LKRG 0.9.7 Module Shields Linux Nucleus Vulnerabilities

Openwall published the release of the nucleus module lkrg 0.9.7 (Linux Kernel Runtime Guard) designed to identify and block the integrity of the kernel structures. The module provides protection against unauthorized changes to the working core and attempts to change user process privileges, thereby preventing the use of exploits. LKRG can be used to protect against both known and unknown vulnerabilities in the Linux kernel. The project code is distributed under the GPLV2 license. Detailed information about the implementation of LKRG can be found in the first announcement of the project.

Changes in the new version include:

  • Compatibility with Linux 6.4 and 6.5 nuclei, as well as packages with a core supplied in the distributions of RHEL 9.1 and 9.2.
  • Added a SPEC file for assembling an RPM package (“RPmbuild -tb”) for distributions compatible with Red Hat Enterprise Linux.
  • Added “/usr/bin/Modprobe” to the list of allowed file tracks in Arch Linux.
  • Amended the load script.
  • Updated the configuration of the continuous integration system.
/Reports, release notes, official announcements.