Aggregator

CVE-2023-51777 | Mitsubishi Electric CPU Module Logging Configuration Tool resource consumption (icsa-24-135-04)

Vuldb Updates
4 days 18 hours ago
A vulnerability, which was classified as problematic, was found in Mitsubishi Electric CPU Module Logging Configuration Tool, CSGL, CW Configurator, Data Transfer, Data Transfer Classic, EZSocket, FR Configurator SW3, FR Configurator2, GENESIS64, GT Designer3, GT SoftGOT1000, GT SoftGOT2000, GX Developer, GX LogViewer, GX Works2, GX Works3, iQ Works, MI Configurator, Numerical Control Device Communication Software, MR Configurator, MR Configurator2, MRZJW3-MC2-UTL, MX Component, MX OPC Server DA UA, PX Developer Monitor Tool, RT ToolBox3, RT VisualBox, Monitoring tools for the C Controller Module, SW0DNC-MNETH-B, SW1DNC-CCBD2-B, SW1DNC-CCIEF-J, SW1DNC-CCIEF-B, SW1DNC-MNETG-B, SW1DNC-QSCCF-B and SW1DND-EMSDK-B. This affects an unknown part. The manipulation leads to resource consumption. This vulnerability is uniquely identified as CVE-2023-51777. An attack has to be approached locally. There is no exploit available.
vuldb.com

CVE-2024-35823 | Linux Kernel up to 6.7.11 vt memcpy buffer overflow (Nessus ID 209785)

Vuldb Updates
4 days 18 hours ago
A vulnerability was found in Linux Kernel up to 6.7.11. It has been classified as critical. Affected is the function memcpy of the component vt. The manipulation leads to buffer overflow. This vulnerability is traded as CVE-2024-35823. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2021-47341 | Linux Kernel up to 5.13.3 lib/dump_stack.c kvm_vm_ioctl_unregister_coalesced_mmio use after free (Nessus ID 209785)

Vuldb Updates
4 days 18 hours ago
A vulnerability was found in Linux Kernel up to 5.13.3. It has been classified as critical. This affects the function kvm_vm_ioctl_unregister_coalesced_mmio in the library lib/dump_stack.c. The manipulation leads to use after free. This vulnerability is uniquely identified as CVE-2021-47341. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-27388 | Linux Kernel up to 6.8.1 SUNRPC gssx_dec_option_array memory leak (Nessus ID 209785)

Vuldb Updates
4 days 18 hours ago
A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.8.1. Affected by this issue is the function gssx_dec_option_array of the component SUNRPC. The manipulation leads to memory leak. This vulnerability is handled as CVE-2024-27388. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2023-52881 | Linux Kernel up to 6.6.6 TCP ACK (Nessus ID 209785)

Vuldb Updates
4 days 18 hours ago
A vulnerability was found in Linux Kernel up to 6.6.6. It has been rated as problematic. This issue affects some unknown processing of the component TCP ACK Handler. The manipulation leads to an unknown weakness. The identification of this vulnerability is CVE-2023-52881. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-36904 | Linux Kernel up to 6.8.9 TCP lib/refcount.c refcount_inc_not_zero use after free (Nessus ID 209785)

Vuldb Updates
4 days 18 hours ago
A vulnerability was found in Linux Kernel up to 6.8.9 and classified as critical. Affected by this issue is the function refcount_inc_not_zero in the library lib/refcount.c of the component TCP. The manipulation leads to use after free. This vulnerability is handled as CVE-2024-36904. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2023-52653 | Linux Kernel up to 6.6.22/6.7.10/6.8.1 SUNRPC gss_import_v2_context memory leak (Nessus ID 209785)

Vuldb Updates
4 days 18 hours ago
A vulnerability was found in Linux Kernel up to 6.6.22/6.7.10/6.8.1. It has been rated as critical. This issue affects the function gss_import_v2_context of the component SUNRPC. The manipulation leads to memory leak. The identification of this vulnerability is CVE-2023-52653. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2021-47469 | Linux Kernel up to 5.14.14 spi_add_lock deadlock (722ef19a161c/6098475d4cb4 / Nessus ID 209785)

Vuldb Updates
4 days 18 hours ago
A vulnerability was found in Linux Kernel up to 5.14.14 and classified as critical. Affected by this issue is the function spi_add_lock. The manipulation leads to deadlock. This vulnerability is handled as CVE-2021-47469. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-36924 | Linux Kernel up to 6.1.90/6.6.30/6.8.9 scsi lpfc_worker_wake_up deadlock (Nessus ID 209785)

Vuldb Updates
4 days 18 hours ago
A vulnerability was found in Linux Kernel up to 6.1.90/6.6.30/6.8.9. It has been declared as critical. Affected by this vulnerability is the function lpfc_worker_wake_up of the component scsi. The manipulation leads to deadlock. This vulnerability is known as CVE-2024-36924. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2022-48855 | Linux Kernel up to 5.16.14 SCTP Socket lib/iov_iter.c inet_sctp_diag_fill uninitialized pointer (Nessus ID 209785)

Vuldb Updates
4 days 18 hours ago
A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 5.16.14. This issue affects the function inet_sctp_diag_fill in the library lib/iov_iter.c of the component SCTP Socket Handler. The manipulation leads to uninitialized pointer. The identification of this vulnerability is CVE-2022-48855. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2021-47183 | Linux Kernel up to 5.15.4 lpfc null pointer dereference (28de48a7cea4/1854f53ccd88 / Nessus ID 209785)

Vuldb Updates
4 days 18 hours ago
A vulnerability was found in Linux Kernel up to 5.15.4. It has been declared as critical. This vulnerability affects unknown code of the component lpfc. The manipulation leads to null pointer dereference. This vulnerability was named CVE-2021-47183. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2021-47427 | Linux Kernel up to 5.14.11 iscsi_get_conn/iscsi_put_conn use after free (1642f51ac0d4/258aad75c621 / Nessus ID 209785)

Vuldb Updates
4 days 18 hours ago
A vulnerability has been found in Linux Kernel up to 5.14.11 and classified as problematic. This vulnerability affects the function iscsi_get_conn/iscsi_put_conn. The manipulation leads to use after free. This vulnerability was named CVE-2021-47427. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2021-47265 | Linux Kernel up to 3.12/5.12.10 RDMA mlx5_ib Privilege Escalation (8dc1b0e0ca20/2adcb4c5a52a / Nessus ID 209785)

Vuldb Updates
4 days 18 hours ago
A vulnerability was found in Linux Kernel up to 3.12/5.12.10 and classified as problematic. This issue affects the function mlx5_ib of the component RDMA. The manipulation leads to Privilege Escalation. The identification of this vulnerability is CVE-2021-47265. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-38541 | Linux Kernel up to 6.6.32/6.8.11/6.9.2 of_modalias buffer overflow (Nessus ID 209785)

Vuldb Updates
4 days 18 hours ago
A vulnerability was found in Linux Kernel up to 6.6.32/6.8.11/6.9.2. It has been rated as critical. This issue affects the function of_modalias. The manipulation leads to buffer overflow. The identification of this vulnerability is CVE-2024-38541. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

Internet Archive Hacked, Introducing The AI Toilet Camera

Security Boulevard
4 days 18 hours ago

In this episode, we discuss the significant data breach at the Internet Archive, affecting 33 million users. We also examine the introduction of an AI-integrated toilet camera by Throne, designed for health monitoring by analyzing bodily waste, and the ensuing privacy concerns. We explore these technological advancements alongside other unusual tech innovations, touching upon security […]

The post Internet Archive Hacked, Introducing The AI Toilet Camera appeared first on Shared Security Podcast.

The post Internet Archive Hacked, Introducing The AI Toilet Camera appeared first on Security Boulevard.

Tom Eston

Top 10 strategic technology trends shaping the future of business

Help Net Security
4 days 18 hours ago

The ethical and responsible use of technology is fast becoming part of the mandate for CIOs, as organizations balance the need for progress with the protection of stakeholders’ trust and well-being, according to Gartner. “This year’s top strategic technology trends span AI imperatives and risks, new frontiers of computing and human-machine synergy,” said Gene Alvarez, Distinguished VP Analyst at Gartner. “Tracking these trends will help IT leaders shape the future of their organizations with responsible … More →

The post Top 10 strategic technology trends shaping the future of business appeared first on Help Net Security.

Help Net Security

Linux 上的 Intel、AMD CPU 受到新披露的 Spectre 绕过的影响

嘶吼
4 days 18 hours ago

据了解,最新一代的 Intel 处理器(包括 Xeon 芯片)和 AMD 在 Linux 上的旧微架构很容易受到绕过现有“Spectre”缓解措施的新推测执行攻击。

这些漏洞影响英特尔第 12、第 13 和第 14 代芯片以及面向服务器的第 5 和第 6 代 Xeon 处理器,以及 AMD 的 Zen 1、Zen 1+ 和 Zen 2 处理器。

这些攻击破坏了 x86 处理器上的间接分支预测器屏障 (IBPB),这是针对推测执行攻击的核心防御机制。

推测执行是现代 CPU 上的一项性能优化功能,它在知道未来任务是否需要指令之前执行指令,从而在预测正确时加快进程。

基于错误预测执行的指令称为瞬态指令并被压缩。这种机制一直是侧通道风险(例如 Spectre)的来源,因为推测过程调用可以从 CPU 缓存检索的敏感数据。

新的类似幽灵的攻击

安全研究人员表示,尽管为遏制类似 Spectre 的攻击进行了多年的缓解努力,但仍有许多变体绕过了现有的防御措施。

他们的贡献是跨进程攻击(针对 Intel)和 PB-inception 攻击(针对 AMD),即使在应用 IBPB 后也允许劫持投机返回目标,从而绕过当前的保护并泄露敏感信息。

在第一种情况下,攻击利用了英特尔微代码中的一个漏洞,即 IBPB 不会在上下文切换后完全使返回预测无效。攻击者操纵返回指令的推测执行,允许过时的预测从 suid 进程中泄漏敏感信息,例如 root 密码的哈希值。

在 AMD 处理器上,Linux 内核中的 IBPB-on-entry 应用不当,导致返回预测器即使在 IBPB 之后仍保留过时的预测。攻击者在 IBPB 触发之前错误训练返回预测器,劫持它以在屏障之后泄漏特权内核内存。

IBPB 后英特尔和 AMD 仍然脆弱的回报预测

应对措施和缓解措施

研究人员于 2024 年 6 月向英特尔和 AMD 通报了这些问题。英特尔回应称,他们已经在内部发现了该问题,并为其分配了 CVE-2023-38575 标识符。

该公司于 3 月份发布了可通过固件更新进行的微代码修复,但研究人员指出,该代码尚未到达所有操作系统,Ubuntu 就是其中之一。

AMD 也确认了该漏洞,并表示该漏洞已被记录并追踪为 CVE-2022-23824。值得注意的是,AMD 的公告将 Zen 3 产品列为受影响的产品。但是,AMD 将该问题归类为软件错误,而不是硬件缺陷。

受影响的旧架构以及 AMD 很久以前就了解了该错误的事实可能解释了该公司决定不发布纠正微代码的原因。尽管这两家 CPU 供应商知道 Spectre 绕过,但这些公司在公告中将其标记为具有潜在影响。

通过他们的工作,安全研究人员能够证明这种攻击甚至在 Linux 6.5 上也能发挥作用,Linux 6.5 附带了 IBPB-on-entry 防御,被认为是针对 Spctre 利用的最强防御。目前,有关高校正在与 Linux 内核维护人员合作开发适用于 AMD 处理器的补丁。

胡金鱼

CVE-2017-6989 | Apple tvOS up to 10.2.0 AVEVideoEncoder memory corruption (HT207801 / EDB-42555)

Vuldb Updates
4 days 18 hours ago
A vulnerability classified as critical has been found in Apple tvOS up to 10.2.0. This affects an unknown part of the component AVEVideoEncoder. The manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2017-6989. The attack needs to be approached locally. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2017-2487 | Apple tvOS up to 10.1 FontParser memory corruption (HT207601 / Nessus ID 99264)

Vuldb Updates
4 days 18 hours ago
A vulnerability was found in Apple tvOS up to 10.1. It has been declared as critical. This vulnerability affects unknown code of the component FontParser. The manipulation leads to memory corruption. This vulnerability was named CVE-2017-2487. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

Managed ad