this post was submitted on 15 Aug 2024
17 points (94.7% liked)

Discussions related to Infosec.pub

1129 readers
1 users here now

founded 1 year ago
MODERATORS
 

A novel Linux Kernel cross-cache attack named SLUBStick has a 99% success in converting a limited heap vulnerability into an arbitrary memory read-and-write capability, letting the researchers elevate privileges or escape containers.

The discovery comes from a team of researchers from the Graz University of Technology who demonstrated the attack on Linux kernel versions 5.9 and 6.2 (latest) using nine existing CVEs in both 32-bit and 64-bit systems, indicating high versatility.

https://www.bleepingcomputer.com/news/security/linux-kernel-impacted-by-new-slubstick-cross-cache-attack/

no comments (yet)
sorted by: hot top controversial new old
there doesn't seem to be anything here