by EGI CSIRT | Oct 4, 2021 | News
EGI CSIRT is going to present some interesting security topics in the next EGI Conference 2021, which will take place online from 18th do 22nd of October. On Tuesday, 19th of October at 12:00, Pinja Koskinen will make an Overview of incidents we are dealing with and...
by EGI CSIRT | Sep 7, 2021 | Advisories, News
A vulnerability in JupyterLab (CVE-2021-32797) and in Jupyter Notebook (CVE-2021-32798) have been reported and allow untrusted code execution. Sites providing those services should update to the latest version of JupyterLab and Jupyter Notebook. Details can be found...
by EGI CSIRT | Sep 7, 2021 | Advisories, News
Two vulnerabilities in HTCondor have been found, one of them may allow users to run code as another user or read the data accessible to that user’s running jobs, which is considered a HIGH risk for EGI infrastructure. Versions 8.8.15, 9.0.4, 9.1.2 contain fixes...
by EGI CSIRT | Jul 14, 2021 | News
From 6th to 9th of July an EGI CSIRT virtual F2F meeting took place. The focus of the meeting was on future EGI CSIRT activities, such as security monitoring, vulnerability and incident handling, training, and security policymaking. The team will prepare a new...
by EGI CSIRT | Jun 16, 2021 | News
DHCP vulnerability (CVE-2021-25217) has been announced, rated 8.8 CVSS v3 Base Score by Redhat. Due to discrepancy between the code that handles encapsulated option information in leases transmitted and the code with reads lease information after it has been written...
by EGI CSIRT | Jun 8, 2021 | Advisories, News
A serious vulnerability has been found in Apache Struts on which VOMS-Admin is dependent. The exploit of this vulnerability could cause remote code execution. Apache Struts version 2.5.26 fixes this issue. Sites running VOMS-Admin should upgrade to voms-admin-server...
Recent Comments