Explore top 10 tips to secure your open-source projects now. Read More
×
LIDS is a Linux kernel patch and admin tool that enhances Linux kernel security and provides a reference monitor and Mandatory Access Control in the kernel. There are several vulnerabilities in LIDS that can be exploited by a local attacker to execute arbitrary commands with root permissions and bypass or disable LIDS. These vulnerabilities include problems with the LD_PRELOAD environment variable, writing directly to /dev/kmem, and a race condition in applications that are launched prior to LIDS being sealed.
You may also be interested in Linux Advisory Watch, distributed weekly by LinuxSecurity.com.