All Articles

Page 1 of 6
Tech Editorials #Vulnerability #Ubuntu #Advisory #Linux #Kernel #AppArmor

The Journey of Bypassing Ubuntu’s Unprivileged Namespace Restriction

Pumpkin

2025-06-26

Recently, Ubuntu introduced sandbox mechanisms to reduce the attack surface, and they seemed unbreakable. However, after carrying out in-depth research, we found that the implementation contained some issues, and bypassing it was not as difficult as expected. This post will explain how we began our research at the kernel level and discovered a bypass method. We will also share some interesting stories from the process.

Tech Editorials #Vulnerability #Windows #Advisory #CVE

From Convenience to Contagion: The Half-Day Threat and Libarchive Vulnerabilities Lurking in Windows 11

Terrynini

2025-02-12

Windows 11's KB5031455 update adds RAR and 7z support via libarchive, but DEVCORE discovered multiple vulnerabilities, including Heap Buffer Overflow and arbitrary file operations. Delayed patching also enables “Half-day” attacks, putting projects like ClickHouse at risk. A step forward in convenience—or a hidden security threat?