- Logic‑inversion bug in Linux kernel (CVE‑2026‑23111) enabled native privilege escalation
- Affected main distros together with Debian, Ubuntu, and RHEL; fixes rolling out inconsistently
- Discovery provides to surge of current Linux LPEs as maintainers battle with AI‑pushed bug‑report overload
A single stray character sitting within the Linux kernel created a logic inversion bug that enabled privilege escalation, main to a (theoretical) full gadget takeover.
The bug was found in early 2025 by safety researcher Oliver Sieber from Exodus Intelligence, who later demonstrated a full working native root exploit, and is now tracked as CVE-2026-23111 and given a severity rating of seven.8/10 (excessive).
In accordance to TheHackerNews, the vulnerability is tied to the upstream Linux kernel, which means it might probably have an effect on many distributions that shipped a susceptible kernel construct. Particularly, Debian (Bookworm and Trixie, and in some cases Bullseye), Ubuntu (22.04 LTS, 24.04 LTS, and 25.10), and Crimson Hat Enterprise Linux 10 (RHEL 10) had been confirmed to have been affected – with SUSE and Amazon Linux additionally being tracked or affected generally.
A number of kernel flaws found
The caveat right here is {that a} system is barely uncovered if it has a susceptible kernel model (earlier than the repair), nf_tables enabled, and unprivileged person namespaces enabled.
Within the weeks and months following the disclosure, some distro maintainers got here ahead with a repair. Ubuntu, for instance, now has fixes for 22.04, 24.04, and 25.10, whereas Debian mounted Bookworm and Trixie. There’s additionally a 6.1 backport for Bullseye LTS. Crimson Hat, SUSE, and Amazon Linux don’t appear to have mounted it but.
It’s been an eventful few weeks for the Linux kernel, as researchers found a number of local-root vulnerabilities. Copy Fail, Soiled Frag, Fragnesia, DirtyDecrypt, are simply a few of the main vulnerabilities that had been found and stuck in current occasions.
On the identical time, the Linux allfather Linux Torvalds stated the mission’s safety mailing record has grow to be “virtually fully unmanageable” due to researchers utilizing AI to discover bugs, submitting duplicate reviews, basically DDoS-ing these working to really handle them.
The most effective antivirus for all budgets
Comply with TechRadar on Google Information and add us as a most well-liked supply to get our skilled information, opinions, and opinion in your feeds.
Source link
#single #character #hackers #crack #Linux #kernel
