Tag
Proof of concept for a Linux local privilege escalation and container/jail escape via an IPv6 fragmentation bug in the kernel, targeting CentOS/RHEL 10.
A single faulty character in the Linux kernel introduced a use-after-free vulnerability (CVE-2026-53111) allowing unprivileged users to escalate privileges to root on Debian and Ubuntu systems; the bug has been fixed and backported.
AI tools are accelerating the discovery and public disclosure of Linux kernel bugs, creating a worrisome trend of frequent privilege-escalation vulnerabilities that may require weekly server reboots. Linus Torvalds has changed how the Linux security community handles AI-discovered bugs, treating them as public by default.
Qualys discloses a logic bug in the Linux kernel's __ptrace_may_access() function (CVE-2026-46333), allowing local privilege escalation and information disclosure. The vulnerability, present since 2016, affects multiple distributions with four proof-of-concept exploits developed by Qualys.
Copy Fail is a new Linux local privilege escalation vulnerability that exploits a kernel memory corruption flaw to rewrite the page cache, enabling cross-container attacks and container escape.
Gentoo Linux reports on the Copy Fail, Dirty Frag, and Fragnesia kernel vulnerabilities, noting that they have patched supported kernels and advising users to upgrade.
Anthropic's Mythos AI model helped cybersecurity firm Calif discover two previously undocumented macOS vulnerabilities that could bypass Apple's memory integrity enforcement, demonstrating the model's offensive capabilities under controlled access via Project Glasswing.
CVE-2026-40369 describes a vulnerability in Windows kernel's NtQuerySystemInformation function that allows arbitrary kernel address increment, enabling privilege escalation from unprivileged processes including Chrome sandbox. The exploit is deterministic on Windows 11 24H2-25H2.
A Linux 0-day vulnerability in __ptrace_may_access() allows unprivileged users to read root-owned files like SSH host keys and /etc/shadow. Affects many distros and kernels, with exploits available for ssh-keysign and chage.
A report on three serious Linux local privilege escalation vulnerabilities discovered in May 2026, highlighting breakdowns in the disclosure model and implications for production environments.
An anonymous researcher released two Microsoft zero-day exploits, YellowKey (BitLocker bypass) and GreenPlasma (privilege escalation), after Patch Tuesday, posing serious security risks for organizations.
A new Linux privilege escalation exploit called Fragnesia has been released with proof-of-concept code on GitHub.
Microsoft patched 137 vulnerabilities, with a notable high-severity privilege escalation fix in Azure AI Foundry highlighting security risks in the infrastructure layer of AI applications.
FORTIS benchmarks how LLM agents frequently exceed necessary privileges when selecting skills, showing over-privilege is the norm across ten frontier models and failing under realistic user interactions.
CVE-2026-31431 (Copy Fail) is a local privilege escalation vulnerability in the Linux kernel affecting all major distributions since 2017, allowing unprivileged users to gain root shell access through a deterministic 4-byte write to any readable file's page cache via the AF_ALG crypto subsystem.
A local privilege escalation exploit in the Linux kernel's io_uring subsystem via a zero-copy receive freelist bug.
A report titled 'Dirty Frag' details a universal Linux Local Privilege Escalation (LPE) vulnerability that allows root access on major distributions by chaining two kernel bugs. The disclosure notes that due to a broken embargo, no patches currently exist for this critical security issue.