SecurityWeek

Organizations Warned of Exploited Linux Kernel Vulnerability

CVE-2022-0492, a privilege escalation bug in the Linux kernel leading to container escape, has been exploited in attacks.
Network World

Ubuntu namespace vulnerability should be addressed quickly: Expert

Linux admins who have enabled the unprivileged user namespace restriction in their recent Ubuntu environments should take action to close three new vulnerabilities that allow a threat actor to bypass ...

New CIFSwitch Linux flaw gives root on multiple distributions

A newly discovered local privilege escalation vulnerability dubbed 'CIFSwitch' in the Linux kernel could allow attackers to forge CIFS authentication key descriptions, abuse the kernel's key request ...
InfoWorld

Open-source Styrolite project aims to simplify container runtime security

Today Edera launched a new open-source project called Styrolite to bring tighter controls to the interactions between containers and Linux kernel namespaces, at a layer below where Open Container ...