Heimadal Security

OCTOBER 6, 2023

On the majority of Linux distributions, proof-of-concept attacks for a high-severity vulnerability in the dynamic loader of the GNU C Library have previously been made public online. Details About the Vulnerability The security vulnerability is known as “Looney Tunables” and is tracked as CVE-2023-4911.

Cybersecurity 87

Cybersecurity 87

Security Affairs

MARCH 7, 2022

Dirty Pipe is a Linux vulnerability, tracked as CVE-2022-0847, that can allow local users to gain root privileges on all major distros. Security expert Max Kellermann discovered a Linux flaw, dubbed Dirty Pipe and tracked as CVE-2022-0847, that can allow local users to gain root privileges on all major distros.

Passwords 93

Passwords Hacking Accountability Information Security 93

eSecurity Planet

DECEMBER 13, 2021

Cybercriminals are quickly ramping up efforts to exploit the critical flaw found in the widely used Log4j open-source logging tool, targeting everything from cryptomining to data theft to botnets that target Linux systems. A Major Threat. The Log4Shell flaw – which Impacts Log4j versions 2.0 A Major Threat.

Cybersecurity 143

Cybersecurity Software Government Threat Detection 143

Security Affairs

JANUARY 31, 2019

Security researchers at the security firm Capsule8 have published exploit code for the vulnerabilities in Linux systemD disclosed in January. Security researchers at the security firm Capsule8 have published exploit code for the vulnerabilities in Linux systemD disclosed in January.

Advertising 97

Advertising Software Hacking 97

NopSec

FEBRUARY 6, 2019

This is why we will shift a bit from our usual direction of analyzing the most mentioned vulnerability, and share some insight on the one that came in second in this week’s ranking – a directory traversal flaw in LibreOffice and OpenOffice software. This CVE has been assigned a CVSS V3 base score of 7.8, 6.1.3.1 OpenOffice: 4.1.6

Small Business 40

Small Business Security Defenses Software Media 40

Security Affairs

MARCH 30, 2021

Linux kernel recently fixed a couple of vulnerabilities that could allow an attacker to bypass mitigations designed to protect devices against Spectre attacks. The issue could be exploited by attackers to steal sensitive data processed by the CPU. “An issue was discovered in the Linux kernel before 5.11.8.

Technology 129

Technology Malware Hacking Information Security 129

NopSec

FEBRUARY 13, 2019

CVE-2019-5736 – malicious container “break out” vulnerability in runc If you follow cybersecurity news at all, you have likely already seen mentions of a major security flaw related to runc that allows attackers to gain root access to host systems running popular containerization technologies such as Docker and Kubernetes.

IoT 40

IoT Engineering Software Technology 40