all InfoSec news
Vulnerability Spotlight: Vulnerabilities in popular library affect Unix-based devices
Cisco Talos Intelligence Group - Comprehensive Threat Intelligence blog.talosintelligence.com
Lilith >_> of Cisco Talos discovered these vulnerabilities.
Cisco Talos recently discovered a memory corruption vulnerability in the uClibC library that could affect any Unix-based devices that use this library. uClibC and uClibC-ng are lightweight replacements for the popular gLibc library, which is the GNU Project's implementation of the C standard library.
TALOS-2022-1517 (CVE-2022-29503 - CVE-2022-29504) is a memory corruption vulnerability in uClibC and uClibc-ng that can occur if a malicious user repeatedly creates threads.
Many embedded devices utilize this …
devices library popular spotlight unix vulnerabilities vulnerability vulnerability spotlight