USN-6044-1: Linux kernel vulnerabilities

Read Time:30 Second

It was discovered that the Traffic-Control Index (TCINDEX) implementation
in the Linux kernel did not properly perform filter deactivation in some
situations. A local attacker could possibly use this to gain elevated
privileges. Please note that with the fix for this CVE, kernel support for
the TCINDEX classifier has been removed. (CVE-2023-1829)

It was discovered that a race condition existed in the io_uring subsystem
in the Linux kernel, leading to a use-after-free vulnerability. A local
attacker could use this to cause a denial of service (system crash) or
possibly execute arbitrary code. (CVE-2023-1872)

WP Ultimate CSV Importer Flaws Expose 20,000 Websites to Attacks

The AI Fix #44: AI-generated malware, and a stunning AI breakthrough

Ukraine Blames Russia for Railway Hack, Labels It “Act of Terrorism”

New Phishing Attack Combines Vishing and DLL Sideloading Techniques

Google to Switch on E2EE for All Gmail Users

Cybercriminals Expand Use of Lookalike Domains in Email Attacks

Cell Phone OPSEC for Border Crossings

Hackers exploit little-known WordPress MU-plugins feature to hide malware

Cyber Security and Resilience Bill Will Apply to 1000 UK Firms

USN-6044-1: Linux kernel vulnerabilities

USN-7285-2: nginx vulnerability

firefox-137.0-2.fc42

firefox-137.0-2.fc40

firefox-137.0-2.fc41

ZDI-25-196: Apple macOS ICC Profile Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

ZDI-25-195: Apple macOS CoreGraphics Image Parsing Out-Of-Bounds Read Information Disclosure Vulnerability