Linux Kernel Bug Called ‘Dirty Pipe’ Discovered, Emergency Patch ReleasedOnMarch 13, 2022The Dirty Pipe vulnerability allows attackers to overwrite data in read-only files and to privilege themselves with code injection.
A Polkit Vulnerability Gives Root on All Major Linux DistrosOnJanuary 26, 20223 CommentsSecurity vendor Qualys found the flaw and published details in a coordinated disclosure.
Vulnerability in cryptsetup Allows Decrypting Part of LUKS2-Encrypted DeviceOnJanuary 16, 2022It was found that a specially crafted LUKS header could trick cryptsetup into disabling encryption during the recovery of the device.
Vulnerability In KDE Archive Tool Could Allow Linux Account TakeoversOnAugust 4, 2020KDE Ark Archive Tool contains a path traversal vulnerability that could be exploited by potential hackers to overwrite files or execute remote code on a system.