Articles by KENNETH

About KENNETH
지락문화예술공작단
No Image

Forza Horizon 5 now available on PC, Xbox consoles and with Xbox Game Pass

2021-11-09 KENNETH 0

Forza Horizon 5 now available on PC, Xbox consoles and with Xbox Game Pass Forza Horizon 5 is available now on PC on Windows and Steam, Xbox consoles and Xbox Game Pass including console, PC and Cloud Gaming (Beta). You can download the game today and choose from the following bundles: Standard Edition, Deluxe Edition or Premium Edition. Head over to Xbox Wire for details on the bundles, images from the game’s action in the ever-evolving landscape of Mexico, and to view the trailer. Source: Forza Horizon 5 now available on PC, Xbox consoles and with Xbox Game Pass

No Image

USN-5137-1: Linux kernel vulnerabilities

2021-11-09 KENNETH 0

USN-5137-1: Linux kernel vulnerabilities It was discovered that the f2fs file system in the Linux kernel did not properly validate metadata in some situations. An attacker could use this to construct a malicious f2fs image that, when mounted and operated on, could cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2019-19449) It was discovered that the Infiniband RDMA userspace connection manager implementation in the Linux kernel contained a race condition leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possible execute arbitrary code. (CVE-2020-36385) Wolfgang Frisch discovered that the ext4 file system implementation in the Linux kernel contained an integer overflow when handling metadata inode extents. An attacker could use this to construct a malicious ext4 file system image that, when mounted, could cause a [ more… ]

No Image

USN-5136-1: Linux kernel vulnerabilities

2021-11-09 KENNETH 0

USN-5136-1: Linux kernel vulnerabilities It was discovered that the f2fs file system in the Linux kernel did not properly validate metadata in some situations. An attacker could use this to construct a malicious f2fs image that, when mounted and operated on, could cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2019-19449) It was discovered that the FUSE user space file system implementation in the Linux kernel did not properly handle bad inodes in some situations. A local attacker could possibly use this to cause a denial of service. (CVE-2020-36322) It was discovered that the Infiniband RDMA userspace connection manager implementation in the Linux kernel contained a race condition leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possible execute arbitrary code. (CVE-2020-36385) Ilja Van Sprundel [ more… ]

No Image

USN-5130-1: Linux kernel vulnerabilities

2021-11-09 KENNETH 0

USN-5130-1: Linux kernel vulnerabilities Jann Horn discovered a race condition in the tty subsystem of the Linux kernel in the locking for the TIOCSPGRP ioctl(), leading to a use-after- free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2020-29661) Jann Horn discovered that the tty subsystem of the Linux kernel did not use consistent locking in some situations, leading to a read-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly expose sensitive information (kernel memory). (CVE-2020-29660) Source: USN-5130-1: Linux kernel vulnerabilities

No Image

USN-5134-1: Docker vulnerability

2021-11-09 KENNETH 0

USN-5134-1: Docker vulnerability An information disclosure issue was discovered in the command line interface of Docker. A misconfigured credential store could result in supplied credentials being leaked to the public registry, when using the docker login command with a private registry. Source: USN-5134-1: Docker vulnerability