USN-6707-4: Linux kernel (Azure) vulnerabilities

Read Time:40 Second

Lonial Con discovered that the netfilter subsystem in the Linux kernel did
not properly handle element deactivation in certain cases, leading to a
use-after-free vulnerability. A local attacker could use this to cause a
denial of service (system crash) or possibly execute arbitrary code.
(CVE-2024-1085)

Notselwyn discovered that the netfilter subsystem in the Linux kernel did
not properly handle verdict parameters in certain cases, leading to a use-
after-free vulnerability. A local attacker could use this to cause a denial
of service (system crash) or possibly execute arbitrary code.
(CVE-2024-1086)

Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
– Network drivers;
– PWM drivers;
(CVE-2024-26597, CVE-2024-26599)

Cyber Security News

Friday Squid Blogging: Searching for the Colossal Squid

Over 850 Vulnerable Devices Secured Through CISA Ransomware Program

Long Article on GM Spying on Its Cars’ Drivers

Ring to Pay Out $5.6m in Refunds After Customer Privacy Breach

How to Avoid Romance Scams

“Junk gun” ransomware: the cheap new threat to small businesses

US Takes Down Illegal Cryptocurrency Mixing Service Samourai Wallet

Hacker posts fake news story about Ukrainians trying to kill Slovak President

State-Sponsored Espionage Campaign Exploits Cisco Vulnerabilities

USN-6707-4: Linux kernel (Azure) vulnerabilities

CrushFTP VFS Sandbox Escape Vulnerability (CVE-2024-4040)

gdcm-3.0.23-5.fc39

gdcm-3.0.12-7.el9

gdcm-3.0.21-4.fc38

gdcm-3.0.23-5.fc40

gdcm-3.0.23-5.fc41