USN-6495-1: Linux kernel vulnerabilities

Read Time:30 Second

Yu Hao discovered that the UBI driver in the Linux kernel did not properly
check for MTD with zero erasesize during device attachment. A local
privileged attacker could use this to cause a denial of service (system
crash). (CVE-2023-31085)

Manfred Rudigier discovered that the Intel(R) PCI-Express Gigabit (igb)
Ethernet driver in the Linux kernel did not properly validate received
frames that are larger than the set MTU size, leading to a buffer overflow
vulnerability. An attacker could use this to cause a denial of service
(system crash) or possibly execute arbitrary code. (CVE-2023-45871)

HIPAA Rules Update Proposed to Combat Healthcare Data Breaches

Hackers Leak Rhode Island Citizens’ Data on Dark Web

Dozens of Chrome Browser Extensions Hijacked by Data Thieves

US Treasury Computers Accessed by China in Supply Chain Attack

The AI Fix #31: Replay: AI doesn’t exist

Gift Card Fraud

U.S. Army Soldier Arrested in AT&T, Verizon Extortions

Salt Typhoon’s Reach Continues to Grow

Majority of UK SMEs Lack Cybersecurity Policy

USN-6495-1: Linux kernel vulnerabilities

mingw-poppler-24.02.0-4.fc41

mingw-poppler-24.02.0-4.fc40

gimp-2.10.38-12.fc40

Multiple vulnerabilities in CTFd versions <= 3.7.4

IBMi Navigator / CVE-2024-51464 / HTTP Security Token Bypass

IBMi Navigator / CVE-2024-51463 / Server Side Request Forgery (SSRF)