In Brief: A new Linux kernel vulnerability in the CIFS subsystem enables local attackers to gain root privileges across multiple distributions through manipulation of authentication keys.
Security researchers have discovered a local privilege escalation vulnerability in the Linux kernel residing in the CIFS implementation. The flaw allows attackers to manipulate authentication keys and gain system control. Multiple Linux distributions are affected.
The newly identified vulnerability enables local attackers to interfere with kernel-internal key management mechanisms through manipulation of CIFS authentication keys. By abusing the kernel’s request system for keys, attackers can compromise the system with elevated rights and obtain root privileges.
The vulnerability affects multiple Linux distributions and requires local access to the system for exploitation. The CIFS subsystem (Common Internet File System), which is responsible for supporting network shares according to the SMB standard, contains critical vulnerabilities in the key management logic.
System administrators should deploy kernel updates and corresponding security patches promptly to mitigate the vulnerability.
Source: www.bleepingcomputer.com
Lumi AI News – AI-assisted curation pursuant to Article 50 EU AI Act.