Linux Kernel Bug Called ‘Dirty Pipe’ Discovered, Emergency Patch Released
The Dirty Pipe vulnerability allows attackers to overwrite data in read-only files and to privilege themselves with code injection.
A Polkit Vulnerability Gives Root on All Major Linux Distros
Security vendor Qualys found the flaw and published details in a coordinated disclosure.
Vulnerability in cryptsetup Allows Decrypting Part of LUKS2-Encrypted Device
It was found that a specially crafted LUKS header could trick cryptsetup into disabling encryption during the recovery of the device.
Vulnerability In KDE Archive Tool Could Allow Linux Account Takeovers
KDE Ark Archive Tool contains a path traversal vulnerability that could be exploited by potential hackers to overwrite files or execute remote code on a system.