Lifeboat Foundation: Safeguarding Humanity
Toggle light / dark theme

Blog

Category: security

New Linux ‘Dirty Frag’ zero-day gives root on all major distros

A new Linux zero-day exploit, named Dirty Frag, allows local attackers to gain root privileges on most major Linux distributions with a single command.

Security researcher Hyunwoo Kim, who disclosed it earlier today and published a proof-of-concept (PoC) exploit, says this local privilege escalation was introduced roughly nine years ago in the Linux kernel’s algif_aead cryptographic algorithm interface.

Dirty Frag works by chaining two separate kernel flaws, the xfrm-ESP Page-Cache Write vulnerability and the RxRPC Page-Cache Write vulnerability, to modify protected system files in memory without authorization and achieve privilege escalation.

Effect of Cognitive Reserve on Age at Symptom Onset and Cognitive Decline in Individuals With Dominantly Inherited Alzheimer Disease

This website uses a security service to protect against malicious bots. This page is displayed while the website verifies you are not a bot.

Efficacy and Safety of Amifampridine in Myasthenia GravisA Randomized, Double-Blind, Placebo-Controlled Crossover Trial

Class I evidence that in patients with AChRAb+ myasthenia gravis, the addition of amifampridine to pyridostigmine was not superior to treatment with pyridostigmine alone and was associated with a higher incidence of adverse events.

This website uses a security service to protect against malicious bots. This page is displayed while the website verifies you are not a bot.

Teaching NeuroImage: Bilateral Posterior Limb Internal Capsule T2 Hyperintensity and Severe Cerebellar Atrophy in 2 Lifelong Friends

This website uses a security service to protect against malicious bots. This page is displayed while the website verifies you are not a bot.

Critical vm2 sandbox bug lets attackers execute code on hosts

A critical vulnerability in the popular Node.js sandboxing library vm2 allows escaping the sandbox and executing arbitrary code on the host system.

The security issue is tracked as CVE-2026–26956 and has been confirmed to impact vm2 version 3.10.4, although earlier releases may also be vulnerable. Proof-of-concept (PoC) exploit code has been published.

In the security advisory, the maintainer says that the issue only impacts environments with Node.js 25 (confirmed on Node.js 25.6.1) that have enabled WebAssembly exception handling and JSTag support.

Hologram technology where ‘light becomes the key’ enables hard-to-copy security

A new type of hologram technology has been developed that uses the motion of light as a key, revealing information only under specific conditions. This is gaining attention as a novel approach that can simultaneously overcome the limitations of existing optical communication and security technologies.

How controlling light inside a tiny resonator could speed AI chips and secure communications

A new technology allows light to be “designed” into desired forms, potentially making AI and communication technologies faster and more accurate. A KAIST research team has developed an “integrated photonic resonator”—a core component of next-generation optical integrated circuits that process data using light. Interestingly, the research was led by an undergraduate student. This technology is expected to serve as a key foundation for next-generation security technologies such as highspeed data processing and quantum communication.

The resonator developed by the research team of Professor Sangsik Kim from the School of Electrical Engineering, in collaboration with Professor Jae Woong Yoon’s team from the Department of Physics at Hanyang University, is capable of freely controlling optical signals by utilizing light interference (the phenomenon where two light waves meet and influence each other). Their paper is published in Laser & Photonics Reviews.

Photonic Integrated Circuits (PICs) process data at ultra-high speeds and with low power consumption using light. They are garnering significant attention as a fundamental platform technology for next-generation fields such as AI, data centers, and quantum information processing.

Curriculum Innovation: Neurocritical Care EEG RoundsA Model to Improve Neurology Resident EEG Interpretation

Curriculum innovation: neurocritical care EEG rounds—a model to improve neurology resident EEG interpretation.

This website uses a security service to protect against malicious bots. This page is displayed while the website verifies you are not a bot.

/* */