Security Projects

CoCo VMs Will Now Panic If RdRand Is Broken in Linux 6.9

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

A significant change has been merged into the x86 fixes for Linux 6.9, requiring the seeding of RNG (Random Number Generation) with RdRand for CoCo (Confidential Computing) environments. The change focuses on CoCo virtual machines, designed to be as isolated as possible, assuming the VM host is untrusted. RdRand is critical as a hardware random number generator instruction for entropy to guest VMs. Security expert and WireGuard developer Jason Donenfeld authored this change.

Dave Wreski
Apr 08, 2024

New GitHub Actions Enhancements Boost Security & Power

Recent enhancements have been made to GitHub Actions, a feature of GitHub that enables automation and CI/CD processes for developer teams. The updates focus on boosting security and power for GitHub-hosted runners, virtual machines that execute workflows.

Dave Wreski
Apr 03, 2024

Tails 6.1 Released with Security, User Experience Enhancements

Tails 6.1 has been released as the latest version of the renowned Linux distribution focused on privacy and anonymity. This critical analysis will delve into the release's key updates and improvements, discuss the implications for security practitioners, and explore potential long-term consequences.

Brittany Day
Mar 27, 2024

It’s Time to Add Some GUAC to Open-Source Supply Chain Security!

Integrating the Graph for Understanding Artifact Composition (GUAC) in the open-source security framework has tremendous potential to improve software supply chain security. GUAC is an initiative introduced by Google, Kusari, Purdue University, and Citi that aggregates software security metadata into a high-fidelity graph database.

Dave Wreski
Mar 08, 2024

Linux Kernel Runtime Guard (LKRG) 0.9.8 Released with Major Improvements

Openwall has released Linux Kernel Runtime Guard (LKRG) 0.9.8 with significant updates and improvements. For those unfamiliar with Linux Kernel Runtime Guard (LKRG), it is a kernel module that performs runtime integrity checking of the Linux kernel and detects security vulnerability exploits against the kernel.

Dave Wreski
Mar 05, 2024

Security Projects

CoCo VMs Will Now Panic If RdRand Is Broken in Linux 6.9

New GitHub Actions Enhancements Boost Security & Power

Tails 6.1 Released with Security, User Experience Enhancements

CoCo VMs Will Now Panic If RdRand Is Broken in Linux 6.9

New GitHub Actions Enhancements Boost Security & Power

Tails 6.1 Released with Security, User Experience Enhancements

It’s Time to Add Some GUAC to Open-Source Supply Chain Security!

Linux Kernel Runtime Guard (LKRG) 0.9.8 Released with Major Improvements

LinuxSecurity Poll

Why do you use a VPN on Linux?

Get the Latest News & Insights

News

Advisories

HOWTOs

Features

About Us

Powered By

Linux Security - Your source for Top Linux News, Advisories, HowTo's and Feature Release.