all InfoSec news
USN-6404-1: Firefox vulnerabilities
Oct. 3, 2023, 6:27 a.m. |
Ubuntu security notices ubuntu.com
tricked into opening a specially crafted website, an attacker could
potentially exploit these to cause a denial of service, obtain sensitive
information across domains, or execute arbitrary code. (CVE-2023-5169,
CVE-2023-5170, CVE-2023-5171, CVE-2023-5172, CVE-2023-5175, CVE-2023-5176)
Ronald Crane discovered that Firefox did not properly manage memory when
non-HTTPS Alternate Services (network.http.altsvc.oe) is enabled. An
attacker could potentially exploit this issue to cause a denial of service.
(CVE-2023-5173)
Clément Lecigne discovered that …
arbitrary code attacker code crane cve denial of service domains exploit firefox https information manage memory non security security issues sensitive sensitive information service usn vulnerabilities website
More from ubuntu.com / Ubuntu security notices
USN-6757-2: PHP vulnerabilities
3 days, 9 hours ago |
ubuntu.com
USN-6762-1: GNU C Library vulnerabilities
3 days, 12 hours ago |
ubuntu.com
USN-6747-2: Firefox regressions
3 days, 22 hours ago |
ubuntu.com
USN-6760-1: Gerbv vulnerability
5 days, 2 hours ago |
ubuntu.com
LSN-0103-1: Kernel Live Patch Security Notice
5 days, 14 hours ago |
ubuntu.com
USN-6758-1: JSON5 vulnerability
5 days, 14 hours ago |
ubuntu.com
USN-6761-1: Anope vulnerability
5 days, 17 hours ago |
ubuntu.com
USN-6759-1: FreeRDP vulnerabilities
6 days, 8 hours ago |
ubuntu.com
USN-6757-1: PHP vulnerabilities
6 days, 11 hours ago |
ubuntu.com
Jobs in InfoSec / Cybersecurity
Security Analyst
@ Northwestern Memorial Healthcare | Chicago, IL, United States
GRC Analyst
@ Richemont | Shelton, CT, US
Security Specialist
@ Peraton | Government Site, MD, United States
Information Assurance Security Specialist (IASS)
@ OBXtek Inc. | United States
Cyber Security Technology Analyst
@ Airbus | Bengaluru (Airbus)
Vice President, Cyber Operations Engineer
@ BlackRock | LO9-London - Drapers Gardens