Developers of major Linux distributions have released patches for a local privilege escalation (LPE) vulnerability named 'Copy Fail,' which allows unprivileged users to modify cached files and gain root access. The flaw, discovered by Theori researcher Taeyang Lee with AI assistance, does not require a race condition and poses risks to multi-tenant systems, shared containers, and CI runners. While not remotely exploitable alone, it could be chained with other exploits for broader attacks.
Developers of major Linux distributions have begun shipping patches to address a local privilege escalation vulnerability arising from a logic flaw.
"An unprivileged local user can write four controlled bytes into the page cache of any readable file on a Linux system, and use that to gain root," the writeup from security biz The kernel reads the page cache when it loads a binary, so modifying the cached copy amounts to altering the binary for the purpose of program execution. But doing so doesn't trigger any defenses focused on file system events likeCopy Fail is similar to other LPE bugs such as Dirty Cow and Dirty Pipe, but its finders claim it doesn't require winning a race condition and it's more broadly applicable.
It's not remotely exploitable on its own – hence LPE – but if chained with a web RCE, malicious CI runner, or SSH compromise, it could be relevant to an external attacker. The bug is of most immediate concern to those using multi-tenant Linux systems, shared-kernel containers, or CI runners that execute untrusted code. According to Theori, the vulnerability also represents a potential container escape primitive that could affect Kubernetes nodes, because the page cache is shared across the host.
AWS keynote hypes AI as magic. Its own engineers tell a different storyTheori researcher Taeyang Lee identified the vulnerability, with the help of the company's AI security scanning software, Xint Code. Dustin Childs, head of threat awareness for Trend Micro's Zero Day Initiative, expects this is due to security teams using AI to hunt bugs.
"There are many things we could speculate on to justify the size, but if Microsoft is like the other programs out there , they are likely seeing a rise in submissions found by AI tools," he AI-assisted vulnerability research recently prompted the Internet Bug Bounty program to suspend awards until it can understand how to manage the growing volume of reports.
®How JumpCloud unifies IT management to tame shadow AIDatabricks can't seem to shake authors' copyright claim that could result in 'extraordinary' damages Authors say it acquired an LLM that was trained on their copyrighted data, and judge keeps asking for more infoYet another experiment proves it's too damn simple to poison large language models There is no 6 Nimmt! champion, but a $12 domain registration and one Wikipedia edit convinced several bots there was
Linux Security Vulnerability Privilege Escalation AI
United States Latest News, United States Headlines
Similar News:You can also read news stories similar to this one that we have collected from other news sources.
Indonesia nickel shift benefits Canada developersIncentive price attained
Read more »
SUSE's sovereignty pitch meets an inconvenient $6 billion question: Linux vendor touts European independence at SUSECON as majority stakeholder quietly explores its options
Read more »
Trump admin pays wind developers to quit, back fossil fuel projects: DoI offers up to $885M if they abandon offshore wind projects
Read more »
We won't make traffic worse, say developers of homes next to A52 and M1The plans would see 150 homes built off Bostocks Lane in Risley, adjacent the M1, A52 and Sandiacre
Read more »
Most Generative AI Projects Fail to Deliver Returns and Are CanceledDespite the promise of increased productivity and profitability, a vast majority of enterprise generative AI initiatives are canceled during the pilot phase due to inappropriate use cases, overambitious deployments, and governance issues.
Read more »
AWS keynote hypes AI as magic. Its own engineers tell a different storyInterview: No shortcuts, human-review everything, says internal team - and keep hiring junior developers
Read more »