Happy Friday fellow Linux geeks! This week, important updates have been issued for rsync, the Linux kernel for Amazon Web Services (AWS) and PostgreSQL. Read on to learn about these vulnerabilities and how to secure your system against them.
Have a question about or comment on one of the vulnerabilities highlighted in today's newsletter? Let's discuss!
Yours in Open Source,
rsyncThe DiscoveryIt was discovered that zlib incorrectly handled memory when performing certain inflate operations (CVE-2022-37434). |
Linux Kernel (AWS)The DiscoverySeveral security issues were found in the Linux kernel for Amazon Web Services (AWS) systems (CVE-2022-26365, CVE-2022-33740 and CVE-2022-33741).
The ImpactA local attacker could use these flaws to expose sensitive information or cause a denial of service (DoS). The FixAn important update for the Linux Kernel mitigates these bugs. We recommend that you update as soon as possible to secure your sensitive information and protect against attacks and compromise. Your Related Advisories:Register to Customize Your Advisories |
PostgreSQLThe DiscoveryIt was discovered that PostgreSQL could be made to run programs when creating or updating extensions (CVE-2022-2625). The ImpactAn attacker could possibly use this issue to execute arbitrary code when extensions are created or updated. |
