Threat Advisory

uu kill Vulnerability Introduces Running Task Interference and DoS

Threat: Vulnerability
Targeted Region: Global
Targeted Sector: Technology & IT
Criticality: Medium
[subscribe_to_unlock_form]


EXECUTIVE SUMMARY:

CVE-2026-35369 with a CVSS score of 5.5 is a argument parsing vulnerability affecting the rust/uu_kill component of uutils coreutils in versions. This flaw arises because the utility incorrectly interprets the command `kill -1` as a request to send the default termination signal (SIGTERM) to Process ID -1, rather than treating -1 as a signal number specification. A local attacker with low privileges can exploit this issue by executing the specific command, requiring no user interaction or complex configuration. By triggering this behavior, the attacker gains the ability to send termination signals to nearly every process visible to their user context. This capability results in a Denial of Service condition, potentially causing a massive termination of processes or a complete system crash that disrupts business operations. Exploitation depends on the presence of the vulnerable uutils coreutils package and local access to the system where the command is executed.[/subscribe_to_unlock_form]


EXECUTIVE SUMMARY:

CVE-2026-35369 with a CVSS score of 5.5 is a argument parsing vulnerability affecting the rust/uu_kill component of uutils coreutils in versions. This flaw arises because the utility incorrectly interprets the command `kill -1` as a request to send the default termination signal (SIGTERM) to Process ID -1, rather than treating -1 as a signal number specification. A local attacker with low privileges can exploit this issue by executing the specific command, requiring no user interaction or complex configuration. By triggering this behavior, the attacker gains the ability to send termination signals to nearly every process visible to their user context. This capability results in a Denial of Service condition, potentially causing a massive termination of processes or a complete system crash that disrupts business operations. Exploitation depends on the presence of the vulnerable uutils coreutils package and local access to the system where the command is executed.[emaillocker id="1283"]

 

RECOMMENDATION:

 

REFERENCES:

The following reports contain further technical details:
https://github.com/advisories/GHSA-p6rv-2qpm-fwvg

[/emaillocker]
crossmenu