Techly NewsGet the app

Get the latest tech news

Slowing the flow of core-dump-related CVEs


The 6.16 kernel will include a number of changes to how the kernel handles the processing of co [...]

See, for example, this recent Qualys advisory describing a vulnerability in Ubuntu's apport tool and the systemd-coredump utility, both of which are designed to process core dumps. The key takeaways, though, are that core-dump handlers on a number of widely used distributions are vulnerable to this attack, and that reusable integer IDs as a way to identify processes are just as much of a problem as the pidfd developers have been saying over the years. The end result is a system for handling core dumps that is more efficient (since there is no need to launch new helper processes each time) and which should be far more resistant to many types of attacks.

Get the Android app

Or read this on Hacker News

Read more on:

Photo of flow

flow

Photo of dump

dump

Photo of related CVEs

related CVEs

Related news:

News photo

Ray-Ban Meta AI Glasses: Another Tech Product Designed for the Dump?

News photo

Google’s new filmmaking tool Flow adds editing tools and some consistency to AI-generated video

News photo

Google debuts an AI-powered video tool called Flow

« As RHEL clones hit version 10, Rocky and Alma chart diverging paths
Protecting your code from other people's bugs »