🔐 The CIFSwitch Linux kernel flaw could let local attackers forge cifs.spnego requests, abuse the key request mechanism, and gain root privileges on multiple distributions. 🛠️ A kernel patch now validates cifs.spnego request origins, and recommended mitigations include disabling unused CIFS, removing unnecessary cifs-utils, and disabling unprivileged user namespaces. ➡️ https://lnkd.in/eSkEDYF4 #Linux #CIFS #PrivilegeEscalation #cybersecurity
