Home / Technology / Linux Flaw: 20-Year-Old Vulnerability Exposed
Linux Flaw: 20-Year-Old Vulnerability Exposed
1 Jun
Summary
- Linux vulnerability named CIFSwitch affects 20-year-old feature.
- Major Linux distributions including Mint and CentOS are affected.
- Updates and disabling file-sharing components are key mitigations.
A significant privilege-escalation vulnerability, dubbed CIFSwitch, has been revealed by researcher Asim Viladi Oglu Manizada. This flaw exploits a Linux feature used for network file sharing and has potentially existed for approximately 20 years. It allows a regular user account to be elevated to full system administrator privileges.
Multiple popular Linux distributions are affected, including Mint, CentOS Stream 9, Rocky Linux 9, AlmaLinux 9, Kali Linux, and SLES 15 SP7. Some Ubuntu and Debian versions may also be vulnerable depending on installed packages. Newer versions of Linux distributions with enhanced security features, or those lacking the affected file-sharing functionality, may not be at risk.
While a kernel update has been issued to address the CIFSwitch vulnerability, not all distributions have yet received the patch. Users are strongly advised to install the latest security updates as soon as they are available. System administrators can further fortify their systems by disabling unnecessary file-sharing components and restricting features that could facilitate exploitation of this flaw. Notably, the discovery of CIFSwitch was aided by the use of Large Language Models (LLMs).
