Linux
6 posts
DirtyClone (CVE-2026-43503): Linux local root with no log trail, by overwriting /usr/bin/su
Linux kernel DirtyClone (CVE-2026-43503) lets any local user root the box via XFRM/IPsec packet cloning. No log trail. Patched in 7.1-rc5 — update now.
iOS 27 Beta 2 firmware reveals «Baidu Visual Search» — Apple's first region-routed visual search backend
iOS 27 Beta 2 contains a SearchPartnerInferenceProvider component with localized strings naming «Baidu Visual Search» — Apple's first region-routed visual search backend, and Baidu is the only named partner so far.
curl 8.21.0 patches a record 18 CVEs — one hidden 25 years, most found by AI
curl 8.21.0 fixes 18 CVEs at once — a single-release record. One had been hiding since 2001, and at least 11 were found by AI models, including 6 from AISLE alone.
IBM bets $5B on open-source security — and openly admits Mythos was the trigger
IBM and Red Hat announce Project Lightwell — a $5B, 20,000-engineer open-source security clearinghouse. CEO Arvind Krishna says explicitly: Anthropic's Mythos was the trigger.
Linux CIFSwitch — 18-year-old kernel LPE, PoC public, found by AI semantic graph analysis
Linux kernel CIFSwitch — an 18-year-old local privilege escalation, found via AI-assisted semantic graph analysis. PoC public. Major distros vulnerable, patch and isolate now.
macOS Tahoe 26.5 patches 69 holes — kernel-fix count a multi-year record
macOS Tahoe 26.5 patches 69 security issues — 9 in the kernel alone, a multi-year high. One kernel and one WebKit fix credit «Claude and Anthropic Research».