LSN-0101-1: Kernel Live Patch Security Notice | allinfosecnews.com

March 12, 2024, 2:45 p.m. |

Ubuntu security notices ubuntu.com

Xingyuan Mo discovered that the netfilter subsystem in the Linux kernel did
not properly handle inactive elements in its PIPAPO data structure, leading
to a use-after-free vulnerability. A local attacker could use this to cause
a denial of service (system crash) or possibly execute arbitrary code.(CVE-2023-6817)

It was discovered that the IGMP protocol implementation in the Linux kernel
contained a race condition, leading to a use-after-free vulnerability. A
local attacker could use this to cause a denial of service (system …

arbitrary code attacker code crash cve data denial of service free implementation kernel linux linux kernel live local netfilter notice patch protocol security security notice service structure subsystem system use-after-free vulnerability

More from ubuntu.com / Ubuntu security notices

USN-6754-1: nghttp2 vulnerabilities 2 days, 10 hours ago | ubuntu.com

attacker cve denial of service http +10

USN-6753-1: CryptoJS vulnerability 2 days, 12 hours ago | ubuntu.com

attacker configuration cryptographic default +11

USN-6751-1: Zabbix vulnerabilities 2 days, 12 hours ago | ubuntu.com

attacker attacks cross-site cross-site scripting (xss) attacks +11

USN-6752-1: FreeRDP vulnerabilities 2 days, 18 hours ago | ubuntu.com

attacker crash denial of service issue +7

USN-6750-1: Thunderbird vulnerabilities 3 days, 5 hours ago | ubuntu.com

arbitrary code attacker browsing bypass +19

USN-6743-3: Linux kernel (Azure) vulnerabilities 3 days, 10 hours ago | ubuntu.com

attacker azure bpf compromise +16

USN-6657-2: Dnsmasq vulnerabilities 3 days, 13 hours ago | ubuntu.com

advisory attacker dnsmasq dnssec +10

USN-6749-1: FreeRDP vulnerabilities 3 days, 15 hours ago | ubuntu.com

arbitrary code attacker code context +12

USN-6748-1: Sanitize vulnerabilities 4 days, 3 hours ago | ubuntu.com

attack attacker cross-site cve +9

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

Associate Principal Security Engineer

@ Activision Blizzard | Work from Home - CA

View on infosec-jobs.com

Security Engineer- Systems Integration

@ Meta | Bellevue, WA | Menlo Park, CA | New York City

View on infosec-jobs.com

Lead Security Engineer (Digital Forensic and IR Analyst)

@ Blue Yonder | Hyderabad

View on infosec-jobs.com

Senior Principal IAM Engineering Program Manager Cybersecurity

@ Providence | Redmond, WA, United States

View on infosec-jobs.com

Information Security Analyst II or III

@ Entergy | The Woodlands, Texas, United States

View on infosec-jobs.com