Security Vulnerabilities

Discover Security Vulnerabilities News

Check your router now - it could be a huge Linux security risk

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Did you know that your router could be the biggest security hole in your network?

Brittany Day
Jul 08, 2020

F5 patches vulnerability that received a CVSS 10 severity score

Have you heard that F5 has patched a severe security vulnerability in its BIG-IP product? The bug can be exploited by attackers over the Internet to gain access to the TMUI component, which runs on top of a Tomcat server on BIG-IP's Linux-based operating system.

Brittany Day
Jul 06, 2020

Nvidia squashes display driver code execution, information leak bugs

Nvidia has released a set of security updates to remove six vulnerabilities in the Nvidia GPU Display Driver impacting both Linux and Windows machines.

Brittany Day
Jun 26, 2020

The Latest VLC Media Player Update Comes with a Critical Security Fix

Have you heard that VideoLAN has released a new version of VLC Media Player to resolve a critical security vulnerability that could eventually allow for remote code execution?

Brittany Day
Jun 17, 2020

Plundering of crypto keys from ultrasecure SGX sends Intel scrambling again

For the past two years, Intel CPUs have been under siege by an unending series of attacks that make it possible for cybercriminals to pluck passwords, encryption keys, and other secrets out of silicon-resident memory. New security research reveals that Intel's speculative execution flaws go deeper and are even harder to fix than we initially thought.

Brittany Day
Jun 12, 2020

20.Lock AbstractDigital Circular Esm H200

Linus Torvalds rejects 'beyond stupid' AWS-made Linux patch for Intel CPU Snoop attack

After much debate, Linus Torvalds has rejected a controversial patch to address potential leaks of secrets from a CPU's cores.

Brittany Day
Jun 04, 2020

Firefox fixes cryptographic data leakage in latest security update

Have you heard about the cryptographic data leakage in Firefox's latest security update? It has now been fixed. Learn how to check if you have the update - and be sure to install it immediately if you do not.

Brittany Day
Jun 04, 2020

New fuzzing tool finds 26 USB bugs in Linux, Windows, macOS, and FreeBSD

A new fuzzing tool, USBFuzz, has identified 18 USB bugs impacting Linux. Eleven have already been patched.

Brittany Day
May 28, 2020

Huawei denies involvement in buggy Linux kernel patch proposal

Huawei has denied having any official involvement in an insecure patch submitted to the Linux kernel project over the weekend, which introduced a "trivially exploitable" vulnerability. According to the tech giant, an employee submitted code as part of a personal project, not on behalf of the company.

Brittany Day
May 13, 2020

Almost Every Antivirus Software Program Can Be Exploited, Researchers Say

Security researchers have revealed that a vulnerability in almost all antivirus software platforms could have been exploited to disable anti-malware protection and turned into destructive tools.

Brittany Day
Apr 30, 2020

Google Confirms New Security Threat For 2 Billion Chrome Users

Do you use Google Chrome as your web browser? Google has warned of yet more security vulnerabilities in Chrome 81, which was only launched three weeks ago.

Brittany Day
Apr 29, 2020

IBM == Insecure Business Machines: No-auth remote root exec exploit in Data Risk Manager drops after Big Blue snubs bug report

IBM has admitted to making 'a process error, improper response' to a bug report that identified four vulnerabilities in its enterprise security software, and the tech giant plans to issue an advisory.

Brittany Day
Apr 22, 2020

Cce457a6db60bc8d12cf9b5c6db9bcd8 L Esm H200

Linux is secure - it is its users who are not

The rise in attacks on Linux in recent years is not due to problems with the Linux OS, but rather issues with individual accounts and poor administration. LinuxSecurity Founder Dave Wreski states: "Although it may be easy to blame the rise in attacks targeting Linux in recent years on security vulnerabilities in the operating system as a whole, this is simply not the truth. The majority of exploits on Linux systems can be attributed to misconfigured servers and poor administration."

Brittany Day
Apr 21, 2020

Google Issues Warning For 2 Billion Chrome Users

Are you a Google Chrome user? Google has issued a warning of a vulnerability in its Chrome browser across Windows, Mac and Linux - urging users to upgrade to the latest version of the browser (81.0.4044.113).

Brittany Day
Apr 20, 2020

Firefox Zero-Day Flaws Exploited in the Wild Get Patched

The Mozilla Foundation has patched two zero-day flaws in its browser that could allow for remote code execution.

Brittany Day
Apr 06, 2020

Google Squashes High-Severity Flaws in Chrome Browser

Do you use Google Chrome as your web browser? Google has patched high-security vulnerabilities in its Chrome browser, and is rolling out the newest Chrome browser version in the coming days.

Brittany Day
Apr 03, 2020

Linux 5.6 Ships With Broken Intel WiFi Driver After Network Security Fixes Go Awry

The Linux 5.6 kernel has been released - but you probably want to hold off on this release if you use the Intel "IWLWIFI" WiFi driver. Learn why in an informative Phoronix article.

Brittany Day
Mar 30, 2020

Enterprise Linux Red Hat Fixes 85 Of Critical Flaws Within A Week Report 640x367 Esm H200

Enterprise Linux Red Hat Fixed 85% of Critical Flaws Within 7 Days: Report

The adoption of open source bylarge enterpriseshas already witnessed its power and dependencies. The best example can’t be better than open-source Linux which made recent headlines such asIBM buyingRed Hat for $34-Billion andMicrosoft shipsfull Linux kernel in Windows 10.

Brittany Day
Mar 16, 2020

Xl 2020 Open Source Vulnerability 1 Esm H200

Report: Open Source Vulnerabilities Rampant in Popular Projects

Open Source vulnerabilities rose by nearly 50 percent in 2019 over the previous year, based on a report released Thursday.

Brittany Day
Mar 13, 2020

17-Yr-Old RCE Flaw Can Hack Several Linux Systems

The US-CERT has issued a security advisory warning users of a 17-year-old critical Remote Code Execution (RCE) vulnerability that affects PPP (Point to Point Protocol Daemon) daemon software implemented in almost all Linux based operating systems.

Brittany Day
Mar 09, 2020

Thunderbird, Firefox DoS, Info Disclosure Vulns Fixed in Ubuntu and Debian

PostgreSQL Security Vulns Allow for XSS, MFA Bypass

Multiple Apache HTTP Server Flaws Fixed in Ubuntu