Ubuntu Security Notice USN-6608-1 | allinfosecnews.com

Jan. 26, 2024, 3:41 p.m. |

Packet Storm packetstormsecurity.com

Ubuntu Security Notice 6608-1 - It was discovered that the CIFS network file system implementation in the Linux kernel did not properly validate the server frame size in certain situation, leading to an out-of-bounds read vulnerability. An attacker could use this to construct a malicious CIFS image that, when operated on, could cause a denial of service or possibly expose sensitive information. Xingyuan Mo discovered that the netfilter subsystem in the Linux kernel did not properly handle inactive elements in …

attacker cifs file file system image implementation kernel linux linux kernel malicious network notice out-of-bounds security security notice server size system ubuntu usn vulnerability

More from packetstormsecurity.com / Packet Storm

Ubuntu Security Notice USN-6757-2 1 day, 7 hours ago | packetstormsecurity.com

arbitrary code attacker code crash +16

Ubuntu Security Notice USN-6762-1 1 day, 7 hours ago | packetstormsecurity.com

arbitrary code attacker attackers code +15

SOPlanning 1.52.00 SQL Injection 1 day, 7 hours ago | packetstormsecurity.com

injection php projects sql +5

SOPlanning 1.52.00 Cross Site Request Forgery 1 day, 7 hours ago | packetstormsecurity.com

forgery php request version +2

SOPlanning 1.52.00 Cross Site Scripting 1 day, 7 hours ago | packetstormsecurity.com

cross site scripting php scripting version +2

Red Hat Security Advisory 2024-2679-03 1 day, 7 hours ago | packetstormsecurity.com

advisory enterprise free linux +7

Red Hat Security Advisory 2024-2674-03 1 day, 7 hours ago | packetstormsecurity.com

advisory enterprise kernel linux +5

Red Hat Security Advisory 2024-2071-03 1 day, 7 hours ago | packetstormsecurity.com

advisory bugs container fix +10

Red Hat Security Advisory 2024-2068-03 1 day, 7 hours ago | packetstormsecurity.com

advisory bugs container denial of service +13

Senior Security Officer

@ eSimplicity | Remote

View on infosec-jobs.com

Senior - Automated Cyber Attack Engineer

@ Deloitte | Madrid, España

View on infosec-jobs.com

Public Key Infrastructure (PKI) Senior Engineer

@ Sherwin-Williams | Cleveland, OH, United States

View on infosec-jobs.com

Consultant, Technology Consulting, Cyber Security - Privacy (Senior) (Multiple Positions) (1502793)

@ EY | Chicago, IL, US, 60606

View on infosec-jobs.com

Principal Associate, CSOC Analyst

@ Capital One | McLean, VA

View on infosec-jobs.com

Real Estate Portfolio & Corporate Security Lead

@ Lilium | Munich

View on infosec-jobs.com