Security Pop Quiz! q267.mp3

News

Packet Storm Security

Security Affairs Looking Glass Cyber
    securingtomorrow.mcafee.com
      Quick Heal Threat Post Naked Security
        ESET CIS Malware Patrol SecList MySonicWall

        Critical Infrastructure

        Case Studies

        Tools

        Exploits

        Last 20 Website Defacements - Zone-h

          Press Play to hear the answer!

          Advisories

          • Ubuntu Security Notice USN-7009-1 Fri, 13 Sep 2024 15:51:12 GMT
            Ubuntu Security Notice 7009-1 - Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Chenyuan Yang discovered that the USB Gadget subsystem in the Linux kernel did not properly check for the device to be enabled before writing. A local attacker could possibly use this to cause a denial of service.
          • Ubuntu Security Notice USN-7005-2 Fri, 13 Sep 2024 15:51:00 GMT
            Ubuntu Security Notice 7005-2 - Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. It was discovered that the JFS file system contained an out-of-bounds read vulnerability when printing xattr debug information. A local attacker could use this to cause a denial of service.
          • Ubuntu Security Notice USN-7008-1 Fri, 13 Sep 2024 15:50:47 GMT
            Ubuntu Security Notice 7008-1 - Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. It was discovered that the JFS file system contained an out-of-bounds read vulnerability when printing xattr debug information. A local attacker could use this to cause a denial of service.
          • Ubuntu Security Notice USN-7007-1 Fri, 13 Sep 2024 15:50:34 GMT
            Ubuntu Security Notice 7007-1 - Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. Chenyuan Yang discovered that the USB Gadget subsystem in the Linux kernel did not properly check for the device to be enabled before writing. A local attacker could possibly use this to cause a denial of service.
          • Ubuntu Security Notice USN-7003-3 Fri, 13 Sep 2024 15:50:21 GMT
            Ubuntu Security Notice 7003-3 - It was discovered that the JFS file system contained an out-of-bounds read vulnerability when printing xattr debug information. A local attacker could use this to cause a denial of service. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.
          • Red Hat Security Advisory 2024-6657-03 Fri, 13 Sep 2024 15:36:09 GMT
            Red Hat Security Advisory 2024-6657-03 - Migration Toolkit for Runtimes 1.2.7 release Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link in the References section.
          • Debian Security Advisory 5768-1 Thu, 12 Sep 2024 14:55:05 GMT
            Debian Linux Security Advisory 5768-1 - Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure.
          • Ubuntu Security Notice USN-7006-1 Thu, 12 Sep 2024 14:54:35 GMT
            Ubuntu Security Notice 7006-1 - It was discovered that a race condition existed in the Bluetooth subsystem in the Linux kernel, leading to a null pointer dereference vulnerability. A privileged local attacker could use this to possibly cause a denial of service. It was discovered that the JFS file system contained an out-of-bounds read vulnerability when printing xattr debug information. A local attacker could use this to cause a denial of service.
          • Ubuntu Security Notice USN-7005-1 Thu, 12 Sep 2024 14:54:16 GMT
            Ubuntu Security Notice 7005-1 - Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. It was discovered that the JFS file system contained an out-of-bounds read vulnerability when printing xattr debug information. A local attacker could use this to cause a denial of service.
          • Ubuntu Security Notice USN-7004-1 Thu, 12 Sep 2024 14:53:56 GMT
            Ubuntu Security Notice 7004-1 - Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. It was discovered that the JFS file system contained an out-of-bounds read vulnerability when printing xattr debug information. A local attacker could use this to cause a denial of service.
          • Ubuntu Security Notice USN-7001-1 Thu, 12 Sep 2024 14:53:00 GMT
            Ubuntu Security Notice 7001-1 - Shang-Hung Wan discovered that Expat, contained within the xmltok library, did not properly handle certain function calls when a negative input length was provided. An attacker could use this issue to cause a denial of service or possibly execute arbitrary code. Shang-Hung Wan discovered that Expat, contained within the xmltok library, did properly handle the potential for an integer overflow on 32-bit platforms. An attacker could use this issue to cause a denial of service or possibly execute arbitrary code.
          • Ubuntu Security Notice USN-7000-1 Thu, 12 Sep 2024 14:51:59 GMT
            Ubuntu Security Notice 7000-1 - Shang-Hung Wan discovered that Expat did not properly handle certain function calls when a negative input length was provided. An attacker could use this issue to cause a denial of service or possibly execute arbitrary code. Shang-Hung Wan discovered that Expat did properly handle the potential for an integer overflow on 32-bit platforms. An attacker could use this issue to cause a denial of service or possibly execute arbitrary code.
          • Ubuntu Security Notice USN-7002-1 Thu, 12 Sep 2024 14:51:45 GMT
            Ubuntu Security Notice 7002-1 - It was discovered that setuptools was vulnerable to remote code execution. An attacker could possibly use this issue to execute arbitrary code.
          • Ubuntu Security Notice USN-7003-2 Thu, 12 Sep 2024 14:51:31 GMT
            Ubuntu Security Notice 7003-2 - It was discovered that the JFS file system contained an out-of-bounds read vulnerability when printing xattr debug information. A local attacker could use this to cause a denial of service. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.
          • Ubuntu Security Notice USN-7003-1 Thu, 12 Sep 2024 14:34:12 GMT
            Ubuntu Security Notice 7003-1 - It was discovered that the JFS file system contained an out-of-bounds read vulnerability when printing xattr debug information. A local attacker could use this to cause a denial of service. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.
          • Ubuntu Security Notice USN-6997-2 Thu, 12 Sep 2024 14:33:42 GMT
            Ubuntu Security Notice 6997-2 - USN-6997-1 fixed a vulnerability in LibTIFF. This update provides the corresponding updates for Ubuntu 14.04 LTS. It was discovered that LibTIFF incorrectly handled memory. An attacker could possibly use this issue to cause the application to crash, resulting in a denial of service.
          • Ubuntu Security Notice USN-6999-1 Thu, 12 Sep 2024 14:33:11 GMT
            Ubuntu Security Notice 6999-1 - Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. It was discovered that the JFS file system contained an out-of-bounds read vulnerability when printing xattr debug information. A local attacker could use this to cause a denial of service.
          • Red Hat Security Advisory 2024-6612-03 Thu, 12 Sep 2024 14:32:48 GMT
            Red Hat Security Advisory 2024-6612-03 - An update for fence-agents is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Issues addressed include a code execution vulnerability.
          • Red Hat Security Advisory 2024-6611-03 Thu, 12 Sep 2024 14:29:44 GMT
            Red Hat Security Advisory 2024-6611-03 - An update for fence-agents is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Issues addressed include a code execution vulnerability.
          • Red Hat Security Advisory 2024-6610-03 Thu, 12 Sep 2024 14:29:34 GMT
            Red Hat Security Advisory 2024-6610-03 - An update for git is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions.
          • Red Hat Security Advisory 2024-6595-03 Thu, 12 Sep 2024 14:28:28 GMT
            Red Hat Security Advisory 2024-6595-03 - An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 8. Issues addressed include a denial of service vulnerability.
          • Red Hat Security Advisory 2024-6584-03 Thu, 12 Sep 2024 14:28:17 GMT
            Red Hat Security Advisory 2024-6584-03 - An update for httpd is now available for Red Hat Enterprise Linux 7.7 Advanced Update Support.
          • Red Hat Security Advisory 2024-6583-03 Thu, 12 Sep 2024 14:26:04 GMT
            Red Hat Security Advisory 2024-6583-03 - An update for the httpd:2.4 module is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support.
          • Red Hat Security Advisory 2024-6412-03 Thu, 12 Sep 2024 14:25:54 GMT
            Red Hat Security Advisory 2024-6412-03 - Red Hat OpenShift Container Platform release 4.14.36 is now available with updates to packages and images that fix several bugs and add enhancements.
          • Red Hat Security Advisory 2024-6409-03 Thu, 12 Sep 2024 14:23:17 GMT
            Red Hat Security Advisory 2024-6409-03 - Red Hat OpenShift Container Platform release 4.15.31 is now available with updates to packages and images that fix several bugs and add enhancements. Issues addressed include a denial of service vulnerability.