Hosted on MSN

One tiny Linux typo just opened the door to root access

A tiny Linux kernel mistake is now a serious local-root risk for systems that have not been updated. CVE-2026-23111 affects nf_tables, the kernel subsystem behind nftables, and public exploit ...
LinkedIn

David Zarebski’s Post

If you appreciate to manage your firewall rules at low level and are used to set your entire infra with ansible, you might have been faced with the following dilemma: how to accommodate the single ...
LinkedIn

Linux nftables Security Flaw CVE-2026-23111

By the time your sidecar sees it, the kernel already ran it. User-space security is already too late. 0-days don't wait for your maintenance window. Log4Shell. XZ Utils. The next one, you don't even ...
GitHub

2026-03-13-configure-calico-nftables-mode-new-cluster

Configuring Calico in nftables mode for a new cluster involves the same Calico CRD-based configuration as iptables mode, with the key addition of ensuring all Felix configuration is compatible with ...
GitHub

codingCoffee/osquery-nftables-ext

The extension never modifies firewall state. The only external command it ever runs is nft -j list ruleset, invoked with a fixed argument slice — no shell, no string building, no injection surface.