Aggregator

CVE-2022-41849 | Linux Kernel up to 5.19.12 USB Device smscufx.c ufx_ops_open use after free (Nessus ID 236642)

Vuldb Updates
2 months 2 weeks ago
A vulnerability was found in Linux Kernel up to 5.19.12. It has been classified as critical. Affected is the function ufx_ops_open of the file drivers/video/fbdev/smscufx.c of the component USB Device Handler. The manipulation leads to use after free. This vulnerability is traded as CVE-2022-41849. It is possible to launch the attack on the physical device. There is no exploit available.
vuldb.com

CVE-2022-41218 | Linux Kernel up to 5.19.10 dmxdev.c dvb_demux_open/dvb_dmxdev_release use after free (Nessus ID 236642)

Vuldb Updates
2 months 2 weeks ago
A vulnerability has been found in Linux Kernel up to 5.19.10 and classified as critical. This vulnerability affects the function dvb_demux_open/dvb_dmxdev_release of the file drivers/media/dvb-core/dmxdev.c. The manipulation leads to use after free. This vulnerability was named CVE-2022-41218. The attack can be initiated remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.
vuldb.com

Tornado Cash and the Axie Infinity Heist

网安志异
2 months 2 weeks ago
关于数字资产的价值与所有权以及加密货币领域的重大网络盗窃案。采访者与嘉宾探讨了数字资产(如音频书、游戏内物品和域名)在传统意义上缺乏所有权的问题,并指出加密货币通过去中心化的区块链实现了真正的数字所有权。在此背景下,他们深入讲述了针对Axie Infinity游戏的大规模加密货币盗窃案,涉及价值数亿美元的资金,并讨论了据称与朝鲜有关联的盗窃者如何利用混币器Tornado Cash进行洗钱。最后,文本探讨了美国政府对Tornado Cash实施制裁及其引发的关于隐私、自由言论与监管的复杂法律和道德争议,以及开发者因此面临的法律困境。

Procolored 官方打印机驱动被发现含有恶意程序

Solidot
2 months 2 weeks ago
以廉价织物印花机(fabric printing)知名的深圳公司 Procolored 被发现官方驱动含有恶意程序。YouTube 主播 Cameron Coward 在为一台售价 7,000 美元的 Procolored UV 打印机安装配套软件和驱动时,其杀毒软件对 Floxif USB 蠕虫病毒发出了警告。安全公司 G Data 的研究人员随后展开的调查发现,恶意程序在 Procolored 官方软件包中至少存在了 6 个月时间。而 Procolored 在收到警告后认为是杀毒软件误报。调查发现,Procolored 至少有六个型号的打印机(F8、F13​​、F13 Pro、V6、V11 Pro 和 VF13 Pro)及其托管在 Mega 文件共享平台上的配套软件含有恶意软件。分析发现 39 个文件感染了恶意程序 XRedRAT 以及窃取加密货币的 SnipVex,其中 SnipVex 使用的钱包地址有约 9,308 个 BTC,价值近 100 万美元。Procolored 承认它可能使用了感染 Floxif 的 U 盘将文件上传到 Mega.nz,相关软件已经下架,并启动了内部调查。

AI hallucinations and their risk to cybersecurity operations

Help Net Security
2 months 2 weeks ago

AI systems can sometimes produce outputs that are incorrect or misleading, a phenomenon known as hallucinations. These errors can range from minor inaccuracies to misrepresentations that can misguide decision-making processes. Real world implications “If a company’s AI agent leverages outdated or inaccurate data, AI hallucinations might fabricate non-existent vulnerabilities or misinterpret threat intelligence, leading to unnecessary alerts or overlooked risks. Such errors can divert resources from genuine threats, creating new vulnerabilities and wasting already-constrained SecOps … More →

The post AI hallucinations and their risk to cybersecurity operations appeared first on Help Net Security.

Mirko Zorz

Why EU encryption policy needs technical and civil society input

Help Net Security
2 months 2 weeks ago

In this Help Net Security interview, Bart Preneel, Full Professor at University of Leuven, unpacks the European Commission’s encryption agenda, urging a balanced, technically informed approach to lawful access that safeguards privacy, security, and fundamental rights across the EU. Given the European Commission’s aim to enable lawful access to encrypted data, how can we reconcile this with the technical consensus that introducing such access points inherently weakens encryption? While “lawful access to encrypted data based … More →

The post Why EU encryption policy needs technical and civil society input appeared first on Help Net Security.

Mirko Zorz

CVE-2022-3643 | Xen on Linux NIC Interface denial of service (DLA 3244-1 / Nessus ID 236642)

Vuldb Updates
2 months 2 weeks ago
A vulnerability was found in Xen on Linux. It has been classified as problematic. Affected is an unknown function of the component NIC Interface Handler. The manipulation leads to denial of service. This vulnerability is traded as CVE-2022-3643. It is possible to launch the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.
vuldb.com

CVE-2022-3707 | Linux Kernel up to 6.1-rc2 Intel GVT-g Graphics Driver intel_gvt_dma_map_guest_page double free (Nessus ID 236642)

Vuldb Updates
2 months 2 weeks ago
A vulnerability has been found in Linux Kernel up to 6.1-rc2 and classified as critical. This vulnerability affects the function intel_gvt_dma_map_guest_page of the component Intel GVT-g Graphics Driver. The manipulation leads to double free. This vulnerability was named CVE-2022-3707. Attacking locally is a requirement. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2022-4095 | Linux Kernel up to 5.19.1 rtl8712_cmd.c cmd_hdl_filter use after free (Nessus ID 236642)

Vuldb Updates
2 months 2 weeks ago
A vulnerability was found in Linux Kernel up to 5.19.1. It has been declared as problematic. Affected by this vulnerability is the function cmd_hdl_filter of the file drivers/staging/rtl8712/rtl8712_cmd.c. The manipulation leads to use after free. This vulnerability is known as CVE-2022-4095. The attack needs to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2022-3523 | Linux Kernel Driver mm/memory.c use after free (Nessus ID 236642)

Vuldb Updates
2 months 2 weeks ago
A vulnerability was found in Linux Kernel. It has been classified as problematic. Affected is an unknown function of the file mm/memory.c of the component Driver Handler. The manipulation leads to use after free. This vulnerability is traded as CVE-2022-3523. It is possible to launch the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.
vuldb.com

CVE-2020-25654 | Pacemaker up to 1.1.23/2.0.5-rc1 ACL access control (Nessus ID 236643)

Vuldb Updates
2 months 2 weeks ago
A vulnerability classified as critical was found in Pacemaker up to 1.1.23/2.0.5-rc1. This vulnerability affects unknown code of the component ACL Handler. The manipulation leads to improper access controls. This vulnerability was named CVE-2020-25654. Local access is required to approach this attack. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2022-1184 | Linux Kernel EXT4 Filesystem fs/ext4/namei.c dx_insert_block use after free (Nessus ID 236642)

Vuldb Updates
2 months 2 weeks ago
A vulnerability was found in Linux Kernel. It has been classified as critical. Affected is the function dx_insert_block of the file fs/ext4/namei.c of the component EXT4 Filesystem. The manipulation leads to use after free. This vulnerability is traded as CVE-2022-1184. It is possible to launch the attack remotely. There is no exploit available.
vuldb.com

CVE-2022-2196 | Linux Kernel KVM insecure default initialization of resource (Nessus ID 236642)

Vuldb Updates
2 months 2 weeks ago
A vulnerability was found in Linux Kernel. It has been rated as critical. Affected by this issue is some unknown functionality of the component KVM. The manipulation leads to insecure default initialization of resource. This vulnerability is handled as CVE-2022-2196. The attack may be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.
vuldb.com

CVE-2021-20179 | Valid pki-core Key authorization (Nessus ID 236644)

Vuldb Updates
2 months 2 weeks ago
A vulnerability, which was classified as critical, was found in Valid pki-core. This affects an unknown part of the component Key Handler. The manipulation leads to incorrect authorization. This vulnerability is uniquely identified as CVE-2021-20179. The attack needs to be approached within the local network. There is no exploit available. It is recommended to apply a patch to fix this issue.
vuldb.com

Managed ad