Linux Kernel Bug Called ‘Dirty Pipe’ Discovered, Emergency Patch Released March 13, 2022The Dirty Pipe vulnerability allows attackers to overwrite data in read-only files and to privilege themselves with code injection.
A Polkit Vulnerability Gives Root on All Major Linux Distros January 26, 20223 CommentsSecurity vendor Qualys found the flaw and published details in a coordinated disclosure.
Vulnerability in cryptsetup Allows Decrypting Part of LUKS2-Encrypted Device January 16, 2022It was found that a specially crafted LUKS header could trick cryptsetup into disabling encryption during the recovery of the device.
Vulnerability In KDE Archive Tool Could Allow Linux Account Takeovers August 4, 2020KDE Ark Archive Tool contains a path traversal vulnerability that could be exploited by potential hackers to overwrite files or execute remote code on a system.