all InfoSec news
USN-5811-1: Sudo vulnerabilities
Jan. 18, 2023, 5:44 p.m. |
Ubuntu security notices ubuntu.com
handled user-specified editors when using the sudoedit command. A local
attacker that has permission to use the sudoedit command could possibly use
this issue to edit arbitrary files. (CVE-2023-22809)
It was discovered that the Protobuf-c library, used by Sudo, incorrectly
handled certain arithmetic shifts. An attacker could possibly use this
issue to cause Sudo to crash, resulting in a denial of service. This issue
only affected Ubuntu 22.04 LTS. (CVE-2022-33070)
command crash cve denial of service files issue library local permission service shifts sudo sudoedit ubuntu usn vulnerabilities
More from ubuntu.com / Ubuntu security notices
USN-6767-1: Linux kernel vulnerabilities
2 days, 17 hours ago |
ubuntu.com
USN-6766-1: Linux kernel vulnerabilities
2 days, 17 hours ago |
ubuntu.com
USN-6765-1: Linux kernel (OEM) vulnerabilities
2 days, 21 hours ago |
ubuntu.com
USN-6764-1: libde265 vulnerability
2 days, 21 hours ago |
ubuntu.com
USN-6754-2: nghttp2 vulnerability
2 days, 22 hours ago |
ubuntu.com
USN-6763-1: libvirt vulnerability
3 days, 1 hour ago |
ubuntu.com
Jobs in InfoSec / Cybersecurity
Cybersecurity Engineer III
@ Hexagon US Federal | Huntsville, AL
Cybersecurity Technical Advisor
@ Microsoft | Reading, Berkshire, United Kingdom
Cybersecurity Engineer
@ Mindvalley | Kuala Lumpur, Kuala Lumpur, Malaysia
Network Security (Meraki) Infrastructure Lead
@ Sopra Steria | Noida, Uttar Pradesh, India
Sr. Director, Product Security
@ Ro | New York City or Remote
Senior Research Engineer, Cryptography (PhD Entry Level)
@ Seagate Technology | Shakopee, MN, US