Critical flaws discovered in Windows 11 and Linux kernels
Microsoft issued an urgent advisory after detecting two zero‑day vulnerabilities in the Windows 11 Microsoft Malware Protection Engine, the core component of Windows Defender. The flaws could be exploited to gain SYSTEM‑level privileges, allowing attackers to install spyware, access files, modify settings or disable security controls. Patches were released through Windows Update, and the U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the vulnerabilities to its catalog of actively exploited threats, urging federal agencies to apply the fixes immediately.
In parallel, the Linux community reported several serious kernel bugs named "Copy Fail" and "Dirty Frag," along with a third vulnerability uncovered using artificial‑intelligence tools. These flaws expose Linux systems to privilege‑escalation attacks and underscore the growing use of AI by malicious actors to locate hidden weaknesses. Developers and security teams have responded quickly, delivering patches to mitigate the risks for users and enterprises that rely on Linux distributions.