“Bad Epoll” Linux Kernel Bug Lets Any User Grab Root
A newly disclosed use-after-free in the Linux kernel’s epoll code, CVE-2026-46242, lets an unprivileged user get root on affected Linux and Android systems. A fix is out, but it took two attempts.
A newly disclosed use-after-free in the Linux kernel’s epoll code, CVE-2026-46242, lets an unprivileged user get root on affected Linux and Android systems. A fix is out, but it took two attempts.
CVE-2026-43503 DirtyClone is the fourth DirtyFrag-family privilege escalation in six weeks. JFrog’s public PoC raises the urgency. More variants may still be in the attack surface.
Most Linux server hardening guides list everything equally. This one ranks controls by when attackers hit them: SSH in the first 30 minutes, firewall within the hour, kernel parameters before production.
Privilege escalation is the pivot point in almost every serious intrusion. This guide explains where it fits in the attack chain, the tooling attackers use, and what defenders need to monitor to catch it early.
Microsoft has rolled out a huge Patch Tuesday update bundle for October 2025, addressing 175…
Microsoft has released the scheduled Patch Tuesday updates for September 2025, addressing 81 security vulnerabilities…
Microsoft has released the scheduled Patch Tuesday updates for August 2025. This month’s update bundle…
Microsoft has rolled out the Patch Tuesday updates for July 2025, ensuring the updates. This…
The June 2025 Patch Tuesday update bundle from Microsoft addressed numerous critical vulnerabilities and zero-day…
With May Patch Tuesday updates, Microsoft addressed dozens of security vulnerabilities important for customers’ systems.…