Posts
9
Comments
5
Joined
2 yr. ago
Firefox changes their TOS
"When you upload or input information through Firefox, you hereby grant us a nonexclusive, royalty-free, worldwide license to use that information to help you navigate, experience, and interact with online content as you indicate with your use of Firefox."
arstechnica.com Critical vulnerability affecting most Linux distros allows for bootkits
Buffer overflow in bootloader shim allows attackers to run code each time devices boot up.
Take note of the quote in the article...
OP/bug finder here with some clarifying information. It's a common misconception that this issue can only be abused if you use HTTP boot. That is not the case at all, otherwise it wouldn't be Critical. This bug can be abused locally (privileged malware can overwrite the EFI partition), from an adjacent network if PXE boot is enabled (w/ MiTM), or remotely if HTTP boot is used (w/ MiTM).
More details on these scenarios:
- A remote attacker with no privileges in a man-in-the-middle (MitM) position could leverage the issue against a victim machine that uses HTTP boot. No direct access to the victim machine is required.
- A remote attacker with privileges and code execution on the victim machine could leverage the issue to bypass Secure Boot, even if the victim does not already use HTTP boot (as long as firmware has HTTP support). How? Several ways:
- An attacker can edit the boot order variable to specify a controlled attacker server.
Plasma 6 Release Candidate 1 has landed.
cross-posted from: https://floss.social/users/kde/statuses/111732458987994100
Plasma 6 Release Candidate 1 has landed.
We are less than 50 days away from the final version of #Plasma6.
Along with Frameworks 6 and KDE Gear 24.02, the Megarelaease on the 28th of February will be one of the biggest and more complex upgrades in KDE's history.
One more RC will be released on the 31st of January and then it will be (hopefully) clear sailing until the final release.
Thanks for the reminder, somehow I missed adding the point to my todo list :/
Fresh curl tomorrow will patch 'worst' security flaw in ages | TheRegister
www.theregister.com Fresh curl tomorrow will patch 'worst' security flaw in ages
Updated: It’s bad, folks. Pair of CVEs incoming on October 11
"Curl 8.4.0 will hit at around 0600 UTC (0800 CEST, 0700 BST, 0200 EST, 2300 PDT) on October 11 and deal with CVE-2023-38545, which affects both libcurl and the curl tool, and CVE-2023-38546, which only affects libcurl...."
CVE-2023-4911: Looney Tunables - Local Privilege Escalation in the glibc’s ld.so | Qualys Security Blog
Has anyone tried the POC's for this on their systems? Just curious as to your success rate. I've been running 3 slightly difference POC's for the past 4 days and I'm still yet to drop to root on any of the 3 systems I'm trying on.
CVE-2023-4911: Looney Tunables - Local Privilege Escalation in the glibc’s ld.so | Qualys Security Blog
blog.qualys.com CVE-2023-4911: Local Privilege Escalation in glibc’s ld.so | Qualys
GLIBC’s ld.so vulnerability (CVE-2023-4911) poses a significant security risk. Read about the implications and actions to prevent exploitation.
arstechnica.com Critical vulnerabilities in Exim threaten over 250k email servers worldwide
Remote code execution requiring no authentication fixed. 2 other RCEs remain unpatched.
"Remote code execution requiring no authentication fixed. 2 other RCEs remain unpatched...."
forum.snapcraft.io Temporary suspension of automatic snap registration following security incident
On September 28, 2023, the Snap Store team was notified of a potential security incident. A number of snap users reported several recently published and potentially malicious snaps. As a consequence of these reports, the Snap Store team has immediately taken down these snaps, and they can no longer...
"On September 28, 2023, the Snap Store team was notified of a potential security incident. A number of snap users reported several recently published and potentially malicious snaps...."
CVE-2023-38408: REMOTE CODE EXECUTION IN OPENSSH'S FORWARDED SSH-AGENT
No prob, you're right though as soon as a member subscribes to another community, it should show up in the "All" list.