Security Vulnerabilities 
malware linux
malware linux IronWorm steals credentials and uses them to spread beyond the original victim, turning developer access into a supply chain risk. . A new campaign targeting npm has evolved past simple credential theft. Researchers identified IronWorm, a self-spreading threat. It harvests high-value Linux development secrets—SSH keys, cloud tokens, package publishing credentials. One compromised workstation becomes a launchpad for downstream supply chain attacks. This is not a get-in-and-get-out operation....
Jun 08, 2026
Network Securitysystem security Linux network
system security Linux network The romanticized image of the digital nomad – a laptop on a sun-drenched balcony – rarely accounts for the actual friction of maintaining a professional development environment on the move. . The friction is amplified with Linux. We are looking for a setup that respects our kernel configurations, handles volatile network handovers, and maintains a strict security posture without the hand-holding of a consumer-grade OS – so, put simply, more than just a laptop and a sunny deck. The hardware is...
May 26, 2026
Server Securityopen-source Linux administration
open-source Linux administration Cron has existed in Unix and Linux environments for decades, handling backups, cleanup scripts, patching jobs, log rotation, monitoring tasks, and other maintenance work that administrators do not want to run manually. Most Linux servers rely on it constantly, which is exactly why attackers continue abusing it for persistence after a system has already been compromised. . Persistence through cron is not complicated. Attackers do not need a rootkit or advanced malware framework to maintain...
May 25, 2026
Vendors/Productssecurity breach linux
security breach linux A major internal repository breach at GitHub has exposed a critical and overlooked blind spot in Linux supply chain security. Kernel exploits, exposed SSH services, weak firewall rules, and vulnerable daemons dominated the Linux threat model for years, and in many environments, they still matter. But recent supply-chain incidents involving GitHub ecosystems, npm packages, and malicious developer tooling point somewhere else entirely: the developer workstation. . The breach matters because...
May 21, 2026
Security Trends access control multi-tenant
access control multi-tenant Linux administrators often face an ugly choice in the cloud: prioritize convenience and cost-efficiency by sharing infrastructure, or sacrifice those benefits for the sake of total isolation. Most modern Linux workloads don't live on their own private servers anymore. They live in shared environments like Kubernetes clusters, where multiple teams and services run side-by-side. It sounds efficient, and it usually is. . But cloud isolation isn't as ironclad as it looks on the diagram. If you...
May 21, 2026
Refine news
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security news
We found 2 articles for you...
215
Ubuntukernel supportsecure bootLinux Mint 21.2 EDGE ISO Release With Kernel 6.2 And Secure Boot Support
This variant of Linux Mint 21.2 is available only with the Cinnamon desktop environment and it's based on Ubuntu 22.04.3 LTS. . The Linux Mint team announced today the release and general availability for download of the “EDGE” ISO flavor of the latest Linux Mint 21.2 “Victoria” release for those who need support for newer hardware. “This image is made for people whose hardware is too new to boot the 5.15 LTS kernel included in Linux Mint 21.x.” Linux Mint 21.2 “Victoria” arrived in mid-July 2023 based on the Ubuntu 22.04 LTS (Jammy Jellyfish) operating system series and powered by the long-term supported Linux 5.15 LTS kernel, which is also used as the default kernel in the initial upstream release. The “EDGE” variant of Linux Mint 21.2 ships with a newer kernel, namely Linux kernel 6.2, which is included in the upstream Ubuntu 22.04.3 LTS release by default. This “EDGE” ISO image promises to support newer hardware and it’s targeted at those who want to install Linux Mint 21.2 on PCs where the normal ISO image does not recognizes their hardware. In addition to the Linux 6.2 kernel, the Linux Mint 21.2 “EDGE” ISO release also ships with the Mesa 23.0.4 open-source graphics stack, Secure Boot support, as well as newer packages from the upstream Ubuntu 22.04.3 LTS repositories. The link for this article located at 9 to 5 Linux is no longer available. . Ubuntu 22.04.1 "HORIZON" ISO includes kernel 5.15 support, improving device functionality alongside enhanced Snap package management.. Linux Mint, Kernel Support, Secure Boot, ISO Release, Hardware Compatibility. . Brittany Day
Oct 03, 2023
•
Desktop Security
79
security enhancementkernel supportTorvaldsDropping i486 Support to Enhance Linux Kernel Stability and Security
Linux Torvalds, founder of the Linux kernel, has posted in the kernel mailing list that he wants to drop support for Intel 486 (i486) processors, citing their age. The i486 CPUs were introduced way back in April 1989 and discontinued in 2007. They were designed by Pat Gelsinger, who is now Intel’s CEO . . Support for i386 processors was removed back in 2012 and now there’s a desire by Torvalds to axe support for i486 a decade later. He has suggested that people still using i486 ought to be told to use an LTS kernel, but that the mainline kernel should lose support. A couple of people responded to the thread saying that it wouldn’t be too inconvenient to remove support, so there’s a good chance the plan could go forward. For most people running Linux, this change will not have any impact because most will be running newer hardware. By dropping support, the kernel should become more secure too because there’s a bit less code that needs to be maintained and protected from vulnerabilities. . Linus Torvalds suggests phasing out i486 compatibility from the kernel, highlighting advancements in hardware and enhancements in security protocols.. Linus Torvalds,Kernels,i486,Processor Compatibility,Security Enhancements. . LinuxSecurity.com Team
Oct 26, 2022
•
Security Projects
79
kernel supportperformance enhancementApple M1Linux Kernel 5.13: Apple M1 Support Available for Public Testing
The upcoming Linux kernel 5.13 release will support Apple's popular M1 chip. As of yesterday, the candidate version is available for public testing! . The Apple M1 chip has recently started to gain much traction and is now fully recognized as another possible processor to choose for high-end performance. It seems like the recognition now stems past Apple as the latest version of the popular Linux kernel known as the Linux 5.13 would introduce support for Apple's M1! . The latest Linux kernel version 5.13 introduces support for Apple's M1 processor, significantly boosting efficiency for users in need of premium performance.. Linux Kernel, Apple M1 Support, High Performance, Public Testing. . LinuxSecurity.com Team
May 12, 2021
•
Security Projects
79
open sourcekernel supportLinux developmentLinus Torvalds Talks Rust Support For Upcoming Linux Kernel 5.14
The first patches for Rust support in the Linux kernel have been posted and Linus Torvalds says that things are "getting to the point where maybe it might be mergeable for 5.14 or something like that". In Torvalds' opinion, the fact that these are being discussed is much more important than a long post by Google about the language. . Linus Torvalds told iTWire in response to queries that Rust support was "not there yet", adding that things were "getting to the point where maybe it might be mergeable for 5.14 or something like that". Release candidate six of the 5.12 kernel branch came out in the first week of April. Each point release normally has eight weekly releases, with a further fortnight taken before the final release. That means it would take some time for 5.14 to emerge. The Google post , from Wedson Almeida Filho of its Android team, pointed out that Android now supported Rust for developing the operating system itself. The link for this article located at ITWire is no longer available. . Linus Torvalds noted that the integration of Rust into the Linux kernel is advancing and could be featured in the soon-to-come 5.14 update.. Rust Support, Linux Kernel Development, Linus Torvalds. . LinuxSecurity.com Team
Apr 19, 2021
•
Security Projects
76
security issueskernel supportLinux kernelLinux 5.3 End Of Life: Upgrade To Kernel 5.4 For Security Support
The Linux 5.3 kernel series has reached end of life and it will no longer receive maintenance updates that fix critical security issues or bugs. Learn more: . Renowned Linux kernel developer Greg Kroah-Hartman announced last week the release of the 18th maintenance update to the Linux 5.3 kernel series, version 5.3.18, which changes a total of 59 files, with 369 insertions and 329 deletions. However, the developer also noted the fact that this will be the last update for the Linux kernel 5.3 series, which now reached end of life. "I'm announcing the release of the 5.3.18 kernel. Note, this is the LAST 5.3.y kernel release. It is now end-of-life. Please move to 5.4.y now. All users of the 5.3 kernel series must upgrade," said Greg Kroah-Hartman in amailing list announcement. "The updated 5.3.y git tree can be found at kernel/git/stable/linux.git - Linux kernel stable tree." The link for this article located at Softpedia News is no longer available. . Celebrated open source advocate Linus Torvalds declared earlier this month the launch of the 5th major update for the kernel.. linux, kernel, series, reached, longer, receive, maintenance, update. . Brittany Day
Dec 30, 2019
•
Organizations/Events
78
updateRSBACkernel supportRSBAC 1.2.7 Announcement: Kernel Support And New Features
The RSBAC team is happy to announce that RSBAC 1.2.7 has just been released for both kernels 2.4.32 and 2.6.16. . This is the latest stable version. There is no special upgrade path if you were using 1.2.6 or 1.2. Simply compile, install the new admin tools and the new kernel. This is a short release since 1.2.6 that fixes a few remaining issues. Changes since 1.2.6: Fix rsbac-admin debian Changelog Fix 2.4 pax flags location Fix 1.2.6 patches issues (non-RSBAC code) Changes since 1.2.5: New kthread notification code rsbac_login behaving now more like pam login GCC-4 compatibility fixes Change FF to allow file READ (but not READ_OPEN) even with execute_only Caches infected scan results on read/open/close instead of rescan xstats now include GROUP targets Debian package fixes Patches and prepatched kernels are available at this location: . The latest release of RSBAC 1.2.7 is now available. Proceed to compile and set up the updated administrative utilities and core.. RSBAC, Rsbac Kernel, Security Update. . LinuxSecurity.com Team
Jun 09, 2006
•
Vendors/Products
79
access controlsecurity featuresRSBACRSBAC 1.1.1 Release: Enhanced Features and Kernel Support Overview
Rule Set Based Access Control (RSBAC) version 1.1.1 has been released. Information and downloads are available from https://www.rsbac.org/. . .. Rule Set Based Access Control (RSBAC) version 1.1.1 has been released. Information and downloads are available from https://www.rsbac.org/ Below are the notes that Amon sent to the RSBAC mailing list --------------------------------------- Name: rsbac Version: 1.1.1 Kernelver: 2.2.18-19, 2.4.2 Status: 9 (UP), 8 (SMP) Author: Amon Ott Maintainer: Amon Ott Description: Rule Set Based Access Control (RSBAC) Date: 28-March-2001 Descfile-URL: https://www.rsbac.org/rsbac.desc Download-URL: https://www.rsbac.org/download.htm Homepage-URL: https://www.rsbac.org/ Manual-URL: https://www.rsbac.org/instadm.htm What is RSBAC? -------------- RSBAC is a flexible, powerful and fast open source access control framework for current Linux kernels, which has been in stable production use for over a year (since version 1.0.9a). The standard package includes a range of access control models like MAC, RC, ACL (see below). Furthermore, the runtime registration facility (REG) makes it easy to implement your own access control model as a kernel module and get it registered at runtime. The RSBAC framework is based on the Generalized Framework for Access Control (GFAC) by Abrams and LaPadula. All security relevant system calls are extended by security enforcement code. This code calls the central decision component, which in turn calls all active decision modules and generates a combined decision. This decision is then enforced by the system call extensions. Decisions are based on the type of access (request type), the access target and on the values of attributes attached to the subject calling and to the target to be accessed. Additional independent attributes can be used by individual modules, e.g. the privacy module (PM). All attributes are stored in fully protected directories, one on each mounted device. Thus changes toattributes require special system calls provided. As all types of access decisions are based on general decision requests, many different security policies can be implemented as a decision module. Apart from the builtin models shown below, the optional Module Registration (REG) allows for registration of additional, individual decision modules at runtime. In RSBAC version 1.1.1, the following modules are included. Please note that all modules are optional. They are described in detail in an extra text. MAC: Bell-LaPadula Mandatory Access Control (compartments limited to a number of 64) FC: Functional Control. A simple role based model, restricting access to security information to security officers and access to system information to administrators. SIM: Security Information Modification. Only security administrators are allowed to modify data labeled as security information PM: Privacy Model. Simone Fischer-Hübner's Privacy Model in its first implementation. See our paper on PM implementation (43K) for the National Information Systems Security Conference (NISSC 98) MS: Malware Scan. Scan all files for malware on execution (optionally on all file read accesses or on all TCP/UDP read accesses), deny access if infected. Currently the Linux viruses Bliss.A and Bliss.B and a handfull of others are detected. See our paper on Approaches to Integrated Malware Detection and Avoidance (34K) for The Third Nordic Workshop on Secure IT Systems (Nordsec'98) FF: File Flags. Provide and use flags for dirs and files, currently execute_only (files), read_only (files and dirs), search_only (dirs), secure_delete (files), no_execute (files), add_inherited (files and dirs) and no_rename_or_delete(files and dirs, no inheritance). Only security officers may modify these flags. RC: Role Compatibility. Defines 64 roles and 64 types for each target type (file, dir, dev, ipc, scd, process). For each role, compatibility toall types and to other roles can be set individually and with request granularity. For administration there is a fine grained separation-of-duty. AUTH: Authorization enforcement. Controls all CHANGE_OWNER requests for process targets, only programs/processes with general setuid allowance and those with a capability for the target user ID may setuid. Capabilities can be controlled by other programs/processes, e.g. authentication daemons. ACL: Access Control Lists. For every object there is an Access Control List, defining which subjects may access this object with which request types. Subjects can be of type user, RC role and ACL group. Objects are grouped by their target type, but have individual ACLs. If there is no ACL entry for a subject at an object, rights are inherited from parent objects, restricted by an inheritance mask. Direct (user) and indirect (role, group) rights are accumulated. For each object type there is a default ACL on top of the normal hierarchy. Group management has been added in version 1.0.9a. A general goal of RSBAC design has been to some day reach (obsolete) Orange Book (TCSEC) B1 level. Now it is mostly targeting to be useful as secure and multi-purposed networked system, with special interest in firewalls. RSBAC Changes ------------- 1.1.1: - New target type FIFO, with a lot of cleanup, e.g. IPC type fifo removed - MAC module reworked, including MAC-Light option - Several bugfixes - Port to 2.4.0, 2.4.1 and 2.4.2 - New Makefiles with lists for 2.4 and without for 2.2 kernels (Thanks to Edward Brocklesby for samples) - init process default ACI now partly depends on root's ACI - Optional interception of sys_read and sys_write. Attention: you might have to add READ and WRITE rights to files, fifos, dirs and sockets first, if upgrading from an older version - REG overhaul. Now you can register syscallfunctions, everything is kept in unlimited lists instead of arrays and registering is versioned to allow for binary module shipping with REG version checks. - Inheritance is now fixed, except for MAC model - MAC: optional inheritance, new option Smart Inheritance that tries to avoid new attribute objects (see config help) - New soft mode option: all decisions and logging are performed, but DO_NOT_CARE is returned to enforcement. Off by default. See config help for details. - Optional initialization in extra rsbac_initd thread. . Rule Set Based Access Control (RSBAC) version 1.1.1 has been released. Information and downloads are. based, control, (rsbac), version, released, information, downloads. . LinuxSecurity.com Team
Mar 30, 2001
•
Security Projects
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More