EGI CSIRT security workshop at ISGC 2022
EGI CSIRT will hold a security workshop on containers at the International Symposium of Grid and Cloud 2022, a virtual conference that will be held from 21 to 25 March 2022. With the uptake of different virtualization technologies also in traditional data processing...
Access control to compute and storage infrastructure
EGI CSIRT has prepared a document which gathers the information on how to restrict access to compute and storage resources in the EGI infrastructure. Site administrators can have a look at this EGI website.
Local privilege escalation vulnerability in polkit
A privilege escalation vulnerability CVE-2021-4034 has been discovered on polkit's pkexec utility - a setuid tool designed to allow unprivileged users to run commands as privileged users according predefined policies. A temporary mitigation is to remove the setuid bit...
Heap buffer overflow vulnerability in Linux kernel RHEL 8
Heap buffer overflow vulnerability has been found in Linux kernel RHEL 8 and derivatives, CVE-2022-0185, in the legacy_parse_param function in the Filesystem Context functionality of the Linux kernel and the way it verifies the supplied parameters length which could...
xcache image vulnerability and image purge
A CRITICAL security flaw was detected in OSG XCache images published in DockerHub and OSG's Harbor which could compromise the integrity and confidentiality of data on other containers for all varieties of XCache and XRootD standalone. Details are available in the SVG...
TF-CSIRT and FIRST Regional Symposium 2022
The registration is open and the programme is available for the TF-CSIRT and FIRST Regional Symposium: 2-3 March 2022. Interesting lectures about the current computer security and threats, including analysing and hunting for recent log4j compromises and ransomware...
