all InfoSec news
USN-6429-2: curl vulnerability
Oct. 11, 2023, 3:17 p.m. |
Ubuntu security notices ubuntu.com
the corresponding update for Ubuntu 14.04 LTS, Ubuntu 16.04 LTS
and Ubuntu 18.04 LTS.
Original advisory details:
It was discovered that curl incorrectly handled cookies when an application
duplicated certain handles. A local attacker could possibly create a cookie
file and inject arbitrary cookies into subsequent connections.
(CVE-2023-38546)
advisory application attacker connections cookie cookies curl curl vulnerability cve file inject local lts ubuntu update usn vulnerability
More from ubuntu.com / Ubuntu security notices
USN-6767-1: Linux kernel vulnerabilities
1 day, 17 hours ago |
ubuntu.com
USN-6766-1: Linux kernel vulnerabilities
1 day, 18 hours ago |
ubuntu.com
USN-6765-1: Linux kernel (OEM) vulnerabilities
1 day, 22 hours ago |
ubuntu.com
USN-6764-1: libde265 vulnerability
1 day, 22 hours ago |
ubuntu.com
USN-6754-2: nghttp2 vulnerability
1 day, 22 hours ago |
ubuntu.com
USN-6763-1: libvirt vulnerability
2 days, 2 hours ago |
ubuntu.com
USN-6757-2: PHP vulnerabilities
6 days, 21 hours ago |
ubuntu.com
Jobs in InfoSec / Cybersecurity
Security Engineer
@ SNC-Lavalin | GB.Bristol.The Hub
Application Security Engineer
@ Virtru | Remote
SC2024-003563 Firewall Coordinator (NS) - TUE 21 May
@ EMW, Inc. | Mons, Wallonia, Belgium
Senior Application Security Engineer
@ Fortis Games | Remote - Canada
DevSecOps Manager
@ Philips | Bengaluru – Embassy Business Hub
Information System Security Manager (ISSM)
@ ARA | Raleigh, North Carolina, United States