all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

‘Dirty Pipe’ Linux vulnerability allows an attacker to overwrite data

Add to bookmarks
March 8, 2022, 12:58 a.m. | Duncan Riley

Security – SiliconANGLE siliconangle.com


A newly revealed vulnerability in the Linux kernel allows an attacker to overwrite data in arbitrary read-only files. Detailed today by security researcher Max Kellermann and dubbed “Dirty Pipe,” the vulnerability leads to privilege escalation, since unprivileged processes can inject code into root processes. The vulnerability, officially named CVE-2022-0847, affects Linux Kernel 5.8 and later versions, […]

The post ‘Dirty Pipe’ Linux vulnerability allows an attacker to overwrite data appeared first on SiliconANGLE.

cyber cyber2021 cybersecurity data dirty pipe hacking linux security the-latest vulnerability

Visit resource

More from siliconangle.com / Security – SiliconANGLE

Microsoft enhances Priva service with five new privacy management features 4 weeks, 1 day ago | siliconangle.com
automated capabilities cyber cybersecurity +26
Lacework’s latest update empowers security teams with faster, more efficient tools 1 month ago | siliconangle.com
analysts called capabilities chief +27
New Adlumin ransomware protection feature thwarts encryption attacks 1 month ago | siliconangle.com
adlumin attack attacks banktech ventures +25
Sonrai Security simplifies cloud access and permissions with new firewall service 1 month ago | siliconangle.com
access amazon amazon web services aws +41
Microsoft-backed data security firm Rubrik announces IPO plans 1 month ago | siliconangle.com
back big data bipul sinha companies +25
New Tanium-Microsoft partnership provides endpoint data to Copilot for Security 1 month ago | siliconangle.com
access agile equity artificial artificial intelligence +29
AT&T confirms data from 73M customers exposed on dark web 1 month ago | siliconangle.com
amp att customers cyber +15
CNCF’s Notary Project evolves container signing for enhanced supply chain security 1 month ago | siliconangle.com
businesses can cloud cloud native computing foundation +35
Cloud data privacy solutions provider Skyflow raises $30M to enhance data privacy vaults 1 month ago | siliconangle.com
ai security applications canvas ventures cloud +28

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Premium Hub - CoE: Business Process Senior Consultant, SAP Security Role and Authorisations & GRC

@ SAP | Dublin 24, IE, D24WA02
View on infosec-jobs.com

Product Security Response Engineer

@ Intel | CRI - Belen, Heredia
View on infosec-jobs.com

Application Security Architect

@ Uni Systems | Brussels, Brussels, Belgium
View on infosec-jobs.com

Sr Product Security Engineer

@ ServiceNow | Hyderabad, India
View on infosec-jobs.com

Analyst, Cybersecurity & Technology (Initial Application Deadline May 20th, Final Deadline May 31st)

@ FiscalNote | United Kingdom (UK)
View on infosec-jobs.com
View more jobs