DigiNews

Summary

CIFSwitch documents a Linux local root vulnerability in the CIFS/spnego flow, showing how a forged cifs.spnego key description can trigger cifs.upcall as root and move into an attacker-controlled namespace, then perform an NSS-based privilege escalation. The piece includes exploitation details, affected distributions, mitigations, and patch status.