all InfoSec news
USN-5880-1: Firefox vulnerabilities
Feb. 20, 2023, 3:14 a.m. |
Ubuntu security notices ubuntu.com
when using PKCS 12 Safe Bag attributes. An attacker could construct a
PKCS 12 cert bundle in such a way that could allow for arbitrary memory
writes. (CVE-2023-0767)
Johan Carlsson discovered that Firefox did not properly manage child
iframe's unredacted URI when using Content-Security-Policy-Report-Only
header. An attacker could potentially exploits this to obtain sensitive
information. (CVE-2023-25728)
Vitor Torres discovered that Firefox did not properly manage permissions
of extensions interaction via …
attributes bundle cert child christian content-security-policy cve exploits firefox header iframe information manage memory permissions policy report safe security sensitive information torres uri usn vulnerabilities
More from ubuntu.com / Ubuntu security notices
USN-6762-1: GNU C Library vulnerabilities
1 day, 1 hour ago |
ubuntu.com
USN-6747-2: Firefox regressions
1 day, 11 hours ago |
ubuntu.com
USN-6760-1: Gerbv vulnerability
2 days, 16 hours ago |
ubuntu.com
LSN-0103-1: Kernel Live Patch Security Notice
3 days, 3 hours ago |
ubuntu.com
USN-6758-1: JSON5 vulnerability
3 days, 3 hours ago |
ubuntu.com
USN-6761-1: Anope vulnerability
3 days, 7 hours ago |
ubuntu.com
USN-6759-1: FreeRDP vulnerabilities
3 days, 21 hours ago |
ubuntu.com
Jobs in InfoSec / Cybersecurity
Social Engineer For Reverse Engineering Exploit Study
@ Independent study | Remote
Offensive Security Engineer
@ Ivanti | United States, Remote
Senior Security Engineer I
@ Samsara | Remote - US
Senior Principal Information System Security Engineer
@ Chameleon Consulting Group | Herndon, VA
Junior Detections Engineer
@ Kandji | San Francisco
Data Security Engineer/ Architect - Remote United States
@ Stanley Black & Decker | Towson MD USA - 701 E Joppa Rd Bg 700