Read Time:17 Second
An improper signature verification vulnerability was found in coreos-installer. A specially crafted gzip installation image can bypass the image signature verification and as a consequence can lead to the installation of unsigned content. An attacker able to modify the original installation image can write arbitrary data, and achieve full access to the node being installed.
More Stories
chromium-124.0.6367.201-1.el9
FEDORA-EPEL-2024-6f1c3198f5 Packages in this update: chromium-124.0.6367.201-1.el9 Update description: update to 124.0.6367.201 * High CVE-2024-4671: Use after free in Visuals update...
chromium-124.0.6367.201-1.fc38
FEDORA-2024-df7e365b4a Packages in this update: chromium-124.0.6367.201-1.fc38 Update description: update to 124.0.6367.201 * High CVE-2024-4671: Use after free in Visuals update...