USN-6088-1: runC vulnerabilities

Read Time:26 Second

It was discovered that runC incorrectly made /sys/fs/cgroup
writable when in rootless mode. An attacker could possibly
use this issue to escalate privileges. (CVE-2023-25809)

It was discovered that runC incorrectly performed access control when
mounting /proc to non-directories. An attacker could possibly use
this issue to escalate privileges. (CVE-2023-27561)

It was discovered that runC incorrectly handled /proc and
/sys mounts inside a container. An attacker could possibly
use this issue to bypass AppArmor, and potentially SELinux.
(CVE-2023-28642)

New Linux Rootkit

ELENOR-corp Ransomware Targets Healthcare Sector

Blue Shield of California Data Breach Affects 4.7 Million Members

Highest-Risk Security Flaw Found in Commvault Backup Solutions

Verizon DBIR: Small Businesses Bearing the Brunt of Ransomware Attacks

Ransomware Attacks Fall Sharply in March

ETSI Unveils New Baseline Requirements for Securing AI

Ofcom Lays Down the Law with Child Safety Rules for Tech Giants

Smashing Security podcast #414: Zoom.. just one click and your data goes boom!

chromium-135.0.7049.114-1.fc41

chromium-135.0.7049.114-1.el10_1

chromium-135.0.7049.114-1.fc42

chromium-135.0.7049.114-1.el9

chromium-135.0.7049.114-1.fc40

USN-7449-2: Linux kernel (HWE) vulnerabilities