至顶头条 on MSN

Linux内核AppArmor模块存在九个安全漏洞可导致权限提升

网络安全研究人员发现Linux内核AppArmor模块存在九个安全漏洞,统称为CrackArmor。这些漏洞自2017年起就已存在,可被非特权用户利用来绕过内核保护、提升至root权限并破坏容器隔离保证。漏洞影响4.11版本以来的所有Linux内核,涉及超过1260万台默认启用AppArmor的企业Linux实例。攻击者可操纵安全配置文件、绕过用户命名空间限制、执行任意代码,还可能导致拒绝服务攻击 ...
Bleeping Computer

New CacheWarp AMD CPU attack lets hackers gain root in Linux VMs

A new software-based fault injection attack, CacheWarp, can let threat actors hack into AMD SEV-protected virtual machines by targeting memory writes to escalate privileges and gain remote code ...
DMR News

CrackArmor Vulnerabilities In Linux AppArmor Could Expose Millions Of Systems

Security researchers from Qualys have disclosed nine vulnerabilities in the Linux kernel’s AppArmor module, collectively ...