Security Pop Quiz! q283.mp3

News

Packet Storm Security

Security Affairs Looking Glass Cyber
    securingtomorrow.mcafee.com Quick Heal Threat Post Naked Security ESET CIS Malware Patrol SecList
    • APT annual review 2021
      For this annual review, we have tried to focus on what we consider to be the most interesting trends and developments of the last 12 months.
    MySonicWall

    Critical Infrastructure

    Case Studies

    Tools

    Exploits

    Last 20 Website Defacements - Zone-h

    Press Play to hear the answer!

    Advisories

    • Red Hat Security Advisory 2021-4829-04 Tue, 30 Nov 2021 14:45:33 GMT
      Red Hat Security Advisory 2021-4829-04 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.8.22. Issues addressed include a bypass vulnerability.
    • Ubuntu Security Notice USN-5158-1 Tue, 30 Nov 2021 14:44:55 GMT
      Ubuntu Security Notice 5158-1 - It was discovered that ImageMagick incorrectly handled certain values when processing visual effects based image files. By tricking a user into opening a specially crafted image file, an attacker could crash the application causing a denial of service. It was discovered that ImageMagick incorrectly handled certain values when performing resampling operations. By tricking a user into opening a specially crafted image file, an attacker could crash the application causing a denial of service. Various other issues were also addressed.
    • Red Hat Security Advisory 2021-4848-07 Tue, 30 Nov 2021 14:44:48 GMT
      Red Hat Security Advisory 2021-4848-07 - The Migration Toolkit for Containers enables you to migrate Kubernetes resources, persistent volume data, and internal container images between OpenShift Container Platform clusters, using the MTC web console or the Kubernetes API. Issues addressed include code execution and denial of service vulnerabilities.
    • Red Hat Security Advisory 2021-4845-05 Mon, 29 Nov 2021 18:12:32 GMT
      Red Hat Security Advisory 2021-4845-05 - Red Hat OpenShift Container Storage is software-defined storage integrated with and optimized for the Red Hat OpenShift Container Platform. Red Hat OpenShift Container Storage is highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. Issues addressed include a code execution vulnerability.
    • Red Hat Security Advisory 2021-4844-01 Mon, 29 Nov 2021 18:12:26 GMT
      Red Hat Security Advisory 2021-4844-01 - Samba is an open-source implementation of the Server Message Block protocol and the related Common Internet File System protocol, which allow PC-compatible machines to share files, printers, and various information.
    • Red Hat Security Advisory 2021-4843-01 Mon, 29 Nov 2021 18:06:46 GMT
      Red Hat Security Advisory 2021-4843-01 - Samba is an open-source implementation of the Server Message Block protocol and the related Common Internet File System protocol, which allow PC-compatible machines to share files, printers, and various information.
    • Red Hat Security Advisory 2021-4833-01 Mon, 29 Nov 2021 17:36:29 GMT
      Red Hat Security Advisory 2021-4833-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.9.9. Issues addressed include a bypass vulnerability.
    • Ubuntu Security Notice USN-5156-1 Thu, 25 Nov 2021 23:22:22 GMT
      Ubuntu Security Notice 5156-1 - It was discovered that ICU contains a double free issue. An attacker could use this issue to cause a denial of service or possibly execute arbitrary code.
    • Red Hat Security Advisory 2021-4837-02 Wed, 24 Nov 2021 16:44:01 GMT
      Red Hat Security Advisory 2021-4837-02 - Mailman is a program used to help manage e-mail discussion lists. Issues addressed include bypass and cross site request forgery vulnerabilities.
    • Red Hat Security Advisory 2021-4838-02 Wed, 24 Nov 2021 16:40:23 GMT
      Red Hat Security Advisory 2021-4838-02 - Mailman is a program used to help manage e-mail discussion lists. Issues addressed include bypass and cross site request forgery vulnerabilities.
    • Red Hat Security Advisory 2021-4839-02 Wed, 24 Nov 2021 16:40:16 GMT
      Red Hat Security Advisory 2021-4839-02 - Mailman is a program used to help manage e-mail discussion lists. Issues addressed include bypass and cross site request forgery vulnerabilities.
    • Red Hat Security Advisory 2021-4826-02 Wed, 24 Nov 2021 16:37:44 GMT
      Red Hat Security Advisory 2021-4826-02 - Mailman is a program used to help manage e-mail discussion lists. Issues addressed include bypass and cross site request forgery vulnerabilities.
    • Red Hat Security Advisory 2021-4774-02 Wed, 24 Nov 2021 16:37:38 GMT
      Red Hat Security Advisory 2021-4774-02 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include a use-after-free vulnerability.
    • Red Hat Security Advisory 2021-4788-02 Wed, 24 Nov 2021 16:37:30 GMT
      Red Hat Security Advisory 2021-4788-02 - Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the Kerberos key distribution center. Issues addressed include a null pointer vulnerability.
    • Red Hat Security Advisory 2021-4798-02 Wed, 24 Nov 2021 16:35:16 GMT
      Red Hat Security Advisory 2021-4798-02 - This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Issues addressed include a use-after-free vulnerability.
    • Red Hat Security Advisory 2021-4773-03 Wed, 24 Nov 2021 16:35:09 GMT
      Red Hat Security Advisory 2021-4773-03 - This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Issues addressed include a use-after-free vulnerability.
    • Ubuntu Security Notice USN-5155-1 Wed, 24 Nov 2021 16:35:03 GMT
      Ubuntu Security Notice 5155-1 - It was discovered that BlueZ incorrectly handled the Discoverable status when a device is powered down. This could result in devices being powered up discoverable, contrary to expectations. This issue only affected Ubuntu 20.04 LTS, Ubuntu 21.04, and Ubuntu 21.10. It was discovered that BlueZ incorrectly handled certain memory operations. A remote attacker could possibly use this issue to cause BlueZ to consume resources, leading to a denial of service. Various other issues were also addressed.
    • Red Hat Security Advisory 2021-4782-01 Wed, 24 Nov 2021 16:32:59 GMT
      Red Hat Security Advisory 2021-4782-01 - OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server. Issues addressed include a privilege escalation vulnerability.
    • Red Hat Security Advisory 2021-4785-01 Wed, 24 Nov 2021 16:32:47 GMT
      Red Hat Security Advisory 2021-4785-01 - The RPM Package Manager is a command-line driven package management system capable of installing, uninstalling, verifying, querying, and updating software packages. Issues addressed include a bypass vulnerability.
    • Red Hat Security Advisory 2021-4777-01 Wed, 24 Nov 2021 16:29:37 GMT
      Red Hat Security Advisory 2021-4777-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include a use-after-free vulnerability.
    • Red Hat Security Advisory 2021-4779-01 Wed, 24 Nov 2021 16:29:25 GMT
      Red Hat Security Advisory 2021-4779-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Issues addressed include a use-after-free vulnerability.
    • Ubuntu Security Notice USN-5154-1 Tue, 23 Nov 2021 17:16:21 GMT
      Ubuntu Security Notice 5154-1 - It was discovered that FreeRDP incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code or cause a crash. It was discovered that FreeRDP incorrectly handled certain connections. An attacker could possibly use this issue to execute arbitrary code or cause a crash.
    • Red Hat Security Advisory 2021-4765-03 Tue, 23 Nov 2021 17:16:15 GMT
      Red Hat Security Advisory 2021-4765-03 - Red Hat OpenShift Serverless Client kn 1.19.0 provides a CLI to interact with Red Hat OpenShift Serverless 1.19.0. The kn CLI is delivered as an RPM package for installation on RHEL platforms, and as binaries for non-Linux platforms.
    • Red Hat Security Advisory 2021-4766-01 Tue, 23 Nov 2021 17:10:05 GMT
      Red Hat Security Advisory 2021-4766-01 - Red Hat OpenShift Serverless release of the OpenShift Serverless Operator. This version of the OpenShift Serverless Operator is supported on Red Hat OpenShift Container Platform versions 4.6, 4.7, 4.8 and 4.9, and includes security and bug fixes and enhancements. For more information, see the documentation listed in the References section.
    • Red Hat Security Advisory 2021-4767-01 Tue, 23 Nov 2021 17:09:50 GMT
      Red Hat Security Advisory 2021-4767-01 - This release of Red Hat Integration - Camel Extensions for Quarkus - 2.2 GA serves as a replacement for tech-preview 2, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Issues addressed include bypass, code execution, denial of service, deserialization, information leakage, resource exhaustion, and server-side request forgery vulnerabilities.