Security Pop Quiz! q337.mp3

News

Packet Storm Security

Security Affairs Looking Glass Cyber
    securingtomorrow.mcafee.com Quick Heal Threat Post Naked Security ESET CIS
    • CIS Podcast: Cybersecurity Where You Are Ep.9 Fri, 11 Jun 2021 18:31:25 +0000

      Mitigating Risk: Information Security Governance Information security governance ensures that an organization has the correct information structure, leadership, and guidance. The governance aspect helps ensure that an organization has the proper administrative controls to mitigate risk. Then, risk analysis helps ensure that an organization properly identifies, analyzes, and mitigates said risk. Information security governance can […]

      The post CIS Podcast: Cybersecurity Where You Are Ep.9 appeared first on CIS.

    Malware Patrol SecList MySonicWall

    Critical Infrastructure

    Case Studies

    Tools

    Exploits

    Last 20 Website Defacements - Zone-h

    Press Play to hear the answer!

    Advisories

    • Ubuntu Security Notice USN-4987-1 Fri, 11 Jun 2021 14:57:50 GMT
      Ubuntu Security Notice 4987-1 - It was discovered that ExifTool did not properly sanitize user data for the DjVu file format. An attacker could use this vulnerability to cause a DoS or possibly execute arbitrary code.
    • Ubuntu Security Notice USN-4986-3 Fri, 11 Jun 2021 14:55:44 GMT
      Ubuntu Security Notice 4986-3 - USN-4986-1 fixed a vulnerability in rpcbind. The update caused a regression resulting in rpcbind crashing in certain environments. This update fixes the problem. It was discovered that rpcbind incorrectly handled certain large data sizes. A remote attacker could use this issue to cause rpcbind to consume resources, leading to a denial of service. Various other issues were also addressed.
    • Red Hat Security Advisory 2021-2380-01 Fri, 11 Jun 2021 14:44:14 GMT
      Red Hat Security Advisory 2021-2380-01 - Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an on-premise OpenShift Container Platform installation.
    • Ubuntu Security Notice USN-4971-2 Thu, 10 Jun 2021 14:56:08 GMT
      Ubuntu Security Notice 4971-2 - USN-4971-1 fixed several vulnerabilities in libwebp. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. It was discovered that libwebp incorrectly handled certain malformed images. If a user or automated system were tricked into opening a specially crafted image file, a remote attacker could use this issue to cause libwebp to crash, resulting in a denial of service, or possibly execute arbitrary code. Various other issues were also addressed.
    • Red Hat Security Advisory 2021-2375-01 Thu, 10 Jun 2021 13:57:32 GMT
      Red Hat Security Advisory 2021-2375-01 - PostgreSQL is an advanced object-relational database management system. Issues addressed include an integer overflow vulnerability.
    • Red Hat Security Advisory 2021-2372-01 Thu, 10 Jun 2021 13:55:07 GMT
      Red Hat Security Advisory 2021-2372-01 - PostgreSQL is an advanced object-relational database management system. Issues addressed include an integer overflow vulnerability.
    • Red Hat Security Advisory 2021-2370-01 Thu, 10 Jun 2021 13:51:08 GMT
      Red Hat Security Advisory 2021-2370-01 - The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc.
    • Red Hat Security Advisory 2021-2371-01 Thu, 10 Jun 2021 13:47:40 GMT
      Red Hat Security Advisory 2021-2371-01 - The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc.
    • Ubuntu Security Notice USN-4986-2 Thu, 10 Jun 2021 13:45:37 GMT
      Ubuntu Security Notice 4986-2 - USN-4986-1 fixed a vulnerability in rpcbind. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. It was discovered that rpcbind incorrectly handled certain large data sizes. A remote attacker could use this issue to cause rpcbind to consume resources, leading to a denial of service. Various other issues were also addressed.
    • Red Hat Security Advisory 2021-2150-01 Thu, 10 Jun 2021 13:45:26 GMT
      Red Hat Security Advisory 2021-2150-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 3.11.452.
    • Red Hat Security Advisory 2021-2363-01 Thu, 10 Jun 2021 13:42:25 GMT
      Red Hat Security Advisory 2021-2363-01 - GUPnP is an object-oriented open source framework for creating UPnP devices and control points, written in C using GObject and libsoup. The GUPnP API is intended to be easy to use, efficient and flexible.
    • Red Hat Security Advisory 2021-2364-01 Thu, 10 Jun 2021 13:42:06 GMT
      Red Hat Security Advisory 2021-2364-01 - The libwebp packages provide a library and tools for the WebP graphics format. WebP is an image format with a lossy compression of digital photographic images. WebP consists of a codec based on the VP8 format, and a container based on the Resource Interchange File Format. Webmasters, web developers and browser developers can use WebP to compress, archive, and distribute digital images more efficiently. Issues addressed include buffer overflow and use-after-free vulnerabilities.
    • Red Hat Security Advisory 2021-2365-01 Thu, 10 Jun 2021 13:39:19 GMT
      Red Hat Security Advisory 2021-2365-01 - The libwebp packages provide a library and tools for the WebP graphics format. WebP is an image format with a lossy compression of digital photographic images. WebP consists of a codec based on the VP8 format, and a container based on the Resource Interchange File Format. Webmasters, web developers and browser developers can use WebP to compress, archive, and distribute digital images more efficiently. Issues addressed include buffer overflow and use-after-free vulnerabilities.
    • Red Hat Security Advisory 2021-2361-01 Wed, 09 Jun 2021 13:44:27 GMT
      Red Hat Security Advisory 2021-2361-01 - PostgreSQL is an advanced object-relational database management system. Issues addressed include an integer overflow vulnerability.
    • Red Hat Security Advisory 2021-2360-01 Wed, 09 Jun 2021 13:44:06 GMT
      Red Hat Security Advisory 2021-2360-01 - PostgreSQL is an advanced object-relational database management system. Issues addressed include an integer overflow vulnerability.
    • Ubuntu Security Notice USN-4986-1 Wed, 09 Jun 2021 13:43:54 GMT
      Ubuntu Security Notice 4986-1 - It was discovered that rpcbind incorrectly handled certain large data sizes. A remote attacker could use this issue to cause rpcbind to consume resources, leading to a denial of service.
    • Red Hat Security Advisory 2021-2359-01 Wed, 09 Jun 2021 13:43:47 GMT
      Red Hat Security Advisory 2021-2359-01 - The Dynamic Host Configuration Protocol is a protocol that allows individual devices on an IP network to get their own network configuration information, including an IP address, a subnet mask, and a broadcast address. The dhcp packages provide a relay agent and ISC DHCP service required to enable and administer DHCP on a network. Issues addressed include a buffer overflow vulnerability.
    • Red Hat Security Advisory 2021-2357-01 Wed, 09 Jun 2021 13:43:37 GMT
      Red Hat Security Advisory 2021-2357-01 - The Dynamic Host Configuration Protocol is a protocol that allows individual devices on an IP network to get their own network configuration information, including an IP address, a subnet mask, and a broadcast address. The dhcp packages provide a relay agent and ISC DHCP service required to enable and administer DHCP on a network. Issues addressed include a buffer overflow vulnerability.
    • Red Hat Security Advisory 2021-2355-01 Wed, 09 Jun 2021 13:43:29 GMT
      Red Hat Security Advisory 2021-2355-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include buffer overflow, integer overflow, and out of bounds write vulnerabilities.
    • Red Hat Security Advisory 2021-2356-01 Wed, 09 Jun 2021 13:42:38 GMT
      Red Hat Security Advisory 2021-2356-01 - Nettle is a cryptographic library that is designed to fit easily in almost any context: In crypto toolkits for object-oriented languages, such as C++, Python, or Pike, in applications like LSH or GNUPG, or even in kernel space.
    • Ubuntu Security Notice USN-4985-1 Wed, 09 Jun 2021 13:42:19 GMT
      Ubuntu Security Notice 4985-1 - It was discovered that some Intel processors may not properly invalidate cache entries used by Intel Virtualization Technology for Directed I/O. This may allow a local user to perform a privilege escalation attack. Joseph Nuzman discovered that some Intel processors may not properly apply EIBRS mitigations and hence may allow unauthorized memory reads via sidechannel attacks. A local attacker could use this to expose sensitive information, including kernel memory. Various other issues were also addressed.
    • Red Hat Security Advisory 2021-2303-01 Wed, 09 Jun 2021 13:42:12 GMT
      Red Hat Security Advisory 2021-2303-01 - The microcode_ctl packages provide microcode updates for Intel. Issues addressed include information leakage and privilege escalation vulnerabilities.
    • Red Hat Security Advisory 2021-2305-01 Wed, 09 Jun 2021 13:42:01 GMT
      Red Hat Security Advisory 2021-2305-01 - The microcode_ctl packages provide microcode updates for Intel. Issues addressed include information leakage and privilege escalation vulnerabilities.
    • Red Hat Security Advisory 2021-2304-01 Wed, 09 Jun 2021 13:40:48 GMT
      Red Hat Security Advisory 2021-2304-01 - The microcode_ctl packages provide microcode updates for Intel. Issues addressed include information leakage and privilege escalation vulnerabilities.
    • Red Hat Security Advisory 2021-2301-01 Wed, 09 Jun 2021 13:40:40 GMT
      Red Hat Security Advisory 2021-2301-01 - The microcode_ctl packages provide microcode updates for Intel. Issues addressed include information leakage and privilege escalation vulnerabilities.