all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

USN-6254-1: Linux kernel vulnerabilities

Add to bookmarks
July 26, 2023, 3:54 p.m. |

Ubuntu security notices ubuntu.com

Jordy Zomer and Alexandra Sandulescu discovered that syscalls invoking the
do_prlimit() function in the Linux kernel did not properly handle
speculative execution barriers. A local attacker could use this to expose
sensitive information (kernel memory). (CVE-2023-0458)

It was discovered that a race condition existed in the btrfs file system
implementation in the Linux kernel, leading to a use-after-free
vulnerability. A local attacker could use this to cause a denial of service
(system crash) or possibly expose sensitive information. (CVE-2023-1611)

It …

cve file file system function implementation information kernel linux linux kernel local memory race race condition sensitive information speculative execution syscalls system usn vulnerabilities

Visit resource

More from ubuntu.com / Ubuntu security notices

USN-6762-1: GNU C Library vulnerabilities 8 hours ago | ubuntu.com
arbitrary code attacker attackers code +14
USN-6747-2: Firefox regressions 18 hours ago | ubuntu.com
advisory attacker denial of service domains +14
USN-6760-1: Gerbv vulnerability 1 day, 22 hours ago | ubuntu.com
application attacker crash data +10
LSN-0103-1: Kernel Live Patch Security Notice 2 days, 10 hours ago | ubuntu.com
attacker con cve data +21
USN-6758-1: JSON5 vulnerability 2 days, 10 hours ago | ubuntu.com
access application attacker denial of service +12
USN-6761-1: Anope vulnerability 2 days, 13 hours ago | ubuntu.com
accounts attacker changing credentials +7
USN-6759-1: FreeRDP vulnerabilities 3 days, 4 hours ago | ubuntu.com
attacker crash denial of service issue +7
USN-6757-1: PHP vulnerabilities 3 days, 7 hours ago | ubuntu.com
arbitrary code attacker code cookie +15
USN-6744-3: Pillow vulnerability 3 days, 8 hours ago | ubuntu.com
advisory automated buffer buffer overflow +12

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Information Security Engineer, Sr. (Container Hardening)

@ Rackner | San Antonio, TX
View on infosec-jobs.com

BaaN IV Techno-functional consultant-On-Balfour

@ Marlabs | Piscataway, US
View on infosec-jobs.com

Senior Security Analyst

@ BETSOL | Bengaluru, India
View on infosec-jobs.com

Security Operations Centre Operator

@ NEXTDC | West Footscray, Australia
View on infosec-jobs.com

Senior Network and Security Research Officer

@ University of Toronto | Toronto, ON, CA
View on infosec-jobs.com
View more jobs