all InfoSec news
USN-6536-1: Linux kernel vulnerabilities
Dec. 6, 2023, 1:34 p.m. |
Ubuntu security notices ubuntu.com
not properly validate some attributes passed from userspace. A local
attacker could use this to cause a denial of service (system crash) or
possibly expose sensitive information (kernel memory). (CVE-2023-39189)
Kyle Zeng discovered that the IPv4 implementation in the Linux kernel did
not properly handle socket buffers (skb) when performing IP routing in
certain circumstances, leading to a null pointer dereference vulnerability.
A privileged attacker could use this …
attacker attributes crash cve denial of service expose implementation information ipv4 kernel linux linux kernel local memory netfilter sensitive sensitive information service subsystem system usn vulnerabilities
More from ubuntu.com / Ubuntu security notices
USN-6804-1: GNU C Library vulnerabilities
1 day, 18 hours ago |
ubuntu.com
USN-6803-1: FFmpeg vulnerabilities
2 days, 16 hours ago |
ubuntu.com
USN-6802-1: PostgreSQL vulnerability
2 days, 20 hours ago |
ubuntu.com
USN-6801-1: PyMySQL vulnerability
2 days, 20 hours ago |
ubuntu.com
USN-6800-1: browserify-sign vulnerability
2 days, 22 hours ago |
ubuntu.com
USN-6798-1: GStreamer Base Plugins vulnerability
3 days, 17 hours ago |
ubuntu.com
USN-6796-1: TPM2 Software Stack vulnerabilities
3 days, 19 hours ago |
ubuntu.com
USN-6797-1: Intel Microcode vulnerabilities
4 days, 1 hour ago |
ubuntu.com
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Security Compliance Strategist
@ Grab | Petaling Jaya, Malaysia
Cloud Security Architect, Lead
@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)