Debian: DSA-5638-1: libuv1 security update

March 10, 2024, 1:01 p.m. |

LinuxSecurity Advisories - Debian linuxsecurity.com

It was discovered that the uv_getaddrinfo() function in libuv, an asynchronous event notification library, incorrectly truncated certain hostnames, which may result in bypass of security measures on internal APIs or SSRF attacks.

apis asynchronous attacks bypass debian dsa event function internal library may notification result security security measures security update ssrf truncated update

Visit resource

More from linuxsecurity.com / LinuxSecurity Advisories - Debian

Debian: DSA-5675-1: chromium Security Advisory Updates 1 day, 19 hours ago | linuxsecurity.com

advisory arbitrary code chromium code +12

Debian: DSA-5674-1: pdns-recursor Security Advisory Updates 2 days, 15 hours ago | linuxsecurity.com

advisory debian denial of service distribution +10

Debian: DSA-5673-1: glibc Security Advisory Updates 5 days, 3 hours ago | linuxsecurity.com

advisory application arbitrary code buffer +21

Debian: DSA-5672-1: openjdk-17 Security Advisory Updates 5 days, 20 hours ago | linuxsecurity.com

advisory bullseye debian denial of service +16

Debian: DSA-5671-1: openjdk-11 Security Advisory Updates 6 days, 2 hours ago | linuxsecurity.com

advisory bullseye debian denial of service +16

Debian: DSA-5670-1: thunderbird Security Advisory Updates 6 days, 3 hours ago | linuxsecurity.com

advisory arbitrary code bullseye code +12

Debian: DSA-5669-1: guix Security Advisory Updates 6 days, 3 hours ago | linuxsecurity.com

advisory bypass daemon debian +12

Debian: DSA-5668-1: chromium Security Advisory Updates 1 week ago | linuxsecurity.com

advisory arbitrary code chromium code +12

Debian: DSA-5667-1: tomcat9 Security Advisory Updates 1 week, 1 day ago | linuxsecurity.com

advisory cve debian dsa +7

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

Associate Principal Security Engineer

@ Activision Blizzard | Work from Home - CA

View on infosec-jobs.com

Security Engineer- Systems Integration

@ Meta | Bellevue, WA | Menlo Park, CA | New York City

View on infosec-jobs.com

Lead Security Engineer (Digital Forensic and IR Analyst)

@ Blue Yonder | Hyderabad

View on infosec-jobs.com

Senior Principal IAM Engineering Program Manager Cybersecurity

@ Providence | Redmond, WA, United States

View on infosec-jobs.com

Information Security Analyst II or III

@ Entergy | The Woodlands, Texas, United States

View on infosec-jobs.com

View more jobs

all InfoSec news

Debian: DSA-5638-1: libuv1 security update

More from linuxsecurity.com / LinuxSecurity Advisories - Debian

Jobs in InfoSec / Cybersecurity

SOC 2 Manager, Audit and Certification

Associate Principal Security Engineer

Security Engineer- Systems Integration

Lead Security Engineer (Digital Forensic and IR Analyst)

Senior Principal IAM Engineering Program Manager Cybersecurity

Information Security Analyst II or III