USN-7234-4: Linux kernel (AWS) vulnerabilities

Read Time:30 Second

Ye Zhang and Nicolas Wu discovered that the io_uring subsystem in the Linux
kernel did not properly handle locking for rings with IOPOLL, leading to a
double-free vulnerability. A local attacker could use this to cause a
denial of service (system crash) or possibly execute arbitrary code.
(CVE-2023-21400)

Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
– TTY drivers;
– Netfilter;
– Network traffic control;
– VMware vSockets driver;
(CVE-2024-53141, CVE-2024-53103, CVE-2024-40967, CVE-2024-53164)

Cloudflare Introduces E2E Post-Quantum Cryptography Protections

UK’s Online Safety Act: Ofcom Can Now Issue Sanctions

Researchers Confirm BlackLock as Eldorado Rebrand

Improvements in Brute Force Attacks

US Legislators Demand Transparency in Apple’s UK Backdoor Court Fight

£1M Lost as UK Social Media and Email Account Hacks Skyrocket

Security Database Aims to Empower Non-Profits

Tj-actions Supply Chain Attack Exposes 23,000 Organizations

Free file converter malware scam “rampant” claims FBI

USN-7234-4: Linux kernel (AWS) vulnerabilities

rust-zincati-0.0.30-1.fc40

rust-zincati-0.0.30-1.fc41

rust-zincati-0.0.30-1.fc42

bluez-5.80-1.fc42 iwd-3.4-1.fc42 libell-0.74-1.fc42

dotnet9.0-9.0.104-1.fc40

dotnet9.0-9.0.104-1.fc41