Security Pop Quiz! q66.mp3

News

Packet Storm Security

Security Affairs Looking Glass Cyber securingtomorrow.mcafee.com
    Quick Heal Threat Post Naked Security ESET CIS Malware Patrol SecList
    • Sunburst backdoor – code overlaps with Kazuar
      While looking at the Sunburst backdoor, we discovered several features that overlap with a previously identified backdoor known as Kazuar. Our observations shows that Kazuar was used together with Turla tools during multiple breaches in past years.
    MySonicWall

    Critical Infrastructure

    Case Studies

    Tools

    Exploits

    Last 20 Website Defacements - Zone-h

    Press Play to hear the answer!

    Advisories

    • Gentoo Linux Security Advisory 202101-33 Wed, 27 Jan 2021 14:13:14 GMT
      Gentoo Linux Security Advisory 202101-33 - Multiple vulnerabilities have been found in sudo, the worst of which could result in privilege escalation. Versions less than 1.9.5_p2 are affected.
    • Gentoo Linux Security Advisory 202101-32 Wed, 27 Jan 2021 14:12:38 GMT
      Gentoo Linux Security Advisory 202101-32 - A weakness was discovered in Mutt and NeoMutt's TLS handshake handling. Versions less than 2.0.2 are affected.
    • Gentoo Linux Security Advisory 202101-31 Wed, 27 Jan 2021 14:12:31 GMT
      Gentoo Linux Security Advisory 202101-31 - A vulnerability in Cacti could lead to remote code execution. Versions less than 1.2.16-r1 are affected.
    • Apple Security Advisory 2021-01-26-4 Wed, 27 Jan 2021 14:11:19 GMT
      Apple Security Advisory 2021-01-26-4 - Xcode 12.4 addresses a path handling issue.
    • Apple Security Advisory 2021-01-26-3 Wed, 27 Jan 2021 14:09:51 GMT
      Apple Security Advisory 2021-01-26-3 - watchOS 7.3 addresses a race condition vulnerability.
    • Apple Security Advisory 2021-01-26-2 Wed, 27 Jan 2021 14:08:57 GMT
      Apple Security Advisory 2021-01-26-2 - tvOS 14.4 addresses a race condition vulnerability.
    • Apple Security Advisory 2021-01-26-1 Wed, 27 Jan 2021 14:07:26 GMT
      Apple Security Advisory 2021-01-26-1 - iOS 14.4 and iPadOS 14.4 address race condition and arbitrary code execution vulnerabilities.
    • Red Hat Security Advisory 2021-0223-01 Wed, 27 Jan 2021 14:07:05 GMT
      Red Hat Security Advisory 2021-0223-01 - The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root. Issues addressed include a buffer overflow vulnerability.
    • Red Hat Security Advisory 2021-0222-01 Wed, 27 Jan 2021 14:06:54 GMT
      Red Hat Security Advisory 2021-0222-01 - The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root. Issues addressed include a buffer overflow vulnerability.
    • Red Hat Security Advisory 2021-0221-01 Wed, 27 Jan 2021 14:06:46 GMT
      Red Hat Security Advisory 2021-0221-01 - The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root. Issues addressed include a buffer overflow vulnerability.
    • Red Hat Security Advisory 2021-0224-01 Wed, 27 Jan 2021 14:06:37 GMT
      Red Hat Security Advisory 2021-0224-01 - The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root. Issues addressed include a buffer overflow vulnerability.
    • Red Hat Security Advisory 2021-0227-01 Wed, 27 Jan 2021 14:06:28 GMT
      Red Hat Security Advisory 2021-0227-01 - The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root. Issues addressed include a buffer overflow vulnerability.
    • Red Hat Security Advisory 2021-0219-01 Wed, 27 Jan 2021 14:06:20 GMT
      Red Hat Security Advisory 2021-0219-01 - The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root. Issues addressed include a buffer overflow vulnerability.
    • Red Hat Security Advisory 2021-0225-01 Wed, 27 Jan 2021 14:06:12 GMT
      Red Hat Security Advisory 2021-0225-01 - The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root. Issues addressed include a buffer overflow vulnerability.
    • Red Hat Security Advisory 2021-0218-01 Wed, 27 Jan 2021 14:06:02 GMT
      Red Hat Security Advisory 2021-0218-01 - The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root. Issues addressed include a buffer overflow vulnerability.
    • Red Hat Security Advisory 2021-0220-01 Wed, 27 Jan 2021 14:05:54 GMT
      Red Hat Security Advisory 2021-0220-01 - The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root. Issues addressed include a buffer overflow vulnerability.
    • Red Hat Security Advisory 2021-0226-01 Wed, 27 Jan 2021 14:05:42 GMT
      Red Hat Security Advisory 2021-0226-01 - The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root. Issues addressed include a buffer overflow vulnerability.
    • Ubuntu Security Notice USN-4705-1 Wed, 27 Jan 2021 14:05:32 GMT
      Ubuntu Security Notice 4705-1 - It was discovered that Sudo incorrectly handled memory when parsing command lines. A local attacker could possibly use this issue to obtain unintended access to the administrator account. It was discovered that the Sudo sudoedit utility incorrectly handled checking directory permissions. A local attacker could possibly use this issue to bypass file permissions and determine if a directory exists or not. Various other issues were also addressed.
    • Ubuntu Security Notice USN-4704-1 Wed, 27 Jan 2021 14:05:24 GMT
      Ubuntu Security Notice 4704-1 - It was discovered that libsndfile incorrectly handled certain malformed files. A remote attacker could use this issue to cause libsndfile to crash, resulting in a denial of service, or possibly execute arbitrary code. It was discovered that libsndfile incorrectly handled certain malformed files. A remote attacker could use this issue to cause libsndfile to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 14.04 ESM. Various other issues were also addressed.
    • Red Hat Security Advisory 2021-0258-01 Tue, 26 Jan 2021 14:27:47 GMT
      Red Hat Security Advisory 2021-0258-01 - The cryptsetup packages provide a utility for setting up disk encryption using the dm-crypt kernel module. Issues addressed include an out of bounds write vulnerability.
    • Gentoo Linux Security Advisory 202101-30 Tue, 26 Jan 2021 14:27:32 GMT
      Gentoo Linux Security Advisory 202101-30 - Multiple vulnerabilities have been found in Qt WebEngine, the worst of which could result in the arbitrary execution of code. Versions less than 5.15.2 are affected.
    • Gentoo Linux Security Advisory 202101-29 Tue, 26 Jan 2021 14:26:16 GMT
      Gentoo Linux Security Advisory 202101-29 - Multiple vulnerabilities have been found in OpenJPEG, the worst of which could result in the arbitrary execution of code. Versions less than *:1 and 2.4.0:2 are affected.
    • Red Hat Security Advisory 2021-0266-01 Tue, 26 Jan 2021 14:25:46 GMT
      Red Hat Security Advisory 2021-0266-01 - The gnome-settings-daemon packages contain a daemon to share settings from GNOME to other applications. It also handles global key bindings, as well as a number of desktop-wide settings.
    • Red Hat Security Advisory 2021-0257-01 Tue, 26 Jan 2021 14:23:13 GMT
      Red Hat Security Advisory 2021-0257-01 - The net-snmp packages provide various libraries and tools for the Simple Network Management Protocol, including an SNMP library, an extensible agent, tools for requesting or setting information from SNMP agents, tools for generating and handling SNMP traps, a version of the netstat command which uses SNMP, and a Tk/Perl Management Information Base browser.
    • Gentoo Linux Security Advisory 202101-28 Tue, 26 Jan 2021 14:22:53 GMT
      Gentoo Linux Security Advisory 202101-28 - Multiple vulnerabilities have been found in ncurses, the worst of which could result in a Denial of Service condition. Versions less than 6.2 are affected.