by EGI CSIRT | Oct 12, 2021 | Advisories, News
High-risk vulnerability in Linux kernel’s Traffic Control networking system has been found that can lead to a use-after-free condition. You can mitigate this vulnerability by disabling unprivileged network namespaces. Details about this vulnerability can be...
by EGI CSIRT | Oct 6, 2021 | Advisories, News
A vulnerability has been reported which may allow unprivileged users to gain root access, via the crafting of a long path name in the file system. Qualys have announced that their exploit has been released, therefore EGI CSIRT considers this vulnerability as critical...
by EGI CSIRT | Oct 6, 2021 | Advisories, News
There has been a Linux kernel vulnerability reported, enabling an out-of bounds write in net/netfilter/x_tables.c and escalation of privileges, affecting RHEL 8 and derivates. An advisory has been made public and is available on the SVG advisory page.
by EGI CSIRT | Oct 4, 2021 | News
EGI CSIRT is going to present some interesting security topics in the next EGI Conference 2021, which will take place online from 18th do 22nd of October. On Tuesday, 19th of October at 12:00, Pinja Koskinen will make an Overview of incidents we are dealing with and...
by EGI CSIRT | Sep 7, 2021 | Advisories, News
A vulnerability in JupyterLab (CVE-2021-32797) and in Jupyter Notebook (CVE-2021-32798) have been reported and allow untrusted code execution. Sites providing those services should update to the latest version of JupyterLab and Jupyter Notebook. Details can be found...
by EGI CSIRT | Sep 7, 2021 | Advisories, News
Two vulnerabilities in HTCondor have been found, one of them may allow users to run code as another user or read the data accessible to that user’s running jobs, which is considered a HIGH risk for EGI infrastructure. Versions 8.8.15, 9.0.4, 9.1.2 contain fixes...
Recent Comments