all InfoSec news
USN-6536-1: Linux kernel vulnerabilities
Dec. 6, 2023, 1:34 p.m. |
Ubuntu security notices ubuntu.com
not properly validate some attributes passed from userspace. A local
attacker could use this to cause a denial of service (system crash) or
possibly expose sensitive information (kernel memory). (CVE-2023-39189)
Kyle Zeng discovered that the IPv4 implementation in the Linux kernel did
not properly handle socket buffers (skb) when performing IP routing in
certain circumstances, leading to a null pointer dereference vulnerability.
A privileged attacker could use this …
attacker attributes crash cve denial of service expose implementation information ipv4 kernel linux linux kernel local memory netfilter sensitive sensitive information service subsystem system usn vulnerabilities
More from ubuntu.com / Ubuntu security notices
USN-6747-2: Firefox regressions
1 day, 8 hours ago |
ubuntu.com
USN-6760-1: Gerbv vulnerability
2 days, 13 hours ago |
ubuntu.com
USN-6758-1: JSON5 vulnerability
3 days, 1 hour ago |
ubuntu.com
USN-6761-1: Anope vulnerability
3 days, 4 hours ago |
ubuntu.com
USN-6759-1: FreeRDP vulnerabilities
3 days, 19 hours ago |
ubuntu.com
USN-6757-1: PHP vulnerabilities
3 days, 21 hours ago |
ubuntu.com
USN-6744-3: Pillow vulnerability
3 days, 22 hours ago |
ubuntu.com
Jobs in InfoSec / Cybersecurity
Social Engineer For Reverse Engineering Exploit Study
@ Independent study | Remote
SITEC- Systems Security Administrator- Camp HM Smith
@ Peraton | Camp H.M. Smith, HI, United States
Cyberspace Intelligence Analyst
@ Peraton | Fort Meade, MD, United States
General Manager, Cybersecurity, Google Public Sector
@ Google | Virginia, USA; United States
Cyber Security Advisor
@ H&M Group | Stockholm, Sweden
Engineering Team Manager – Security Controls
@ H&M Group | Stockholm, Sweden