USN-5817-1: Setuptools vulnerability Sebastian Chnelik discovered that setuptools incorrectly handled certain regex inputs. An attacker could possibly use this issue to cause a denial of service. Source: USN-5817-1: Setuptools vulnerability
USN-5816-1: Firefox vulnerabilities Niklas Baumstark discovered that a compromised web child process of Firefox could disable web security opening restrictions, leading to a new child process being spawned within the file:// context. An attacker could potentially exploits this to obtain sensitive information. (CVE-2023-23597) Tom Schuster discovered that Firefox was not performing a validation check on GTK drag data. An attacker could potentially exploits this to obtain sensitive information. (CVE-2023-23598) Vadim discovered that Firefox was not properly sanitizing a curl command output when copying a network request from the developer tools panel. An attacker could potentially exploits this to hide and execute arbitrary commands. (CVE-2023-23599) Luan Herrera discovered that Firefox was not stopping navigation when dragging a URL from a cross-origin iframe into the same tab. An attacker potentially exploits this to spoof the user. (CVE-2023-23601) Dave Vandyke discovered that Firefox [ more… ]
[도서] 나만의 로블록스 게임 만들기 분야별 신상품 – 국내도서 – 컴퓨터와 인터넷 [도서]나만의 로블록스 게임 만들기 데이비드 재그노,히스 해스킨스 저/추성호 역 | 영진닷컴 | 2023년 01월 판매가 14,400원 (10%할인) | YES포인트 800원(5%지급) 로블록스 스튜디오 사용법부터 나만의 게임 세계 구축까지, 로블록스 게임 제작을 위한 최신 버전 로블록스 스튜디오 완전정복하기! 2006년 시작된 후 5억 명 이상이 가입한 세계적인 게임, 로블록스(ROBLOX)는 Source: [도서] 나만의 로블록스 게임 만들기
USN-5815-1: Linux kernel (BlueField) vulnerabilities It was discovered that a race condition existed in the Android Binder IPC subsystem in the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-20421) David Leadbeater discovered that the netfilter IRC protocol tracking implementation in the Linux Kernel incorrectly handled certain message payloads in some situations. A remote attacker could possibly use this to cause a denial of service or bypass firewall filtering. (CVE-2022-2663) It was discovered that the Intel 740 frame buffer driver in the Linux kernel contained a divide by zero vulnerability. A local attacker could use this to cause a denial of service (system crash). (CVE-2022-3061) It was discovered that the sound subsystem in the Linux kernel contained a race condition in some [ more… ]
USN-5814-1: Linux kernel vulnerabilities Kyle Zeng discovered that the sysctl implementation in the Linux kernel contained a stack-based buffer overflow. A local attacker could use this to cause a denial of service (system crash) or execute arbitrary code. (CVE-2022-4378) Tamás Koczka discovered that the Bluetooth L2CAP handshake implementation in the Linux kernel contained multiple use-after-free vulnerabilities. A physically proximate attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-42896) It was discovered that the Xen netback driver in the Linux kernel did not properly handle packets structured in certain ways. An attacker in a guest VM could possibly use this to cause a denial of service (host NIC availability). (CVE-2022-3643) It was discovered that an integer overflow vulnerability existed in the Bluetooth subsystem in the Linux kernel. A physically proximate attacker could [ more… ]
Copyright © 2024 | WordPress Theme by MH Themes
