all InfoSec news
USN-6088-1: runC vulnerabilities
May 18, 2023, 10:03 a.m. |
Ubuntu security notices ubuntu.com
writable when in rootless mode. An attacker could possibly
use this issue to escalate privileges. (CVE-2023-25809)
It was discovered that runC incorrectly performed access control when
mounting /proc to non-directories. An attacker could possibly use
this issue to escalate privileges. (CVE-2023-27561)
It was discovered that runC incorrectly handled /proc and
/sys mounts inside a container. An attacker could possibly
use this issue to bypass AppArmor, and potentially SELinux.
(CVE-2023-28642)
access access control control cve issue mode non privileges proc runc usn vulnerabilities
More from ubuntu.com / Ubuntu security notices
USN-6757-2: PHP vulnerabilities
3 days, 4 hours ago |
ubuntu.com
USN-6762-1: GNU C Library vulnerabilities
3 days, 8 hours ago |
ubuntu.com
USN-6747-2: Firefox regressions
3 days, 17 hours ago |
ubuntu.com
USN-6760-1: Gerbv vulnerability
4 days, 22 hours ago |
ubuntu.com
LSN-0103-1: Kernel Live Patch Security Notice
5 days, 9 hours ago |
ubuntu.com
USN-6758-1: JSON5 vulnerability
5 days, 9 hours ago |
ubuntu.com
USN-6761-1: Anope vulnerability
5 days, 13 hours ago |
ubuntu.com
USN-6759-1: FreeRDP vulnerabilities
6 days, 4 hours ago |
ubuntu.com
USN-6757-1: PHP vulnerabilities
6 days, 6 hours ago |
ubuntu.com
Jobs in InfoSec / Cybersecurity
Security Analyst
@ Northwestern Memorial Healthcare | Chicago, IL, United States
GRC Analyst
@ Richemont | Shelton, CT, US
Security Specialist
@ Peraton | Government Site, MD, United States
Information Assurance Security Specialist (IASS)
@ OBXtek Inc. | United States
Cyber Security Technology Analyst
@ Airbus | Bengaluru (Airbus)
Vice President, Cyber Operations Engineer
@ BlackRock | LO9-London - Drapers Gardens