USN-5857-1: Linux kernel (OEM) vulnerability Davide Ornaghi discovered that the netfilter subsystem in the Linux kernel did not properly handle VLAN headers in some situations. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. Source: USN-5857-1: Linux kernel (OEM) vulnerability
USN-5856-1: Linux kernel (OEM) vulnerabilities Davide Ornaghi discovered that the netfilter subsystem in the Linux kernel did not properly handle VLAN headers in some situations. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-0179) Hu Jiahui discovered that multiple race conditions existed in the Advanced Linux Sound Architecture (ALSA) framework, leading to use-after-free vulnerabilities. A local attacker could use these to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-1048) It was discovered that a use-after-free vulnerability existed in the SGI GRU driver in the Linux kernel. A local attacker could possibly use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-3424) Source: USN-5856-1: Linux kernel (OEM) vulnerabilities
USN-5855-1: ImageMagick vulnerabilities It was discovered that ImageMagick incorrectly handled certain PNG images. If a user or automated system were tricked into opening a specially crafted PNG file, an attacker could use this issue to cause ImageMagick to stop responding, resulting in a denial of service, or possibly obtain the contents of arbitrary files by including them into images. Source: USN-5855-1: ImageMagick vulnerabilities
Update to Windows Subsystem for Android™ on Windows 11 (February 2023) Today we are shipping an update for Windows Subsystem for Android™ on Windows 11 to all Windows Insider channels. This update (2301.40000.4.0) will make improvements to the camera experience, graphics improvements, general reliability, and security updates. What’s New Improved audio input latency and reliability Improvements to camera experience (camera metadata now exposed to camera apps) Improvements to framerate performance: certain benchmarks have improved by 10%-20% on ARM and 40%-50% on x64 Fixed zooming out in apps using touchpad or mouse Improvements to platform reliability Using latest Chromium WebView to version 108 Synchronizing global microphone and camera privacy toggles between Windows and Android apps Android 13 security updates Giving feedback If you are having issues with Windows Subsystem for Android™ – please file feedback via Feedback Hub under Apps > Windows [ more… ]
USN-5854-1: Linux kernel vulnerabilities It was discovered that an out-of-bounds write vulnerability existed in the Video for Linux 2 (V4L2) implementation in the Linux kernel. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-20369) Pawan Kumar Gupta, Alyssa Milburn, Amit Peled, Shani Rehana, Nir Shildan and Ariel Sabba discovered that some Intel processors with Enhanced Indirect Branch Restricted Speculation (eIBRS) did not properly handle RET instructions after a VM exits. A local attacker could potentially use this to expose sensitive information. (CVE-2022-26373) David Leadbeater discovered that the netfilter IRC protocol tracking implementation in the Linux Kernel incorrectly handled certain message payloads in some situations. A remote attacker could possibly use this to cause a denial of service or bypass firewall filtering. (CVE-2022-2663) Johannes Wikner and Kaveh Razavi discovered that [ more… ]
Copyright © 2024 | WordPress Theme by MH Themes
