USN-5699-1: GNU C Library vulnerabilities

October 25, 2022

Read Time:25 Second

Jan Engelhardt, Tavis Ormandy, and others discovered that the GNU C Library
iconv feature incorrectly handled certain input sequences. An attacker
could possibly use this issue to cause the GNU C Library to hang or crash,
resulting in a denial of service. (CVE-2021-3326)

It was discovered that the GNU C Library nscd daemon incorrectly handled
certain netgroup lookups. An attacker could possibly use this issue to
cause the GNU C Library to crash, resulting in a denial of service.
(CVE-2021-35942)

News

Fighting Scary Cyber Threats with Sweet Solutions

October 25, 2022

Read Time:6 Second

Looking to scale your cybersecurity defenses and keep up with evolving cyber threats? If so, you’ll need these sweet solutions. […]

Advisories

samba-4.17.2-2.fc37

October 25, 2022

Read Time:8 Second

FEDORA-2022-8a9a568dbe

Packages in this update:

samba-4.17.2-2.fc37

Update description:

Update to version 4.17.2 to address CVE-2022-3592

News

Data Breaches Rise By 70% Globally in Q3 2022

October 25, 2022

Read Time:4 Second

Russia had the most breaches overall and France had the highest breach density

News

Apple Fixes Actively Exploited iOS and iPadOS Zero-Day Vulnerability

October 25, 2022

Read Time:5 Second

The out-of-bounds write issue in the kernel could be exploited to execute arbitrary code

Advisories

drupal7-7.92-1.fc35

October 25, 2022

Read Time:21 Second

FEDORA-2022-bf18450366

Packages in this update:

drupal7-7.92-1.fc35

Update description:

7.92
7.91
SA-CORE-2022-012 / CVE-2022-25275

7.90
7.89
7.88
SA-CORE-2022-003 / CVE-2022-25271

7.87
7.86
SA-CORE-2022-001 / CVE-2021-41184
SA-CORE-2022-002 / CVE-2021-41182 / CVE-2021-41183 / CVE-2016-7103 / CVE-2010-5312

7.85
7.84
7.83

News

POS Malware Used to Steal Details of Over 167,000 Credit Cards

October 25, 2022

Read Time:5 Second

The operators could make over $3m if they decide to sell the card dumps on underground forums

Advisories

USN-5698-2: Open vSwitch vulnerability

October 25, 2022

Read Time:18 Second

USN-5698-1 fixed a vulnerability in Open. This update provides
the corresponding update for Ubuntu 16.04 ESM.

Original advisory details:

It was discovered that Open vSwitch incorrectly handled comparison of
certain minimasks. A remote attacker could use this issue to cause Open
vSwitch to crash, resulting in a denial of service, or possibly execute
arbitrary code.

News

Cybersecurity event cancelled after scammers disrupt LinkedIn live chat

October 25, 2022

Read Time:6 Second

It was all going so well. At first.

Read more in my article on the Hot for Security blog.

Advisories

USN-5698-1: Open vSwitch vulnerability

October 25, 2022

Read Time:11 Second

Cyber Security News

Daily Archives: October 25, 2022

USN-5699-1: GNU C Library vulnerabilities

Fighting Scary Cyber Threats with Sweet Solutions

samba-4.17.2-2.fc37

FEDORA-2022-8a9a568dbe

Packages in this update:

Update description:

Data Breaches Rise By 70% Globally in Q3 2022

Apple Fixes Actively Exploited iOS and iPadOS Zero-Day Vulnerability

drupal7-7.92-1.fc35

FEDORA-2022-bf18450366

Packages in this update:

Update description:

POS Malware Used to Steal Details of Over 167,000 Credit Cards

USN-5698-2: Open vSwitch vulnerability

Cybersecurity event cancelled after scammers disrupt LinkedIn live chat

USN-5698-1: Open vSwitch vulnerability

News, Advisories and much more