Ubuntu Linux

1464 readers

2 users here now

Linux for Human Beings.

Ubuntu is a popular Linux operating system for PC / mobile devices, etc.

Developed by Canonical & based on Debian (another older Linux OS) which is known for it's rock solid stability.

Ubuntu is trusted everywhere computing by professionals and common users alike.

https://ubuntu.com/

founded 4 years ago

MODERATORS

[email protected]

Abusing Ubuntu 24.04 features for root privilege escalation (snyk.io)

submitted 1 day ago* (last edited 1 day ago) by [email protected] to c/[email protected]

0 comments fedilink hide all child comments

With the recent release of Ubuntu 24.04, we at Snyk Security Labs thought it would be interesting to examine the latest version of this Linux distribution to see if we could find any interesting privilege escalation vulnerabilities.

...

During our research, we successfully identified a privilege escalation from the default user on a fresh Ubuntu Desktop installation to root. To achieve this, we chained one small bug in a privileged component together with a number of features, which all work as expected, to achieve arbitrary command execution as root.

This blog post will outline the journey of our research, discuss how we identified these vulnerabilities, and, we hope, show that you can keep it simple when it comes to exploitation and achieve the same results without needing a very complex (although extremely cool) kernel memory corruption vulnerability, for example.

no comments (yet)

sorted by: hot top controversial new old

there doesn't seem to be anything here