Full Report
Just what FOSS developers need – a flood of AI-discovered vulnerabilities Opinion Anthropic describes Project Glasswing as a coalition of tech giants committing $100 million in AI resources to hunt down and fix long-hidden vulnerabilities in critical open source software that it's finding with its new Mythos AI program. Or as The Reg put it, "an AI model that can generate zero-day vulnerabilities."…
Analysis Summary
# Vulnerability: Multi-Product AI-Discovered Zero-Days (Project Glasswing)
## CVE Details
- **CVE ID**: Not yet assigned (Multiple zero-day vulnerabilities)
- **CVSS Score**: Pending (Likely 7.8–10.0 range based on technical descriptions)
- **Severity**: High / Critical
- **CWE**:
- CWE-787: Out-of-bounds Write (Likely for FFmpeg)
- CWE-269: Improper Privilege Management (Linux Kernel)
## Affected Systems
- **Products**:
- OpenBSD Operating System
- FFmpeg (Multimedia Framework)
- Linux Kernel
- **Versions**:
- **OpenBSD**: Historical vulnerability spanning 27 years.
- **FFmpeg**: Vulnerability affecting video encoding code for 16 years.
- **Linux Kernel**: Current versions (chained exploits reported).
- **Configurations**: Default installations; standard user access for Linux privilege escalation.
## Vulnerability Description
Project Glasswing, utilizing the **Mythos AI** program, has identified several long-standing flaws:
1. **OpenBSD**: A legacy bug existing in the codebase for nearly three decades.
2. **FFmpeg**: A 16-year-old flaw residing specifically within the video encoding modules.
3. **Linux Kernel**: A complex chain of exploits that allows for "Privilege Escalation." The flaw enables an attacker with ordinary, non-privileged user access to bypass security boundaries and gain full **root** control over the system.
## Exploitation
- **Status**: PoC available (Anthropic/Project Glasswing claims Mythos generates working exploits 72.4% of the time).
- **Complexity**: Low (for the AI-generated exploits) / High (for manual recreation).
- **Attack Vector**:
- **Local**: For Linux Kernel Privilege Escalation.
- **Network**: Likely for FFmpeg via malicious video files.
## Impact
- **Confidentiality**: Total (Root access on Linux; potential memory leaks in FFmpeg/OpenBSD).
- **Integrity**: Total (Ability to modify system files and kernel memory).
- **Availability**: Total (Potential for kernel panics or system-wide denial of service).
## Remediation
### Patches
- **Status**: Ongoing. Project Glasswing is currently in a "responsible rollout" phase, coordinating with maintainers.
- **Linux Kernel**: Fixes being coordinated through the Linux Foundation and Project Glasswing.
- **FFmpeg/OpenBSD**: Maintainer notification is in progress; updates should be monitored via official project repositories.
### Workarounds
- **Strict Access Control**: Limit local user access on critical Linux servers to mitigate privilege escalation risks.
- **Input Validation**: Sandbox FFmpeg processes to prevent exploitation via untrusted media files.
## Detection
- **Indicators of Compromise**:
- Unexpected elevation of privileges in system audit logs (e.g., unusual `sudo` or `su` activity).
- Segmentation faults in FFmpeg encoding processes.
- **Detection methods and tools**:
- Utilize **OSS-CRS** (Open Source Software Cyber Reasoning System) as an orchestration framework to run autonomous bug-finding tools.
- Watch for security advisories from the Linux Foundation and OpenSSF.
## References
- **Anthropic Project Glasswing**: hxxps[://]www[.]anthropic[.]com (Note: Mythos is proprietary)
- **OpenSSF OSS-CRS**: hxxps[://]openssf[.]org/blog/2026/04/02/from-aixcc-to-openssf-welcoming-oss-crs-to-advance-ai-driven-open-source-security/
- **Original Report**: hxxps[://]www[.]theregister[.]com/2026/04/10/project_glasswing_open_source/