all InfoSec news
USN-5966-1: amanda vulnerabilities
March 23, 2023, 6:20 a.m. |
Ubuntu security notices ubuntu.com
calcsize binary within amanda. calcsize is a suid binary owned by root that
could possibly be used by a malicious local attacker to expose sensitive
file system information. (CVE-2022-37703)
Maher Azzouzi discovered a privilege escalation vulnerability in the
rundump binary within amanda. rundump is a suid binary owned by root that
did not perform adequate sanitization of environment variables or
commandline options and could possibly be used by a malicious local …
amanda binary cve disclosure environment escalation file file system information information disclosure local malicious options privilege privilege escalation root system usn vulnerabilities vulnerability
More from ubuntu.com / Ubuntu security notices
USN-6737-1: GNU C Library vulnerability
1 day, 4 hours ago |
ubuntu.com
USN-6726-3: Linux kernel (Xilinx ZynqMP) vulnerabilities
2 days, 3 hours ago |
ubuntu.com
USN-6726-2: Linux kernel (IoT) vulnerabilities
2 days, 19 hours ago |
ubuntu.com
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Information Security Engineers
@ D. E. Shaw Research | New York City
Security Engineer, Incident Response
@ Databricks | Remote - Netherlands
Associate Vulnerability Engineer - Mid-Atlantic region (Part-Time)
@ GuidePoint Security LLC | Remote in VA, MD, PA, NC, DE, NJ, or DC
Data Security Architect
@ Accenture Federal Services | Washington, DC
Identity Security Administrator
@ SailPoint | Pune, India