grsecurity
@grsecurity
Foundational security for the Linux kernel. Solving the most difficult memory unsafety problems. Created by @opensrcsec
It's now available!
Currently accelerating our beta schedule. We expect our 6.15 #grsecurity beta to be available within the next two weeks.
Currently accelerating our beta schedule. We expect our 6.15 #grsecurity beta to be available within the next two weeks.
Our report for the month of June: rust-gcc.github.io/2025/07/17/202… Still making good progress and progressing fast towards testing the kernel's alloc crate
It's now available!
We expect our 6.14 #grsecurity beta to be available within the next two weeks.
We expect our 6.14 #grsecurity beta to be available within the next two weeks.
#grsecurity users are unaffected by CVE-2025-32463 (sudo chroot option privesc) when a feature available since 2021 is enabled. Customers can view our KB article on an earlier vulnerability this year, CVE-2025-4802 for glibc, to see how exploitation is prevented in the same way.
A bit late, but I just published my blog post on bypassing Ubuntu’s sandbox! Hope you enjoy it! u1f383.github.io/linux/2025/06/…
Quick reminder that our 6.8 short-term stable kernel goes EOL at the end of this month. Some stats: over the period of a year, it included over 1500 security/stability-relevant backports.
The @Qualys TRU has identified two related local privilege escalation CVEs in openSUSE, SUSE Linux Enterprise, and libblockdev via the udisks daemon. Due to the ease of exploitation, immediate patching is strongly recommended. @saeed4bbasi explains: bit.ly/3SSjho2
New report for the month of May: rust-gcc.github.io/2025/06/04/202… We are making good progress on core and plan on begin testing the Rust code in the kernel at the end of the summer!
Nice demo: tested a vulnerable Ubuntu 22.04 system for glibc CVE-2025-4802 using @solardiz's PoC adapted to Ubuntu (replace any occurrence of "myhostname" with "mdns4_minimal"). Even an old #grsecurity 5.4.96 kernel from February 8 2021 prevented exploitation
Monthly report for the month of March: rust-gcc.github.io/2025/04/15/202… Which mentions some of the work done for supporting specialization in `core` :) We've upstreamed 600 commits to GCC this month and will continue to do so until 15.1 releases!
Thank you @opensrcsec for sponsoring EuroRust in Paris as a Partner 🦀💜 It is great to have you on board! Learn more about OpenSourceSecurity Inc here ➡️ opensrcsec.com #rustlang #EuroRust25
CVE-2025-0927 details here! ssd-disclosure.com/ssd-advisory-l…
Here is our monthly report for February, with more explanations of the features we are currently working on. See you all in Paris tomorrow for Rust In Paris 2025! rust-gcc.github.io/2025/03/10/202…
It's now available!
We expect our 6.13 #grsecurity beta to be available within the next two weeks.
We expect our 6.13 #grsecurity beta to be available within the next two weeks.
First monthly report of the year with some code snippets of our two main targets (Rust-for-Linux and Rust's core crate) to show the importance of the milestones we are working on: rust-gcc.github.io/2025/02/06/202…
