StackRot Linux Kernel Bug Has Exploit Code on the Way


For a severe vulnerability in the Linux kernel that was identified by a security researcher and reported to Linux administrators in mid-June, exploit code will soon be accessible. The flaw, known as StackRot (CVE-2023-3269), affects Linux kernel versions 6.1 through 6.4 and provides an avenue for attackers to gain elevated privileges on vulnerable computers.

The vulnerability was identified and revealed this week by security researcher Ruihan Li of Peking University in China as affecting nearly all Linux kernel variants and requiring only the most basic capabilities to exploit. A reaction team headed by Linus Torvalds, the man behind Linux, spent around two weeks creating a series of fixes to fix the issue.

Read More…