USN-6386-2: Linux kernel (Raspberry Pi) vulnerabilities

Read Time:49 Second

Jana Hofmann, Emanuele Vannacci, Cedric Fournet, Boris Kopf, and Oleksii
Oleksenko discovered that some AMD processors could leak stale data from
division operations in certain situations. A local attacker could possibly
use this to expose sensitive information. (CVE-2023-20588)

It was discovered that the bluetooth subsystem in the Linux kernel did not
properly handle L2CAP socket release, leading to a use-after-free
vulnerability. A local attacker could use this to cause a denial of service
(system crash) or possibly execute arbitrary code. (CVE-2023-40283)

It was discovered that some network classifier implementations in the Linux
kernel contained use-after-free vulnerabilities. A local attacker could use
this to cause a denial of service (system crash) or possibly execute
arbitrary code. (CVE-2023-4128)

Lonial Con discovered that the netfilter subsystem in the Linux kernel
contained a memory leak when handling certain element flush operations. A
local attacker could use this to expose sensitive information (kernel
memory). (CVE-2023-4569)

A Day in the Life of a Prolific Voice Phishing Crew

The AI Fix #32: Agentic AI, killer robot fridges, and the robosexual revolution

New Research Highlights Vulnerabilities in MLOps Platforms

Moxa Urges Immediate Updates for Security Vulnerabilities

US Treasury Department Sanctions Chinese Company Over Cyberattacks

Phishing Click Rates Triple in 2024

UK Government to Ban Creation of Explicit Deepfakes

CISA Claims Treasury Breach Did Not Impact Other Agencies

Supply Chain Attack Targets Key Ethereum Development Tools

USN-6386-2: Linux kernel (Raspberry Pi) vulnerabilities

USN-7188-1: FFmpeg vulnerability

USN-7179-3: Linux kernel (GKE) vulnerabilities

USN-7169-3: Linux kernel vulnerabilities

USN-7167-2: Linux kernel vulnerabilities

firefox-134.0-1.fc41

firefox-134.0-1.fc40