Aggregator

CVE-2022-49352 | Linux Kernel up to 5.4.197/5.10.120/5.15.45/5.17.13/5.18.2 fs/ext4/file.c ext4_setattr allocation of resources (EUVD-2022-54876 / Nessus ID 238226)

Vuldb Updates
3 months 3 weeks ago
A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 5.4.197/5.10.120/5.15.45/5.17.13/5.18.2. This impacts the function ext4_setattr of the file fs/ext4/file.c. This manipulation causes allocation of resources. The identification of this vulnerability is CVE-2022-49352. The attack needs to be done within the local network. There is no exploit available. It is advisable to upgrade the affected component.
vuldb.com

CVE-2022-49308 | Linux Kernel up to 5.18.3 extcon state_show state issue (Nessus ID 234545)

Vuldb Updates
3 months 3 weeks ago
A vulnerability marked as problematic has been reported in Linux Kernel up to 5.18.3. The impacted element is the function state_show of the component extcon. Performing manipulation results in state issue. This vulnerability was named CVE-2022-49308. The attack needs to be approached within the local network. There is no available exploit. It is suggested to upgrade the affected component.
vuldb.com

The Unkillable Threat: How Attackers Turned Blockchain Into Bulletproof Malware Infrastructure

Security Boulevard
3 months 3 weeks ago

The blockchain was supposed to revolutionize trust. Instead, it’s revolutionizing cybercrime. Every foundational principle that makes blockchain technology secure—decentralization, immutability, global accessibility—has been systematically inverted by sophisticated threat actors into the most resilient malware delivery system ever created. Welcome to the era of EtherHiding, where malicious code lives forever on public ledgers, protected by the..

The post The Unkillable Threat: How Attackers Turned Blockchain Into Bulletproof Malware Infrastructure appeared first on Security Boulevard.

Jack Poller

Akira

Dark Feed IO
3 months 3 weeks ago

You must login to view this content

cohenido

CVE-2022-49243 | Linux Kernel up to 5.17.1 of_node_put reference count

Vuldb Updates
3 months 3 weeks ago
A vulnerability categorized as critical has been discovered in Linux Kernel up to 5.17.1. Impacted is the function of_node_put. The manipulation results in improper update of reference count. This vulnerability is reported as CVE-2022-49243. The attacker must have access to the local network to execute the attack. No exploit exists. It is advisable to upgrade the affected component.
vuldb.com

CVE-2022-49260 | Linux Kernel up to 5.15.32/5.16.18/5.17.1 privilege escalation

Vuldb Updates
3 months 3 weeks ago
A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 5.15.32/5.16.18/5.17.1. The impacted element is an unknown function. The manipulation leads to privilege escalation. This vulnerability is uniquely identified as CVE-2022-49260. The attack can only be initiated within the local network. No exploit exists. It is advisable to upgrade the affected component.
vuldb.com

CVE-2022-49297 | Linux Kernel up to 5.18.3 hung_task_timeout_secs nbd_xmit_timeout denial of service (Nessus ID 238226)

Vuldb Updates
3 months 3 weeks ago
A vulnerability identified as critical has been detected in Linux Kernel up to 5.18.3. This issue affects the function nbd_xmit_timeout of the file /proc/sys/kernel/hung_task_timeout_secs. This manipulation causes denial of service. This vulnerability is registered as CVE-2022-49297. The attack requires access to the local network. No exploit is available. You should upgrade the affected component.
vuldb.com

CVE-2022-49255 | Linux Kernel up to 5.4.188/5.10.109/5.15.32/5.16.18/5.17.1 drop_caches buffer overflow

Vuldb Updates
3 months 3 weeks ago
A vulnerability labeled as critical has been found in Linux Kernel up to 5.4.188/5.10.109/5.15.32/5.16.18/5.17.1. Impacted is an unknown function of the component drop_caches. Such manipulation leads to buffer overflow. This vulnerability is documented as CVE-2022-49255. The attack requires being on the local network. There is not any exploit available. The affected component should be upgraded.
vuldb.com

CVE-2022-49281 | Linux Kernel up to 5.15.32/5.16.18/5.17.1 umount infinite loop

Vuldb Updates
3 months 3 weeks ago
A vulnerability has been found in Linux Kernel up to 5.15.32/5.16.18/5.17.1 and classified as problematic. Affected by this issue is some unknown functionality of the component umount. Performing manipulation results in infinite loop. This vulnerability was named CVE-2022-49281. The attack needs to be approached within the local network. There is no available exploit. The affected component should be upgraded.
vuldb.com

CVE-2022-49265 | Linux Kernel up to 5.15.32/5.16.18/5.17.1 genpd_debug_remove stack-based overflow

Vuldb Updates
3 months 3 weeks ago
A vulnerability was found in Linux Kernel up to 5.15.32/5.16.18/5.17.1 and classified as critical. Impacted is the function genpd_debug_remove. The manipulation results in stack-based buffer overflow. This vulnerability was named CVE-2022-49265. The attack needs to be approached within the local network. There is no available exploit. It is suggested to upgrade the affected component.
vuldb.com

Managed ad