SECURITY

No Image

USN-3343-1: Linux kernel vulnerabilities

2017-06-29 KENNETH 0

USN-3343-1: Linux kernel vulnerabilities Ubuntu Security Notice USN-3343-1 29th June, 2017 linux vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 14.04 LTS Summary Several security issues were fixed in the Linux kernel. Software description linux – Linux kernel Details USN 3335-1 fixed a vulnerability in the Linux kernel. However, thatfix introduced regressions for some Java applications. This updateaddresses the issue. We apologize for the inconvenience. It was discovered that a use-after-free vulnerability in the core voltageregulator driver of the Linux kernel. A local attacker could use this tocause a denial of service or possibly execute arbitrary code.(CVE-2014-9940) It was discovered that a buffer overflow existed in the trace subsystem inthe Linux kernel. A privileged local attacker could use this to executearbitrary code. (CVE-2017-0605) Roee Hay discovered that the parallel port printer driver in the Linuxkernel [ more… ]

No Image

Update on Petya malware attacks

2017-06-29 KENNETH 0

Update on Petya malware attacks As happened recently with WannaCrypt, we again face a malicious attack in the form of ransomware, Petya. In early reports, there was a lot of conflicting information reported on the attacks, including conflation of unrelated and misleading pieces of data, so Microsoft teams mobilized to investigate and analyze, enabling our Malware Protection team to release signatures to detect and protect against the malware. Based on our investigation, the malware was initially delivered via a Ukrainian company’s (M.E.doc) update service for their finance application, which is popular in Ukraine and Russia. Once the initial compromise took hold, the ransomware used multiple tools in its arsenal to spread across impacted networks. If unpatched, the malware uses vulnerabilities CVE-2017-0144 and CVE-2017-0145 to spread across networks. Microsoft released MS17-010 in March that addressed the vulnerabilities exploited by Petya. If [ more… ]

No Image

RHBA-2017:1593-1: openstack-swift bug fix advisory

2017-06-29 KENNETH 0

RHBA-2017:1593-1: openstack-swift bug fix advisory Red Hat Enterprise Linux: Updated OpenStack Object Storage packages that resolve various issues are now available for Red Hat OpenStack Platform 10.0 (Newton) for RHEL 7. Source: RHBA-2017:1593-1: openstack-swift bug fix advisory

No Image

RHBA-2017:1594-1: openstack-neutron bug fix advisory

2017-06-29 KENNETH 0

RHBA-2017:1594-1: openstack-neutron bug fix advisory Red Hat Enterprise Linux: Updated OpenStack Networking packages that resolve various issues are now available for Red Hat OpenStack Platform 10.0 (Newton) for RHEL 7. Source: RHBA-2017:1594-1: openstack-neutron bug fix advisory

No Image

RHBA-2017:1590-1: openstack-sahara bug fix advisory

2017-06-29 KENNETH 0

RHBA-2017:1590-1: openstack-sahara bug fix advisory Red Hat Enterprise Linux: Updated OpenStack Sahara packages that resolve various issues are now available for Red Hat OpenStack Platform 10.0 (Newton) for RHEL 7. Source: RHBA-2017:1590-1: openstack-sahara bug fix advisory