Stay Ahead With Linux Security News

The Linux Foundation has officially launched Akrites , a coordinated industry initiative designed to improve how critical open source vulnerabilities are validated, coordinated, and disclosed before patches reach downstream users. Backed by a diverse coalition—including AWS, Google, Microsoft/GitHub, Red Hat, NVIDIA, and OpenAI—Akrites establishes a shared Security Incident Response Team (SIRT) to streamline the validation, remediation, and disclosure of vulnerabilities in the foundational...

A process with a stable workload shouldn't keep growing its resident memory. When it does, the first question isn't how much RAM is available. It's where the allocations stopped being released. On Linux, that answer isn't always obvious because the kernel, allocator, and application all influence what memory usage looks like from the outside. . Separating normal allocation behavior from an actual leak takes more than watching top or container metrics. Heap growth, allocator caches, mapped...

AI is beginning to reshape how penetration testing workflows are organized. For years, the penetration tester’s workflow has been a labor-intensive ritual: scan, enumerate, research, exploit, and report. But new frameworks like Dark Moon are attempting to codify that intuition, turning the "human-in-the-loop" process into a machine-coordinated workflow. But is this a genuine evolution in how we secure Linux environments, or just a sophisticated wrapper around the same old tools? . Dark Moon is...

AI-assisted patches are already showing up across open source. Small GitHub projects, package updates, kernel-adjacent tools, system libraries. It’s not a future problem anymore. . Maintainers are going to see more of this code, and most of them aren’t trying to ban it outright. They’re trying to figure out what happens when a contributor submits a patch they didn’t fully write and may not fully understand. That’s where the review process gets messy. Linux development depends on trust, but...

Most weeks in Linux are about new features. This one is about avoiding problems before they happen. Several projects shipped updates that quietly change how systems behave behind the scenes. None of them are particularly flashy, but if you're responsible for containers, workstations, gaming systems, or recovery media, these releases are worth paying attention to. Here's what stood out this week. . Podman 6.0 Is a Major Upgrade, Not a Routine Package Update If your infrastructure depends on...