04/27/2025, 06:35 PM UTC
Linux存在一个盲点,暴露用户于一个严重的安全漏洞Linux Has A Blind Spot That Exposes Users To A Nasty Security Flaw
➀ 2019年引入的Io_uring旨在提高Linux上输入和输出操作的效率和灵活性,但也为Linux安全工具创造了关键盲点。
➁ 安全研究人员发现,io_uring操作可以完全规避传统的系统调用监控,导致无法检测的活动。
➂ 一个名为Curing的rootkit被构建来利用这个漏洞,它可以执行命令、读取文件,并与网络交互,而不使用可检测的系统调用。
➀ Io_uring was introduced in 2019 to improve the efficiency and flexibility of input and output operations on Linux, but it also created critical blind spots for Linux security tools.
➁ Security researchers have discovered that io_uring operations can completely evade conventional system call monitoring, leading to undetectable activities.
➂ A rootkit called Curing was built to exploit this vulnerability, which can execute commands, read files, and interact with the network without detectable system calls.
---
本文由大语言模型(LLM)生成,旨在为读者提供半导体新闻内容的知识扩展(Beta)。
