USN-5776-1: containerd vulnerabilities

Read Time:40 Second

It was discovered that containerd incorrectly handled memory
when receiving certain faulty Exec or ExecSync commands. A remote
attacker could possibly use this issue to cause a denial of service
or crash containerd. (CVE-2022-23471, CVE-2022-31030)

It was discovered that containerd incorrectly set up inheritable file
capabilities. An attacker could possibly use this issue to escalate
privileges inside a container. This issue only affected Ubuntu 18.04 LTS,
Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. (CVE-2022-24769)

It was discovered that containerd incorrectly handled access to encrypted
container images when using imgcrypt library. A remote attacker could
possibly use this issue to access encrypted images from other users.
This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS and
Ubuntu 22.04 LTS. (CVE-2022-24778)

Blue Shield of California Data Breach Affects 4.7 Million Members

Highest-Risk Security Flaw Found in Commvault Backup Solutions

Verizon DBIR: Small Businesses Bearing the Brunt of Ransomware Attacks

Ransomware Attacks Fall Sharply in March

ETSI Unveils New Baseline Requirements for Securing AI

Ofcom Lays Down the Law with Child Safety Rules for Tech Giants

Smashing Security podcast #414: Zoom.. just one click and your data goes boom!

From Fast to Smart: Rethinking Incident Response Metrics

DOGE Worker’s Code Supports NLRB Whistleblower

USN-5776-1: containerd vulnerabilities

USN-7462-1: Linux kernel vulnerabilities

USN-7461-2: Linux kernel (FIPS) vulnerabilities

USN-7461-1: Linux kernel vulnerabilities

USN-7460-1: Linux kernel (Azure FIPS) vulnerabilities

USN-7459-1: Linux kernel (Intel IoTG) vulnerabilities

USN-7458-1: Linux kernel (IBM) vulnerabilities