all InfoSec news
USN-6429-1: curl vulnerabilities
Oct. 11, 2023, 11:34 a.m. |
Ubuntu security notices ubuntu.com
SOCKS5 proxy. In environments where curl is configured to use a SOCKS5
proxy, a remote attacker could possibly use this issue to execute arbitrary
code. This issue only affected Ubuntu 22.04 LTS, and Ubuntu 23.04.
(CVE-2023-38545)
It was discovered that curl incorrectly handled cookies when an application
duplicated certain handles. A local attacker could possibly create a cookie
file and inject arbitrary cookies into subsequent connections.
(CVE-2023-38546)
arbitrary code attacker code cookies curl cve environments issue jay lts proxy socks5 ubuntu usn vulnerabilities
More from ubuntu.com / Ubuntu security notices
USN-6754-1: nghttp2 vulnerabilities
2 days, 7 hours ago |
ubuntu.com
USN-6753-1: CryptoJS vulnerability
2 days, 8 hours ago |
ubuntu.com
USN-6751-1: Zabbix vulnerabilities
2 days, 9 hours ago |
ubuntu.com
USN-6752-1: FreeRDP vulnerabilities
2 days, 15 hours ago |
ubuntu.com
USN-6750-1: Thunderbird vulnerabilities
3 days, 2 hours ago |
ubuntu.com
USN-6743-3: Linux kernel (Azure) vulnerabilities
3 days, 6 hours ago |
ubuntu.com
USN-6657-2: Dnsmasq vulnerabilities
3 days, 9 hours ago |
ubuntu.com
USN-6749-1: FreeRDP vulnerabilities
3 days, 12 hours ago |
ubuntu.com
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Associate Compliance Advisor
@ SAP | Budapest, HU, 1031
DevSecOps Engineer
@ Qube Research & Technologies | London
Software Engineer, Security
@ Render | San Francisco, CA or Remote (USA & Canada)
Associate Consultant
@ Control Risks | Frankfurt, Hessen, Germany
Senior Security Engineer
@ Activision Blizzard | Work from Home - CA