Low: binutils

Issue Overview: An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.36. It is a stack-overflow issue in demangletype in rust-demangle.c. CVE-2021-32256 Affected Packages: binutils Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ sectio...

ASB-A-290909089

In modifyfornextstage of fdt.rs, there is a possible way to render KASLR ineffective due to improperly used crypto. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

Windiff - Web-based Tool That Allows Comparing Symbol, Type And Syscall Information Of Microsoft Windows Binaries Across Different Versions Of The OS

WinDiff is an open-source web-based tool that allows browsing and comparing symbol, type and syscall information of Microsoft Windows binaries across different versions of the operating system. The binary database is automatically updated to include information from the latest Windows updates...

Hamas-Linked Group Revives SysJoker Malware, Leverages OneDrive

By Waqas Hamas launches a new variant of Rust-based, multi-platform backdoor sysJoker against targets in Israel. This is a post from HackRead.com Read the original post: Hamas-Linked Group Revives SysJoker Malware, Leverages OneDrive...

Marvin Attack: potential key recovery through timing sidechannels

Impact Due to a non-constant-time implementation, information about the private key is leaked through timing information which is observable over the network. An attacker may be able to use that information to recover the key. Patches No patch is yet available, however work is underway to migrate...

BiliupApi (>=0.1.0 <=0.1.7), BrandoCulqi (=1.0.1) +338 more potentially affected by CVE-2023-49092 via rsa (>=0.1.2 <=0.8.2)

rsa CARGO version =0.1.2, =0.1.0, =1.0.0, =1.0.1, =0.0.1, =0.12.0, =0.5.0, =0.2.0, =0.1.0, =1.0.1, =0.1.0, =0.3.11, =0.3.21 and more Source cves: CVE-2023-49092 Source advisory: OSV:GHSA-C38W-74PG-36HR...

Marvin Attack: potential key recovery through timing sidechannels

The Marvin Attack is a timing sidechannel vulnerability which allows performing RSA decryption and signing operations as an attacker with the ability to observe only the time of the decryption operation performed withthe private key. A recent survey of RSA implementations found that the Rust rsa...

GHSA-4GRX-2X9W-596C Marvin Attack: potential key recovery through timing sidechannels

The Marvin Attack is a timing sidechannel vulnerability which allows performing RSA decryption and signing operations as an attacker with the ability to observe only the time of the decryption operation performed withthe private key. A recent survey of RSA implementations found that the Rust rsa...

CVE-2023-49092

RustCrypto/RSA is a portable RSA implementation in pure Rust. Due to a non-constant-time implementation, information about the private key is leaked through timing information which is observable over the network. An attacker may be able to use that information to recover the key. There is...

CVE-2023-49092

The CVE-2023-49092 entry concerns RustCrypto/RSA, a pure Rust portable RSA implementation. The root cause is a non-constant-time implementation that leaks information about the private key through timing observations over the network. Practical impact is key recovery by an attacker who can observ...

Rust Security Vulnerabilities

Rust is a general-purpose, compiled programming language from the Mozilla Foundation in the United States. A security vulnerability exists in Rust RustCrypto RSA, which stems from the disclosure of timing information where information about private keys can be observed over the network...

Hamas-Linked Cyberattacks Using Rust-Powered SysJoker Backdoor Against Israel

Cybersecurity researchers have shed light on a Rust version of a cross-platform backdoor called SysJoker, which is assessed to have been used by a Hamas-affiliated threat actor to target Israel amid the ongoing war in the region. "Among the most prominent changes is the shift to Rust language,...

bitcoin-harness (=0.1.0), bitcoin_rpc_client (>=0.5.0 <=0.6.1) +81 more potentially affected by unknown CVE via openssl (>=0.10.22 <=0.10.57)

openssl CARGO version =0.10.22, =0.5.0, =0.2.0, =0.0.0, =0.0.1, =0.3.3, =0.6.25, =0.1.0-alpha.0, =0.1.24, =0.37.0, =0.4.0, =0.37.0, =0.37.0, =0.38.0 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2023-0072...

BiliupApi (>=0.1.0 <=0.1.7), BrandoCulqi (=1.0.1) +338 more potentially affected by CVE-2023-49092 via rsa (>=0.1.2 <=0.8.2)

rsa CARGO version =0.1.2, =0.1.0, =1.0.0, =1.0.1, =0.0.1, =0.12.0, =0.5.0, =0.2.0, =0.1.0, =1.0.1, =0.1.0, =0.3.11, =0.3.21 and more Source cves: CVE-2023-49092 Source advisory: OSV:RUSTSEC-2023-0071...

Mustang Panda Hackers Targets Philippines Government Amid South China Sea Tensions

The China-linked Mustang Panda actor has been linked to a cyber attack targeting a Philippines government entity amid rising tensions between the two countries over the disputed South China Sea. Palo Alto Networks Unit 42 attributed the adversarial collective to three campaigns in August 2023,...

RUSTSEC-2023-0105 `windowsservice` was removed from crates.io for malicious code

This crate was part of a typosquatting malware cluster published by the user TerryDavisSoldier to run an arbitrary malware payload on Windows hosts. This advisory is to retrospectively document this attempted attack. The version information and download records of the malicious crate are no longe...

`windows-service-rs` was removed from crates.io for malicious code

This crate was part of a typosquatting malware cluster published by the user Kraded to run an arbitrary malware payload on Windows hosts. This advisory is to retrospectively document this attempted attack. The version information and download records of the malicious crate are no longer available...

New Ransomware Group Emerges with Hive's Source Code and Infrastructure

The threat actors behind a new ransomware group called Hunters International have acquired the source code and infrastructure from the now-dismantled Hive operation to kick-start its own efforts in the threat landscape. "It appears that the leadership of the Hive group made the strategic decision...

btrfsutil (=0.2.0), btrfsutil-fake (>=0.2.0 <=0.2.0-8324fe2) +15 more potentially affected by unknown CVE via loopdev (>=0.1.3 <=0.4.0)

loopdev CARGO version =0.1.3, =0.2.0, =0.1.0, =0.1.0, =0.6.3, =0.1.1, =0.1.0, =0.1.0, =0.1.0, =0.5.0, =0.5.0, =0.1.0, =0.1.0, =2.4.2, =3.5.7 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2023-0088...

Dvenom - Tool That Provides An Encryption Wrapper And Loader For Your Shellcode

Double Venom DVenom is a tool that helps red teamers bypass AVs by providing an encryption wrapper and loader for your shellcode. Capable of bypassing some well-known antivirus AVs. Offers multiple encryption methods including RC4, AES256, XOR, and ROT. Produces source code in C, Rust, PowerShell...