

Canonical extends Livepatch to ARM64 Ubuntu systems

Linux

Linux kernel adopts guidelines for AI-assisted code

Gaming

Linux kernel patch targets smoother gaming on older hardware

Linus Torvalds flags AI reports flooding kernel security list

Linus Torvalds has announced the latest Linux release candidate while calling attention to a growing issue with AI-generated bug reports. The flood of such reports has rendered the kernel security mailing list nearly impossible to manage.

Greg Kroah-Hartman runs AI-assisted fuzzing on Linux kernel

Riportato dall'IA

Linux stable kernel maintainer Greg Kroah-Hartman has started using an AI-assisted fuzzing tool in a branch named 'clanker' to test the kernel codebase. The tool has already prompted fixes for vulnerabilities in subsystems like ksmbd and SMB. Patches from this effort now cover areas including USB, HID, WiFi, and networking.

22 giugno 2026 00:04

Linux 7.2 removes strncpy function after six years

09 giugno 2026 17:20

Single errant character triggers high-severity Linux vulnerability

24 maggio 2026 22:08

Linus Torvalds notes AI boost to Linux kernel commits

21 maggio 2026 05:10

Rust proposal targets 80 percent of linux kernel cves

13 maggio 2026 20:07

New fragnesia linux kernel flaw disclosed

09 maggio 2026 20:17

New dirty frag exploit grants root access on linux systems

05 maggio 2026 17:44

US government issues urgent CopyFail warning as Linux patches roll out

Questo sito web utilizza i cookie

Utilizziamo i cookie per l'analisi per migliorare il nostro sito. Leggi la nostra politica sulla privacy per ulteriori informazioni.
Rifiuta