all InfoSec news
USN-6429-3: curl vulnerabilities
Oct. 17, 2023, 11:22 a.m. |
Ubuntu security notices ubuntu.com
corresponding updates for Ubuntu 23.10.
Original advisory details:
Jay Satiro discovered that curl incorrectly handled hostnames when using a
SOCKS5 proxy. In environments where curl is configured to use a SOCKS5
proxy, a remote attacker could possibly use this issue to execute arbitrary
code. This issue only affected Ubuntu 22.04 LTS, and Ubuntu 23.04.
(CVE-2023-38545)
It was discovered that curl incorrectly handled cookies when an application
duplicated certain handles. A local …
advisory arbitrary code attacker code curl environments issue jay proxy socks5 socks5 proxy ubuntu update updates usn vulnerabilities
More from ubuntu.com / Ubuntu security notices
USN-6804-1: GNU C Library vulnerabilities
1 day, 19 hours ago |
ubuntu.com
USN-6803-1: FFmpeg vulnerabilities
2 days, 17 hours ago |
ubuntu.com
USN-6802-1: PostgreSQL vulnerability
2 days, 21 hours ago |
ubuntu.com
USN-6801-1: PyMySQL vulnerability
2 days, 21 hours ago |
ubuntu.com
USN-6800-1: browserify-sign vulnerability
2 days, 22 hours ago |
ubuntu.com
USN-6798-1: GStreamer Base Plugins vulnerability
3 days, 18 hours ago |
ubuntu.com
USN-6796-1: TPM2 Software Stack vulnerabilities
3 days, 19 hours ago |
ubuntu.com
USN-6797-1: Intel Microcode vulnerabilities
4 days, 1 hour ago |
ubuntu.com
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Security Compliance Strategist
@ Grab | Petaling Jaya, Malaysia
Cloud Security Architect, Lead
@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)