all InfoSec news
USN-5898-1: OpenJDK vulnerabilities
Feb. 28, 2023, 3:11 a.m. |
Ubuntu security notices ubuntu.com
properly handle the deserialization of some CORBA objects. An attacker
could possibly use this to bypass Java sandbox restrictions.
(CVE-2023-21830)
Markus Loewe discovered that the Java Sound subsystem in OpenJDK did not
properly validate the origin of a Soundbank. An attacker could use this to
specially craft an untrusted Java application or applet that could load a
Soundbank from an attacker controlled remote URL. (CVE-2023-21843)
applet application bypass cve deserialization java markus origin restrictions sandbox serialization sound subsystem untrusted url usn vulnerabilities
More from ubuntu.com / Ubuntu security notices
USN-6762-1: GNU C Library vulnerabilities
2 days, 3 hours ago |
ubuntu.com
USN-6747-2: Firefox regressions
2 days, 13 hours ago |
ubuntu.com
USN-6760-1: Gerbv vulnerability
3 days, 17 hours ago |
ubuntu.com
LSN-0103-1: Kernel Live Patch Security Notice
4 days, 5 hours ago |
ubuntu.com
USN-6758-1: JSON5 vulnerability
4 days, 5 hours ago |
ubuntu.com
USN-6761-1: Anope vulnerability
4 days, 8 hours ago |
ubuntu.com
USN-6759-1: FreeRDP vulnerabilities
4 days, 23 hours ago |
ubuntu.com
USN-6757-1: PHP vulnerabilities
5 days, 2 hours ago |
ubuntu.com
Jobs in InfoSec / Cybersecurity
Lead Security Specialist
@ Fujifilm | Holly Springs, NC, United States
Security Operations Centre Analyst
@ Deliveroo | Hyderabad, India (Main Office)
CISOC Analyst
@ KCB Group | Kenya
Lead Security Engineer – Red Team/Offensive Security
@ FICO | Work from Home, United States
Cloud Security SME
@ Maveris | Washington, District of Columbia, United States - Remote
SOC Analyst (m/w/d)
@ Bausparkasse Schwäbisch Hall | Schwäbisch Hall, DE