Aggregator

A vulnerability was found in Linux Kernel up to 6.6.53/6.10.12/6.11.1 and classified as problematic. The impacted element is the function ALIGN of the file drivers/iommu/iommufd/io_pagetable.c of the component iommufd. Executing a manipulation can lead to allocation of resources. This vulnerability appears as CVE-2024-47719. The attacker needs to be present on the local network. There is no available exploit. It is suggested to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.11.1. It has been declared as critical. This issue affects the function rtw_wait_firmware_completion of the component rtw88. Executing a manipulation can lead to use after free. This vulnerability appears as CVE-2024-47718. The attacker needs to be present on the local network. There is no available exploit. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.15.167/6.1.112/6.6.53/6.10.12/6.11.1. It has been rated as critical. Impacted is the function dcn30_set_output_transfer_func of the component AMD Display. The manipulation leads to null pointer dereference. This vulnerability is traded as CVE-2024-47720. Access to the local network is required for this attack to succeed. There is no exploit available. Upgrading the affected component is advised.

A vulnerability described as problematic has been identified in Linux Kernel up to 6.6.53/6.7/6.10.12/6.11.1. This issue affects the function mt7915_band_config. The manipulation results in race condition. This vulnerability is identified as CVE-2024-47715. The attack can only be performed from the local network. There is not any exploit available. Upgrading the affected component is recommended.

A vulnerability classified as critical has been found in Linux Kernel up to 6.10.12/6.11.1. Impacted is the function kvm_vcpu_write_guest of the component RISC-V. This manipulation causes null pointer dereference. This vulnerability is tracked as CVE-2024-47717. The attack is only possible within the local network. No exploit exists. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 6.6.53/6.10.12/6.11.1. This affects the function pr_debug of the component ARM. Performing a manipulation results in denial of service. This vulnerability is identified as CVE-2024-47716. The attack can only be performed from the local network. There is not any exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.11.1. It has been declared as problematic. Affected is the function ieee80211_do_stop of the file kernel/softirq.c of the component mac80211. Such manipulation leads to privilege escalation. This vulnerability is documented as CVE-2024-47713. The attack requires being on the local network. There is not any exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 6.6.53/6.10.12/6.11.1. The affected element is the function tx_ant. Executing a manipulation can lead to out-of-bounds read. This vulnerability is tracked as CVE-2024-47714. The attack is only possible within the local network. No exploit exists. You should upgrade the affected component.

A vulnerability categorized as critical has been discovered in Linux Kernel up to 6.11.1. Affected by this issue is the function wilc_parse_join_bss_param of the component wilc1000. Executing a manipulation can lead to use after free. This vulnerability appears as CVE-2024-47712. The attacker needs to be present on the local network. There is no available exploit. It is advisable to upgrade the affected component.

HackerNews 编译，转载请注明出处： 加拿大投资行业监管组织（CIRO）证实，其去年遭受的数据泄露事件影响了约75万名加拿大投资者。该机构于去年 8 月 18 日披露了这起事件，相关深度司法取证调查于今年 1 月 14 日方才完成。 CIRO是加拿大负责监管投资交易商、共同基金交易商及相关交易活动的全国性自律监管机构。该机构成立于 2023 年，目前已成为加拿大金融监管框架的核心支柱之一。 去年夏天，CIRO宣布，其于 8 月 11 日监测到系统存在网络安全威胁，随即采取应对措施，关停了部分非核心系统，并同步启动调查工作。 初步调查结果显示，部分会员公司及其注册员工的个人信息已被窃取，但此次事件的完整影响范围，还需要更多时间才能全面评估。 在上周发布的一则公告中，CIRO通报称，此次事件波及加拿大国内约 75 万名投资者，这些人员均为该机构的现任或前任会员。不同个体的信息泄露情况存在差异，泄露信息可能包含以下内容： 出生日期 电话号码 年收入 社会保险号码 政府签发的身份证件号码 投资账户账号 账户对账单 CIRO强调，登录凭证或账户安全问题未受影响，因为其系统并未存储此类信息。 该机构表示，其为调查此次事件累计投入超 9000 小时，目前未发现被盗数据存在被滥用，或在暗网被公开传播的迹象。 不过，为降低相关风险，CIRO将为所有受影响的投资者提供为期两年的免费信用监控服务及身份盗用保护服务。 经确认受到此次事件影响的人员，将会收到包含服务注册指引的通知。未收到通知的人员，可直接联系加CIRO确认自身是否受到影响。 此次CIRO泄露事件，与新斯科舍电力公司、加拿大众议院、西捷航空、玩具反斗城以及自由移动通讯公司遭遇的同类事件一道，被列为加拿大去年最为严重的几起网络安全事件。   消息来源：bleepingcomputer； 本文由 HackerNews.cc 翻译整理，封面来源于网络； 转载请注明“转自 HackerNews.cc”并附上原文

Name: CyberCup Indian Ocean (an CyberCup Indian Ocean event.)
Date: Jan. 16, 2026, 4 p.m. — 18 Jan. 2026, 16:00 UTC  [add to calendar]
Format: Jeopardy
On-line
Location: Online
Offical URL: https://cybercup.ocoi.org/
Rating weight: 0
Event organizers: Hacking Indian Ocean

先知社区新年投稿活动｜辞旧迎新，福利翻倍！

エフサステクノロジーズ株式会社が提供するETERNUS SF製品には、保守資料からの情報漏えいの脆弱性が存在します。

作者：Zhiqiang Wang、Yizhong Ding、Zilong Xiao等 译者：知道创宇404实验室翻译组 原文链接：https://arxiv.org/html/2601.06177v1 摘要 PHP在Web开发中的主导地位受到安全挑战的影响：静态分析缺乏语义深度，导致误报率高；动态分析计算成本高昂；自动漏洞定位存在粒度粗糙、上下文不准确的问题。此外，缺乏大规模PHP漏洞数据集...

HackerNews 编译，转载请注明出处： AWS CodeBuild中的一处关键配置错误使得攻击者得以掌控核心的AWS GitHub代码库，其中包括支撑AWS控制台的JavaScript SDK。 Wiz Research将此问题命名为”CodeBreach”漏洞，它暴露了AWS管理的开源项目所使用的持续集成管道中的弱点。通过利用此漏洞，未经身份验证的攻击者本可将恶意代码注入受信任的代码库，从而开辟一条入侵AWS控制台以及可能每个依赖该控制台的AWS账户的路径。 该漏洞源于CodeBuild处理拉取请求触发器的方式。一个安全过滤器中的微小错误——仅缺少两个字符——导致不受信任的拉取请求能够运行拥有特权的构建任务。由此，攻击者可以访问存储在构建内存中的GitHub凭证，并将访问权限提升至完全控制代码库。 Wiz表示，最敏感的目标是AWS SDK for JavaScript，这是一个广泛使用的库，既支撑着客户应用，也支撑着AWS控制台本身。该公司估计，66%的云环境包含此SDK，这放大了供应链攻击的潜在影响。 微小正则表达式错误如何引发重大风险 暴露的代码库依赖一个ACTOR_ID过滤器来限制可触发构建的GitHub用户。然而，Wiz发现该过滤器是以非锚定的正则表达式实现的。这意味着，包含已批准ID作为子字符串的GitHub用户ID可以绕过此限制。 由于GitHub是按顺序分配数字用户ID的，Wiz研究人员得以预测新的ID何时会”数字超越”受信任维护者的ID。通过自动化创建GitHub应用，他们获取了能够绕过过滤器并触发构建的ID。 Wiz成功演示了对 aws/aws-sdk-js-v3 代码库的接管，通过窃取的凭证获得了管理员级别的访问权限。 同样的弱点存在于至少其他三个AWS代码库中，其中一个链接到某AWS员工的个人账户。 AWS的响应与缓解措施 Wiz于8月25日披露了此发现，AWS在48小时内解决了该问题。该公司锚定了受影响的正则表达式过滤器，撤回了暴露的凭证，并增加了防护措施以防止基于内存的凭证窃取。 AWS还引入了一个新的”拉取请求评论批准”构建门控，默认阻止不受信任的构建。 在一份声明中，该公司表示：”AWS确认没有任何客户环境的机密性或完整性受到影响”，并补充说没有发现恶意利用的证据。 Wiz建议CodeBuild用户采取以下几项防御措施： 阻止不受信任的拉取请求触发特权构建 使用具有最小权限的细粒度GitHub令牌 锚定Webhook过滤器的正则表达式模式   消息来源：infosecurity-magazine； 本文由 HackerNews.cc 翻译整理，封面来源于网络； 转载请注明“转自 HackerNews.cc”并附上原文

A vulnerability classified as critical was found in Linux Kernel up to 6.11.1. This vulnerability affects the function manage_oob of the component af_unix. The manipulation results in use after free. This vulnerability is cataloged as CVE-2024-47711. The attack must originate from the local network. There is no exploit available. Upgrading the affected component is advised.

A vulnerability has been found in Linux Kernel up to 6.11.1 and classified as problematic. The affected element is the function remove_proc_entry of the file fs/proc/generic.c. Performing a manipulation results in privilege escalation. This vulnerability is reported as CVE-2024-47709. The attacker must have access to the local network to execute the attack. No exploit exists. The affected component should be upgraded.

A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 6.11.1. Impacted is the function sock_hash_free of the component sock_map. Performing a manipulation results in privilege escalation. This vulnerability is identified as CVE-2024-47710. The attack can only be performed from the local network. There is not any exploit available. It is advisable to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.11.1. It has been classified as critical. This vulnerability affects the function skb_do_redirect of the component netkit. Performing a manipulation results in null pointer dereference. This vulnerability is reported as CVE-2024-47708. The attacker must have access to the local network to execute the attack. No exploit exists. Upgrading the affected component is recommended.

A vulnerability classified as critical has been found in Linux Kernel up to 6.1.112/6.6.53/6.10.12/6.11.1. This affects the function rt6_uncached_list_flush_dev of the component ipv6. The manipulation leads to null pointer dereference. This vulnerability is listed as CVE-2024-47707. The attack must be carried out from within the local network. There is no available exploit. It is recommended to upgrade the affected component.