Yep, called it. Another zero-day local-root vulnerability in #Linux, and this time it's in the core kernel, not a module you can remove.
And this so-called #security researcher is apparently more interested in having a flashy website than in responsible disclosure.
https://ze3tar.github.io/post-zcrx.html
ARGVMI~1.PIF
npub1a9…4ca38
2026-05-08 22:06:24 UTC
Author Public Key
npub1a972l2p20hg5fwewcyyf404pry97gxf5d6gxha5lp0py8uq4sm7qq4ca38Seen on
wss://relay.ditto.pubPublished at
2026-05-08 22:06:24 UTCEvent JSON
{
"id": "351a974062b8ef13444eba4d292714c862eeaec3799c37572ec7987c0bbe05aa",
"pubkey": "e97cafa82a7dd144bb2ec1089abea1190be419346e906bf69f0bc243f01586fc",
"created_at": 1778277984,
"kind": 1,
"tags": [
[
"t",
"linux"
],
[
"t",
"security"
],
[
"proxy",
"https://mastodon.sdf.org/users/argv_minus_one/statuses/116541226020488646",
"activitypub"
],
[
"client",
"Mostr",
"31990:6be38f8c63df7dbf84db7ec4a6e6fbbd8d19dca3b980efad18585c46f04b26f9:mostr",
"wss://relay.ditto.pub"
]
],
"content": "Yep, called it. Another zero-day local-root vulnerability in #Linux, and this time it's in the core kernel, not a module you can remove.\n\nAnd this so-called #security researcher is apparently more interested in having a flashy website than in responsible disclosure.\n\nhttps://ze3tar.github.io/post-zcrx.html",
"sig": "48c2282b39200e00329d4b4c15ba43fc6dfd85c7486baa18235f23b5bab2737fd1925fce277464ca2cf7632a24caf8c6b29a11718c8b2a47a955dc964cf090d5"
}