Security talks at EGI Conference
The upcoming EGI Conference, which will take place in Prague from 20th to 23rd of September 2022, will offer various security talks. On Wednesday David Crooks will give a talk on Collaborative Operational Security, David Kelsey on Building trust for research and...
EGI CSIRT contributions at EGI Conference
EGI Conference will take place in Prague, from 19th do 23rd of September 2022. Among other topics, there will be quite a few that cover security aspects of the e-infrastructures, from legal to technical. EGI CSIRT team will provide some updates on the security...
EGI CSIRT F2F meeting in Prague
In September, EGI CSIRT will meet in person in Prague. The main focus of the meeting will be the discussion on our future activities, collaboration and contributions to projects, as well as operational security matters.
EGI/BSUN summer school
EGI CSIRT will prepare a Security day on the EGI/BSUN summer school in Bucharest, from 5th to 9th of September 2022. We will cover the security best practices for e-infrastructures, including detection and prevention. Our lectures will cover security essentials,...
Privilege escalation vulnerabilities in VMWare
Vulnerabilities CVE-2021-22040 and CVE-2021-22041 have been reported for the following programs: VMware ESX 6.5, 6.7, 7.0VMware Workstation 16.x < v16.2.1VMware Fusion 12.x < v12.2.1 Updates are available that contain a fix for those vulnerabilities. Details can...
Linux kernel dirtypipe vulnerability – CVE-2022-0847
A flaw was found in the way the "flags" member of the new pipe buffer structure was lacking proper initialization in copy_page_to_iter_pipe and push_pipe functions in the Linux kernel and could thus contain stale values. An unprivileged local user could use this flaw...