Openwall

388 posts

Openwall

@Openwall

Infosec focused free software, research, publications, community activities @oss_security. Tweets are announcements. Please direct questions to @solardiz.

Katılım Haziran 2010

14 Takip Edilen7.2K Takipçiler

Openwall retweetledi

Open Source Security mailing list@oss_security·15 May

Linux kernel: Logic bug in __ptrace_may_access() openwall.com/lists/oss-secu… Discovered by @Qualys, publicly fixed in mainline, then reported to distros, spotted and exploited by others same day, distros scramble to fix their kernels as it became usual lately. x.com/spendergrsec/s…

Brad Spengler@spendergrsec

What have we here: git.kernel.org/pub/scm/linux/…

English

13.8K

Openwall retweetledi

Open Source Security mailing list@oss_security·15 May

CVE-2026-46300 aka Fragnesia: Linux kernel: Page cache corruption via a logic bug in the Linux XFRM ESP-in-TCP subsystem openwall.com/lists/oss-secu… x.com/v12sec/status/…

V12@v12sec

another day, another universal linux LPE

English

2.7K

Openwall retweetledi

Open Source Security mailing list@oss_security·7 May

Dirty Frag: Universal Linux LPE openwall.com/lists/oss-secu… allows obtaining root privileges on all major distributions. This vulnerability has a similar impact to the previous Copy Fail. Because the embargo has now been broken, no patches or CVEs exist for these vulnerabilities.

V4bel@v4bel

💥 Introducing "Dirty Frag" A universal Linux LPE chaining two vulns in xfrm-ESP and RxRPC. A successor class to Dirty Pipe & Copy Fail. No race, no panic on failure, fully deterministic. ~9 years latent. Ubuntu / RHEL / Fedora / openSUSE / CentOS / AlmaLinux, and more. Even if you've applied the "Copy Fail" mitigation, your Linux is still vulnerable to "Dirty Frag". Apply the Dirty Frag mitigation. Details: dirtyfrag.io

English

116

21.9K

Openwall retweetledi

Open Source Security mailing list@oss_security·30 Nis

CVE-2026-31431 aka Copy Fail: Linux kernel: algif_aead page cache corruption openwall.com/lists/oss-secu… logic bug in authencesn, chained through AF_ALG and splice() into a 4-byte page-cache write Python script roots every Linux distribution shipped since 2017 x.com/xint_official/…

Xint@xint_official

Patch your Linux boxes! Copy.Fail is a trivially exploitable logic bug in Linux, reachable on all major distros released in the last 9 years. A small, portable python script gets root on all platforms. Found by the teams at @theori_io and @xint_official More details below xint.io/blog/copy-fail…

English

2.3K

Openwall retweetledi

Open Source Security mailing list@oss_security·1 May

April 2026 was the busiest month for oss-security in 11 years. 311 messages posted. We surpassed the XZ backdoor spike of March-April 2024. We last had 300+ in April 2015 when we still had CVE assignment via the list. Now we're back without that incentive. openwall.com/lists/oss-secu…

English

1.6K

Openwall@Openwall·25 Nis

Linux Kernel Runtime Guard @lkrg_org 1.0.1 by @Adam_pi3 @solardiz @kerneltoast et al. is out, adds support for Linux 6.19 and 7.0, contains hardening changes and bug fixes openwall.com/lists/announce…

English

3.5K

Openwall@Openwall·5 Mar

passwdqc 2.1.0 is out, adding built-in common passwords list. We effectively include top 100k of HIBPv8 overlap with RockYou, optimized and compressed to under 200 KB embedded in program binary. None of JtR password.lst 1.8 million are accepted by default. openwall.com/lists/announce…

Openwall@Openwall

passwdqc 2.0.3 releases for Unix-like and Windows systems are out, with many minor additions and changes. Leaked password filter files updated to HIBP v8, encoding the 847+ million unique passwords (from billions of accounts) in a 3.5 GB file. openwall.com/lists/announce…

English

2.7K

Openwall retweetledi

Security BSidesLjubljana@BSidesLjubljana·13 Şub

Sponsor spotlight: @Openwall The people behind John the Ripper and decades of open-source security work. If anyone understands community-driven security, it's them. Thank you for backing #BSidesLjubljana. #InfoSec #Cybersecurity #Openwall

English

557

Openwall retweetledi

NULLCON@nullcon·29 Kas

At #NullconBerlin2025, @solardiz unpacked how Linux Kernel Runtime Guard (LKRG) 1.0 brings real-time integrity checking & exploit detection to the Linux kernel, even across different versions & edge-case environments. Watch Now: youtu.be/9hQULqxFdBs?si… #LKRG #LinuxSecurity

YouTube

English

4.4K

Openwall retweetledi

Solar Designer@solardiz·22 Eki

What should @Openwall's simpler vulnerability scoring system (CVSS alternative) be called? Note that we already have OVE openwall.com/ove/ as a CVE alternative, but unfortunately the OVSS acronym already has a bit of use in CS/AI for "open-vocabulary semantic segmentation".

English

1.4K

Openwall retweetledi

Hash Suite@HashSuite·20 Eki

Hash Suite 4.0 (Windows) adds support for custom Python scripts as key-provider, updated wordlists to download, better high-resolution support, and should have fewer antivirus false positives. hashsuite.openwall.net/download

English

1.2K

Openwall@Openwall·21 Eyl

We've just published the slides of @solardiz's @Nullcon Berlin 2025 talk "Linux Kernel Runtime Guard (LKRG) 1.0" openwall.com/lists/announce… #LKRG #nullconBerlin2025 #nullcon

English

8.9K

Openwall retweetledi

ISMG Network News@ISMG_News·17 Eyl

Strengthening Linux Security With Kernel Runtime Guard 🎯 #Linux security remains a pressing concern as vulnerabilities continue to expose critical systems. @solardiz, founder of @Openwall, and senior principal security engineer at CIQ, said Linux Kernel Runtime Guard's, or LKRG, 1.0 release brought major improvements in testing and code cleanup. Watch his full interview with @aseemjakhar: inforisktoday.com/strengthening-… #ISMGNews #ISMGStudio #cybersecurity #NullconBerlin2025 @nullcon

English

2.8K

Openwall@Openwall·2 Eyl

Linux Kernel Runtime Guard @lkrg_org 1.0.0 by @Adam_pi3 @solardiz @kerneltoast et al. is out, adds support for Linux 6.13+ (tested to 6.17-rc4), forward-edge CFI (Intel CET IBT, KCFI), ..., reduces performance overhead, shrinks the codebase by ~2500 lines. openwall.com/lists/announce…

CIQ@CtrlIQ

Heading to Nullcon Berlin 2025? @solardiz will share his LKRG expertise by taking an in-depth look at kernel hardening challenges and what it takes to protect systems in the real world. nullcon.net/berlin-2025/sp… #NullconBerlin2025 #LinuxSecurity #RLC_H

English

2.9K

Openwall retweetledi

NULLCON@nullcon·29 Tem

At #NullconBerlin2025, @solardiz will walk us through the journey from LKRG’s edgy debut to its 1.0 release – complete with real-world attacks, trade-offs, nasty bugs, & some honest truths about kernel hardening. Know More: nullcon.net/berlin-2025/sp… #LKRG #LinuxSecurity

English

3.1K

Openwall@Openwall·7 Haz

End of an era: our CVSweb service turned 21 today, and was promptly retired. Our anoncvs was similarly shut down at the age of 21 two years ago, quietly.

Openwall@Openwall

All of our projects previously maintained in CVS are now in Git (yes, older ones with commit histories for ~20 years) and under the Openwall organization on GitHub. There are a total of 22 Git repositories now. openwall.com/lists/announce… github.com/openwall

English

2.6K

Openwall retweetledi

CIQ@CtrlIQ·24 Nis

🔒 Enhancing LKRG: A Step Toward Stronger Security. CIQ's own Sultan Alsawaf recently contributed impactful updates to the LKRG project, fixing longstanding bugs & making it stronger & more stable than ever. Learn more here 🔗 hubs.li/Q03jDBsj0 #HPC #IT #LKRG #OpenSource #Linux

English

1.6K

Openwall retweetledi

kmkz@kmkz_security·16 Nis

#MITRE #CVE is great (dead?), but @Openwall 's #OVE has been a system for vuln. tracking-ID since 2016 ! Ex: #Exim CVE-2019-13917 also has OVE ID: OVE-20190718-0006 I used both for tracking vulnerabilities since 2k16. Time to give #OVE more visibility: openwall.com/ove/

English

1.5K

Openwall retweetledi

Solar Designer@solardiz·11 Mar

I'm happy to build upon and extend the ideas and approaches we had tested and proven, and expertise gained building @Openwall's security enhanced Linux distribution, now for @CtrlIQ's wider audience and in a modern context.

CIQ@CtrlIQ

📣 Exciting news from CIQ! 📣 Announcing Rocky Linux from CIQ - Hardened! Read the press release: hubs.li/Q03blcsv0 #RLCHardened #RLC #RockyLinux #CIQ #SysAdmin #ProductLaunch

English

10.5K

Openwall retweetledi

Solar Designer@solardiz·3 Şub

Interview with @Adam_pi3 and me about LKRG, in English adwersarz.pl/polish-it-secu… and Polish

Adwersarz.pl@adwersarz_pl

Czas na wywiad! Rozmawiamy z @Adam_pi3 i @solardiz o LKRG (Linux Runtime Kernel Guard), które może znacznie utrudnić zhackowanie Linuxa. Co słychać i jak przebiega rozwój projektu, czy ktoś próbował skutecznie obejść LKRG? Zapraszamy do lektury! adwersarz.pl/polskie-projek…

English

6.5K

Keşfet

@qualys @lkrg_org @Adam_pi3 @solardiz @kerneltoast @Nullcon @aseemjakhar @nullcon