Security Vulnerabilities - Page 16

Discover Security Vulnerabilities News

Linus Torvalds rejects 'beyond stupid' AWS-made Linux patch for Intel CPU Snoop attack

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

After much debate, Linus Torvalds has rejected a controversial patch to address potential leaks of secrets from a CPU's cores.

Brittany Day
Jun 04, 2020

Firefox fixes cryptographic data leakage in latest security update

Have you heard about the cryptographic data leakage in Firefox's latest security update? It has now been fixed. Learn how to check if you have the update - and be sure to install it immediately if you do not.

Brittany Day
Jun 04, 2020

New fuzzing tool finds 26 USB bugs in Linux, Windows, macOS, and FreeBSD

A new fuzzing tool, USBFuzz, has identified 18 USB bugs impacting Linux. Eleven have already been patched.

Brittany Day
May 28, 2020

Huawei denies involvement in buggy Linux kernel patch proposal

Huawei has denied having any official involvement in an insecure patch submitted to the Linux kernel project over the weekend, which introduced a "trivially exploitable" vulnerability. According to the tech giant, an employee submitted code as part of a personal project, not on behalf of the company.

Brittany Day
May 13, 2020

Almost Every Antivirus Software Program Can Be Exploited, Researchers Say

Security researchers have revealed that a vulnerability in almost all antivirus software platforms could have been exploited to disable anti-malware protection and turned into destructive tools.

Brittany Day
Apr 30, 2020

Google Confirms New Security Threat For 2 Billion Chrome Users

Do you use Google Chrome as your web browser? Google has warned of yet more security vulnerabilities in Chrome 81, which was only launched three weeks ago.

Brittany Day
Apr 29, 2020

IBM == Insecure Business Machines: No-auth remote root exec exploit in Data Risk Manager drops after Big Blue snubs bug report

IBM has admitted to making 'a process error, improper response' to a bug report that identified four vulnerabilities in its enterprise security software, and the tech giant plans to issue an advisory.

Brittany Day
Apr 22, 2020

Linux is secure - it is its users who are not

The rise in attacks on Linux in recent years is not due to problems with the Linux OS, but rather issues with individual accounts and poor administration. LinuxSecurity Founder Dave Wreski states: "Although it may be easy to blame the rise in attacks targeting Linux in recent years on security vulnerabilities in the operating system as a whole, this is simply not the truth. The majority of exploits on Linux systems can be attributed to misconfigured servers and poor administration."

Brittany Day
Apr 21, 2020

Google Issues Warning For 2 Billion Chrome Users

Are you a Google Chrome user? Google has issued a warning of a vulnerability in its Chrome browser across Windows, Mac and Linux - urging users to upgrade to the latest version of the browser (81.0.4044.113).

Brittany Day
Apr 20, 2020

Firefox Zero-Day Flaws Exploited in the Wild Get Patched

The Mozilla Foundation has patched two zero-day flaws in its browser that could allow for remote code execution.

Brittany Day
Apr 06, 2020

Google Squashes High-Severity Flaws in Chrome Browser

Do you use Google Chrome as your web browser? Google has patched high-security vulnerabilities in its Chrome browser, and is rolling out the newest Chrome browser version in the coming days.

Brittany Day
Apr 03, 2020

Linux 5.6 Ships With Broken Intel WiFi Driver After Network Security Fixes Go Awry

The Linux 5.6 kernel has been released - but you probably want to hold off on this release if you use the Intel "IWLWIFI" WiFi driver. Learn why in an informative Phoronix article.

Brittany Day
Mar 30, 2020

Enterprise Linux Red Hat Fixed 85% of Critical Flaws Within 7 Days: Report

The adoption of open source bylarge enterpriseshas already witnessed its power and dependencies. The best example can’t be better than open-source Linux which made recent headlines such asIBM buyingRed Hat for $34-Billion andMicrosoft shipsfull Linux kernel in Windows 10.

Brittany Day
Mar 16, 2020

Report: Open Source Vulnerabilities Rampant in Popular Projects

Open Source vulnerabilities rose by nearly 50 percent in 2019 over the previous year, based on a report released Thursday.

Brittany Day
Mar 13, 2020

17-Yr-Old RCE Flaw Can Hack Several Linux Systems

The US-CERT has issued a security advisory warning users of a 17-year-old critical Remote Code Execution (RCE) vulnerability that affects PPP (Point to Point Protocol Daemon) daemon software implemented in almost all Linux based operating systems.

Brittany Day
Mar 09, 2020

Researchers discover that Intel chips have an unfixable security flaw

The chips are vulnerable during boot-up, so they can't be patched with a firmware update.

Brittany Day
Mar 06, 2020

The Hidden Vulnerabilities of Open Source Software

A preliminary study released February 18, which we directed alongside the Linux Foundation, numerous troubling trends in open source security underscore the importance of understanding where open source is most used and could be vulnerable to attack.

Brittany Day
Feb 27, 2020

New Critical RCE Bug in OpenBSD SMTP Server Threatens Linux Distros

Server-side exploitation is possible when the attacker connects to the OpenSMTPD server and sends an email that creates a bounce. When OpenSMTPD connects back to deliver the bounce, the attacker can take advantage of the client-side vulnerability.

Brittany Day
Feb 27, 2020

Millions Of Windows And Linux Systems Are Vulnerable To This ‘Hidden’ Cyber Attack

What if I told you that there is an exploitable security risk hiding in plain sight that could result in the compromise of your Linux or Windows machine? What if I told you that the attack vector has been exploited since 2015 and that both vendors and attackers are well aware of it?

Brittany Day
Feb 18, 2020

Patches to make Sudo utility less open to abuse

A flaw that gave out root privileges gets patched. It is a utility that, saidDan Goodin in Ars Technica, can be found in "dozens of Unix-like operating systems."

Brittany Day
Feb 06, 2020

Security Vulnerabilities - Page 16

Chrome 131 Released: Emergency Security Update Fixes Over a Dozen Significant Vulns

Easily Exploitable 10-Year-Old needrestart Utility Flaws Allow Root Access

7-Zip Users Beware: Urgent Update Needed to Fix Code Execution Security Flaw