TECH NEWS

Dirty Frag, Copy Fail, Fragnesia: The start of a worrisome Linux security trend

https://image.theregister.com/5244793.jpg?imageId=5244793&x=0&y=0&cropw=100&croph=100&panox=0&panoy=0&panow=100&panoh=100&width=1200&height=683

Or is it just life today, with AI constantly digging through code repositories in search of security holes?

OPINION Dirty Frag, Copy Fail, and Fragnesia are less a random cluster of Linux bugs and more the public unveiling of how AI tools can pry open security holes with just a prompt or two. What they also have in common is their shared abuse of a core kernel abstraction: The page cache. What does this mean for you and me? Is this the rainstorm before a downpour of killer Linux security problems, or is this just a shower? It depends on who you ask.

Whatever else may be true, these problems must be addressed. As Igor Seletskiy, CEO of CloudLinux, said: "The real story here is that we typically see one or two kernel-level LPE (Linux privilege escalations) vulnerabilities that affect multiple distros/versions per year. And now we...

Copyright of this story solely belongs to theregister.com. To see the full text click HERE

Read more