Security Vulnerabilities - Page 15

Discover Security Vulnerabilities News

Linux vulnerabilities: How unpatched servers lead to persistent backdoors

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Humans make mistakes, software has bugs and some of these bugs are exploitable vulnerabilities. The existence of vulnerabilities in software is not a new problem, but as the volume of software in existence grows, so does the number of exploitable vulnerabilities. Learn more about this worrisome trend in an interesting Security Boulevard article.

Brittany Day
Sep 24, 2020

The new BLESA Bluetooth security flaw can keep billions of devices vulnerable

Billions of smartphones, tablets, laptops, and Linux-based IoT devices are now using Bluetooth software stacks that are potentially susceptible a new security flaw. Titled as BLESA (Bluetooth Low Energy Spoofing Attack), the vulnerability impacts devices running the Bluetooth Low Energy (BLE) protocol.

Brittany Day
Sep 18, 2020

Hidden Linux kernel security fixes spotted before release – by using developer chatter as a side channel

Security researchers have found that they can detect Linux kernel security fixes before they are released - information that could be used by malicious hackers to develop and deploy exploit code before patches are widely available.

Brittany Day
Sep 07, 2020

Canonical Releases Important Ubuntu Kernel Updates to Patch 17 Vulnerabilities

Ubuntu users - have you implemented the latest kernel updates released by Canonical to address 17 recently-discovered security vulnerabilities?

Brittany Day
Sep 04, 2020

BootHole Shows Need for Greater Scrutiny

Recent BootHole vulnerabilities reconfirm that security functions require additional scrutiny to protect users and systems from dangerous exploits.

Brittany Day
Aug 11, 2020

Researcher Demonstrates Several Zoom Vulnerabilities at DEF CON 28

Security researcher Mazin Ahmed demonstrated multiple serious vulnerabilities in the popular Zoom app, two of which impact Linux users, at DEF CON 28.

Brittany Day
Aug 10, 2020

GRUB2 Boot Failure Issues Fixed in Debian and Ubuntu, Update Now

The recent GRUB2 patches that were released to mitigate critical BootHole vulnerabilities also caused boot failure issues for some users. Luckily, fixes for these regressions have started appearing for some distros, including Debian and Ubuntu.

Brittany Day
Aug 06, 2020

NSA issues BootHole mitigation guidance

The NSA has issued mitigation guidance for a recently-discovered BootHole vulnerability impacting Linux and Windows systems.

Brittany Day
Aug 04, 2020

Red Hat and CentOS systems aren’t booting due to BootHole patches

Patches issued to fix a recent BootHole vulnerability have rendered RedHat and CentOS systems unbootable.

Brittany Day
Aug 03, 2020

KDE archive tool flaw let hackers take over Linux accounts

A dangerous vulnerability has been discovered in the default Linux KDE extraction utility called ARK that allows malicious actors to overwrite files or execute code on victims' computers by tricking them into downloading an archive and extracting it.

Brittany Day
Jul 31, 2020

New BootHole flaw in Secure Boot affects a huge number of Linux and Windows systems

A dangerous new vulnerability has been discovered in Secure Boot that affects a huge number of Linux and Windows systems that use the UEFI specification during boot.

Brittany Day
Jul 30, 2020

Update your Google Chrome browser now to avoid hackers, says CERT-In

CERT-In is urging Google Chrome users to upgrade immediately to the new version of the Chrome browser to protect sensitive information on their machines and prevent contact spoofing and denial of service (DoS) attacks exploiting Chrome vulnerabilities.

Brittany Day
Jul 21, 2020

Bluetooth Reconnection Flaw Could Lead to Spoofing Attacks

Purdue University security researchers recently discovered a vulnerability affecting IoT devices running Bluetooth which could lead to spoofing attacks. The vulnerability has a broad impact on mainstream platforms that support BLE communications, including Linux, Android and iOS.

Brittany Day
Jul 20, 2020

Rust programming language: Crates package API tokens revoked over serious security flaw

The project behind the Rust programming language has revoked all API keys from its crates.io package web app. These API keys were not randomly generated and were being stored in plain text.

Brittany Day
Jul 15, 2020

Report: Most Popular Home Routers Have ‘Critical’ Flaws

A new report reveals that common home routers from Netgear, Linksys, D-Link and other vendors contain serious security vulnerabilities that even updates don’t fix. While Linux can be a very secure OS in theory, researchers have found that many of these vulnerable routers are powered by very old versions of Linux that lack support and are riddled with security issues as a result.

Brittany Day
Jul 13, 2020

Check your router now - it could be a huge Linux security risk

Did you know that your router could be the biggest security hole in your network?

Brittany Day
Jul 08, 2020

F5 patches vulnerability that received a CVSS 10 severity score

Have you heard that F5 has patched a severe security vulnerability in its BIG-IP product? The bug can be exploited by attackers over the Internet to gain access to the TMUI component, which runs on top of a Tomcat server on BIG-IP's Linux-based operating system.

Brittany Day
Jul 06, 2020

Nvidia squashes display driver code execution, information leak bugs

Nvidia has released a set of security updates to remove six vulnerabilities in the Nvidia GPU Display Driver impacting both Linux and Windows machines.

Brittany Day
Jun 26, 2020

The Latest VLC Media Player Update Comes with a Critical Security Fix

Have you heard that VideoLAN has released a new version of VLC Media Player to resolve a critical security vulnerability that could eventually allow for remote code execution?

Brittany Day
Jun 17, 2020

Plundering of crypto keys from ultrasecure SGX sends Intel scrambling again

For the past two years, Intel CPUs have been under siege by an unending series of attacks that make it possible for cybercriminals to pluck passwords, encryption keys, and other secrets out of silicon-resident memory. New security research reveals that Intel's speculative execution flaws go deeper and are even harder to fix than we initially thought.

Brittany Day
Jun 12, 2020

Security Vulnerabilities - Page 15

Chrome 131 Released: Emergency Security Update Fixes Over a Dozen Significant Vulns

Easily Exploitable 10-Year-Old needrestart Utility Flaws Allow Root Access

7-Zip Users Beware: Urgent Update Needed to Fix Code Execution Security Flaw