Collaborate Disseminate
I would like to ask, if Firejails on Linux, protects when clicking a malicious link in the browser e.g. from downloading a keylogger or a trojan.
Continue reading Can Firejails protect against malicious links?
There are a few “Will it run” tropes when it comes to microcontrollers, one for example is “Will it run Doom?“, while another is “Will it run Linux?”. In one …read more Continue reading Because You Can: Linux On An Arduino Uno
Curl v8.4.0 is out, and fixes – among other things – a high-severity SOCKS5 heap buffer overflow vulnerability (CVE-2023-38545). Appropriate patches for some older curl versions have been released, too. Preparation for the security updates … Continue reading Curl project squashes high-severity bug in omnipresent libcurl library (CVE-2023-38545)
Which version of Java should you use in Linux? Learn how to easily switch between different versions with a tutorial from Jack Wallen. Continue reading How To Select Which Version of Java to Use in Linux (+ Video Tutorial)
A one-click exploit targeting the Libcue component of the GNOME desktop environment could pose a serious threat to Linux systems.
The post One-Click GNOME Exploit Could Pose Serious Threat to Linux Systems appeared first on SecurityWeek.
Continue reading One-Click GNOME Exploit Could Pose Serious Threat to Linux Systems
If you’re running GNOME on you Linux system(s), you are probably open to remote code execution attacks via a booby-trapped file, thanks to a memory corruption vulnerability (CVE-2023-43641) in the libcue library. About CVE-2023-43641 Discovered b… Continue reading GNOME users at risk of RCE attack (CVE-2023-43641)
It started when Linux blogger Bryan Lunduke complained about how the Linux Foundation was reducing the six-year long-term support (LTS) window for the Linux kernel to two years. Lunduke argued that the Foundation seemed more interested in funding comp… Continue reading Greg Kroah-Hartman Chastises Critic, Says Linux Foundation Strongly Supports Kernel Developers
A vulnerability (CVE-2023-4911) in the GNU C Library (aka “glibc”) can be exploited by attackers to gain root privileges on many popular Linux distributions, according to Qualys researchers. About CVE-2023-4911 Dubbed “Looney Tunables… Continue reading “Looney Tunables” bug allows root access on Linux distros (CVE-2023-4911)
ASLR allows to randomize the base address of userspace applications. In Linux, the length of the randomized part of the mmap address can be specified via the kernel build config. It is bound by the minimum and maximum values of the respect… Continue reading Downsides of increased ASLR entropy
A local privilege escalation vulnerability (CVE-2023-4911) in the GNU C Library (glibc) can be exploited to gain full root privileges.
The post Severe Glibc Privilege Escalation Vulnerability Impacts Major Linux Distributions appeared first on Security… Continue reading Severe Glibc Privilege Escalation Vulnerability Impacts Major Linux Distributions