all InfoSec news
USN-6590-1: Xerces-C++ vulnerabilities
Jan. 18, 2024, 6:21 p.m. |
Ubuntu security notices ubuntu.com
management operations when parsing XML data containing external DTDs,
which could trigger a use-after-free error. If a user or automated system
were tricked into processing a specially crafted XML document, an attacker
could possibly use this issue to cause a denial of service or execute
arbitrary code. This issue only affected Ubuntu 22.04 LTS. (CVE-2018-1311)
It was discovered that Xerces-C++ was not properly performing bounds
checks when processing XML Schema …
arbitrary code attacker automated code data denial of service document error external free handling issue management memory operations parsing service system trigger use-after-free usn vulnerabilities xml
More from ubuntu.com / Ubuntu security notices
USN-6765-1: Linux kernel (OEM) vulnerabilities
11 hours ago |
ubuntu.com
USN-6764-1: libde265 vulnerability
12 hours ago |
ubuntu.com
USN-6754-2: nghttp2 vulnerability
12 hours ago |
ubuntu.com
USN-6757-2: PHP vulnerabilities
5 days, 11 hours ago |
ubuntu.com
USN-6762-1: GNU C Library vulnerabilities
5 days, 14 hours ago |
ubuntu.com
USN-6747-2: Firefox regressions
5 days, 23 hours ago |
ubuntu.com
Jobs in InfoSec / Cybersecurity
Red Team Penetration Tester and Operator, Junior
@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)
Director, Security Operations & Risk Management
@ Live Nation Entertainment | Toronto, ON
IT and Security Specialist APAC (F/M/D)
@ Flowdesk | Singapore, Singapore, Singapore
Senior Security Controls Assessor
@ Capgemini | Washington, DC, District of Columbia, United States; McLean, Virginia, United States
GRC Systems Solution Architect
@ Deloitte | Midrand, South Africa
Cybersecurity Subject Matter Expert (SME)
@ SMS Data Products Group, Inc. | Fort Belvoir, VA, United States