CISA Urges Immediate Patching of Critical Linux Kernel Vulnerability

May 31, 2024 at 07:30 PM

•

1 min read

CISA Urges Immediate Patching of Critical Linux Kernel Vulnerability — Photo: BleepingComputer

TL;DR Summary

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has added a high-severity Linux kernel privilege elevation flaw (CVE-2024-1086) to its Known Exploited Vulnerabilities catalog. This flaw, which allows local attackers to gain root-level access, was introduced in 2014 and fixed in January 2024. Despite most Linux distributions quickly pushing out fixes, Red Hat delayed until March, potentially exposing systems to public exploits. Federal agencies have until June 20, 2024, to apply patches or implement mitigations. CISA also added CVE-2024-24919, an information disclosure vulnerability in Check Point VPN devices, to the catalog.

Topics:technology #cisa #cybersecurity #linux #patches #privilege-escalation #vulnerability

Share this article

CISA warns of actively exploited Linux privilege elevation flaw BleepingComputer
CISA Alerts Federal Agencies to Patch Actively Exploited Linux Kernel Flaw The Hacker News
Federal agency warns critical Linux vulnerability being actively exploited Ars Technica
CISA Warns of Exploited Linux Kernel Vulnerability SecurityWeek
CISA adds Check Point Quantum Security Gateways and Linux Kernel flaws to its Known Exploited Vulnerabiliti... Security Affairs

Reading Insights

Total Reads

Unique Readers

Time Saved

2 min

vs 3 min read

Condensed

78%

412 → 91 words

Want the full story? Read the original article

Read on BleepingComputer

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights