Researchers from security firm ARMO developed a POC rootkit called Curing that showed how the io_uring interface in Linux could be exploited by bad actors to bypass system calls, creating what they calle a “massive security loophole” in the operating system’s runtime security.
First seen on securityboulevard.com
Jump to article: securityboulevard.com/2025/04/armo-io_uring-interface-creates-security-blind-spot-in-linux/
