Advisories

  • USN-5758-1: Linux kernel vulnerabilities

    Jann Horn discovered that the Linux kernel did not properly track memory allocations for anonymous VMA mappings in some situations, leading to potential data structure reuse. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-42703) It was discovered that the video4linux driver for Empia […]

    Read More

  • USN-5757-2: Linux kernel vulnerabilities

    Jann Horn discovered that the Linux kernel did not properly track memory allocations for anonymous VMA mappings in some situations, leading to potential data structure reuse. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-42703) It was discovered that the video4linux driver for Empia […]

    Read More

  • USN-5757-1: Linux kernel vulnerabilities

    Jann Horn discovered that the Linux kernel did not properly track memory allocations for anonymous VMA mappings in some situations, leading to potential data structure reuse. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-42703) It was discovered that the video4linux driver for Empia […]

    Read More

  • ConnectWise Quietly Patches Flaw That Helps Phishers

    ConnectWise, a self-hosted, remote desktop software application that is widely used by Managed Service Providers (MSPs), is warning about an unusually sophisticated phishing attack that can let attackers take remote control over user systems when recipients click the included link. The warning comes just weeks after the company quietly patched a vulnerability that makes it […]

    Read More

  • USN-5756-1: Linux kernel vulnerabilities

    Jann Horn discovered that the Linux kernel did not properly track memory allocations for anonymous VMA mappings in some situations, leading to potential data structure reuse. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-42703) It was discovered that a memory leak existed in […]

    Read More

  • Hackers Target Colombia’s Healthcare System With Ransomware

    The attack disrupted IT operations, websites and scheduling of medical appointments Read More

    Read More

  • rust-capnp-0.14.11-1.fc36 rust-sequoia-octopus-librnp-1.4.1-2.fc36

    FEDORA-2022-fd7eeedd02 Packages in this update: rust-capnp-0.14.11-1.fc36 rust-sequoia-octopus-librnp-1.4.1-2.fc36 Update description: Update the capnp crate to version 0.14.11 to address CVE-2022-46149 / RUSTSEC-2022-0068. This update also includes a rebuild of the only affected application (the Sequoia PGP plugin for Thunderbird). Read More

    Read More

  • rust-capnp-0.14.11-1.fc37 rust-sequoia-octopus-librnp-1.4.1-2.fc37

    FEDORA-2022-7002ec8b22 Packages in this update: rust-capnp-0.14.11-1.fc37 rust-sequoia-octopus-librnp-1.4.1-2.fc37 Update description: Update the capnp crate to version 0.14.11 to address CVE-2022-46149 / RUSTSEC-2022-0068. This update also includes a rebuild of the only affected application (the Sequoia PGP plugin for Thunderbird). Read More

    Read More

  • rust-capnp-0.14.11-1.fc38 rust-sequoia-octopus-librnp-1.4.1-2.fc38

    FEDORA-2022-15c504b6eb Packages in this update: rust-capnp-0.14.11-1.fc38 rust-sequoia-octopus-librnp-1.4.1-2.fc38 Update description: Update the capnp crate to version 0.14.11 to address CVE-2022-46149 / RUSTSEC-2022-0068. This update also includes a rebuild of the only affected application (the Sequoia PGP plugin for Thunderbird). Read More

    Read More

  • USN-5755-1: Linux kernel vulnerabilities

    It was discovered that the NFSD implementation in the Linux kernel did not properly handle some RPC messages, leading to a buffer overflow. A remote attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-43945) Jann Horn discovered that the Linux kernel did not properly track memory […]

    Read More