8 matches found
"It's The Service Accounts, Stupid": Why Do PAM Deployments Take (almost) Forever To Complete?
Privileged Access Management PAM solutions are regarded as the common practice to prevent identity threats to administrative accounts. In theory, the PAM concept makes absolute sense: place admin credentials in a vault, rotate their passwords, and closely monitor their sessions. However, the hars...
GSD-2023-1001301 pnode: terminate at peers of source
pnode: terminate at peers of source This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.163 by commit b591b2919d018ef91b4a9571edca94105bcad3df...
GSD-2023-1001286 dm thin: Fix UAF in run_timer_softirq()
dm thin: Fix UAF in runtimersoftirq This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.163 by commit 34fe9c2251f19786a6689149a6212c6c0de1d63b...
GSD-2023-1000155 ALSA: seq: Fix function prototype mismatch in snd_seq_expand_var_event
ALSA: seq: Fix function prototype mismatch in sndseqexpandvarevent This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.83 by commit...
GSD-2022-1003476 sysrq: do not omit current cpu when showing backtrace of all active CPUs
sysrq: do not omit current cpu when showing backtrace of all active CPUs This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.122 by commit...
GSD-2022-1001424 Reinstate some of "swiotlb: rework "fix info leak with DMA_FROM_DEVICE""
Reinstate some of "swiotlb: rework "fix info leak with DMAFROMDEVICE"" This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.19 by commit...
GSD-2021-1002422 serial: core: fix transmit-buffer reset and memleak
serial: core: fix transmit-buffer reset and memleak This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.220 by commit...
Automating and operationalizing data protection with Dataguise and Microsoft Information Protection
This blog post is part of the Microsoft Intelligent Security Association guest blog series. Learn more about MISA. In technical literature, the terms data discovery, classification, and tagging are sometimes used interchangeably, but there are real differences in what they actually mean—and each...