Tux Machines
Posted by Roy Schestowitz on Jul 28, 2023
=> today's howtos | GCC 13.2 Released
=> ↺ Reproducible Builds (diffoscope): diffoscope 246 released
The diffoscope maintainers are pleased to announce the release of diffoscope version 246. This version includes the following changes: [...]
=> ↺ Multiple Security Issues Identified in Peloton Fitness Equipment
Internet-connected Peloton workout equipment is impacted by multiple security risks, such as having USB debugging enabled.
=> ↺ CardioComm Takes Systems Offline Following Cyberattack
Canadian medical software provider CardioComm has taken systems offline to contain a cyberattack.
=> ↺ X.Org DoS, Code Execution Vulns Fixed
Several significant out-of-bounds access vulnerabilities have been found in the X.Org X Server (CVE-2021-4008, CVE-2021-4009, and CVE-2021-4011). These flaws threaten data confidentiality and integrity, as well as system availability, and have received a National Vulnerability Database severity rating of ''High''.
=> ↺ Zenbleed Microcode Info Disclosure Vuln Fixed
It was discovered that under specific microarchitectural circumstances, a register in "Zen 2" CPUs might not be written to 0 correctly, potentially causing data from another process and/or thread to be stored in the YMM register (CVE-2023-20593, also known as Zenbleed).
=> ↺ Two New Vulnerabilities Could Affect 40% of Ubuntu Cloud Workloads
Researchers discovered two vulnerabilities in the Ubuntu OverlayFS module: CVE-2023-2640 and CVE-2023-32629 (together dubbed ‘GameOver(lay)’).
=> ↺ ShellCode Hidden with Steganography, (Fri, Jul 28th)
=> gemini.tuxmachines.org This content has been proxied by September (ba2dc).Proxy Information
text/gemini;lang=en-GB