U.S. Sanctions North Korean IT Worker Network Supporting WMD Programs

The U.S. Treasury Department's Office of Foreign Assets Control OFAC sanctioned two individuals and four entities for their alleged involvement in illicit revenue generation schemes for the Democratic People's Republic of Korea DPRK by dispatching IT workers around the world to obtain employment...

HackerOne: Public GitHub repositories for multiple HackerOne managed triage team profiles contain private HackerOne reports information

Publicly available GitHub repositories for HackerOne-managed triage team profiles were found to contain private HackerOne vulnerability reports. Several repositories were identified that reproduced exploits for private bug bounty programs. The disclosed information included details such as access...

CISA: Occupant Emergency Programs: an Interagency Security Committee Guide – 2024 Edition

System About Files News Vote Help | Services API Advertise Contact | Account Join Login ---|---|---...

AZL-62711 CVE-2024-47794 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: bpf: Prevent tailcall infinite loop caused by freplace There is a potential infinite loop issue that can occur when using a combination of tail calls and freplace. In an upcoming selftest, the attach target for entryfreplace of...

CVE-2024-47794

CVE-2024-47794 (Linux kernel, BPF): A flaw can cause an infinite loop when combining tail calls with freplace, potentially leading to kernel panic. The issue arises if a freplace-extended program is attached to a program in a prog_array map, creating a loop like entry_tc → subprog_tc → entry_frep...

CVE-2024-45555

Memory corruption can occur if an already verified IFS2 image is overwritten, bypassing boot verification. This allows unauthorized programs to be injected into security-sensitive images, enabling the booting of a tampered IFS2 system image...

CVE-2024-45555 Integer Overflow to Buffer Overflow in Automotive OS Platform

Memory corruption can occur if an already verified IFS2 image is overwritten, bypassing boot verification. This allows unauthorized programs to be injected into security-sensitive images, enabling the booting of a tampered IFS2 system image...

CVE-2024-56675 bpf: Fix UAF via mismatching bpf_prog/attachment RCU flavors

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix UAF via mismatching bpfprog/attachment RCU flavors Uprobes always use bpfprogrunarrayuprobe under tasks-trace-RCU protection. But it is possible to attach a non-sleepable BPF program to a uprobe, and non-sleepable BPF...

CVE-2024-56675

CVE-2024-56675 affects the Linux kernel: UAF can occur when a non-sleepable BPF program is attached to an uprobe and freed via normal RCU, because Uprobes use bpf_prog_run_array_uprobe() under tasks-trace-RCU protection. The fix explicitly waits for a tasks-trace-RCU grace period after removing t...

CISA and ONCD Release Playbook for Strengthening Cybersecurity in Federal Grant Programs for Critical Infrastructure

Today, CISA and the Office of the National Cyber Director ONCD published Playbook for Strengthening Cybersecurity in Federal Grant Programs for Critical Infrastructure to assist grant-making agencies to incorporate cybersecurity into their grant programs and assist grant-recipients to build cyber...

[SECURITY] Fedora 40 Update: bpftool-7.5.0-1.fc40

This package contains the bpftool, which allows inspection and simple manipulation of eBPF programs and maps...

[SECURITY] Fedora 41 Update: bpftool-7.5.0-1.fc41

This package contains the bpftool, which allows inspection and simple manipulation of eBPF programs and maps...

Synapse can be forced to thumbnail unexpected file formats, invoking external, potentially untrustworthy decoders

Impact In Synapse versions before 1.120.1, enabling the dynamicthumbnails option or processing a specially crafted request could trigger the decoding and thumbnail generation of uncommon image formats, potentially invoking external tools like Ghostscript for processing. This significantly expands...

CVE-2024-52337

CVE-2024-52337 affects the tuned package; root cause is improper sanitization of the instance_name argument in instance_create(), enabling log-spoofing via newline-embedded input and potential manipulation of Tuned outputs (e.g., tuned-adm get_instances). Affected advisories show patching/upgradi...

CVE-2024-7130 Reflected XSS in Kion Computer's KION Exchange Programs Software

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Kion Computer KION Exchange Programs Software allows Reflected XSS. This issue affects KION Exchange Programs Software: before 1.21.9092.29966...

CVE-2024-7130

CVE-2024-7130 describes a Reflected XSS in KION Exchange Programs Software (affected: versions before and including 1.21.9092.29966) due to improper neutralization of input in web page generation. The vulnerability affects the programsearch.aspx endpoint where the searchtext parameter is not sani...

CVE-2024-7130 Reflected XSS in Kion Computer's KION Exchange Programs Software

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Kion Computer KION Exchange Programs Software allows Reflected XSS. This issue affects KION Exchange Programs Software: before 1.21.9092.29966...

North Korean Front Companies Impersonate U.S. IT Firms to Fund Missile Programs

Threat actors with ties to the Democratic People's Republic of Korea DPRK are impersonating U.S.-based software and technology consulting businesses in order to further their financial objectives as part of a broader information technology IT worker scheme. "Front companies, often based in China,...

Rapid7 Recognized for ‘Excellence in Workplace Health and Wellbeing’ at the Belfast Telegraph IT Awards

On Friday, November 15th, Rapid7 was awarded ‘Excellence in Workplace Health and Wellbeing’ at the Belfast Telegraph IT Awards. This award recognizes technology companies in Belfast that prioritize employee well-being. At Rapid7, we believe that the best ideas and solutions come from diverse,...

CVE-2024-51807 WordPress AgendaPress plugin <= 1.0.8 - Stored Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Black and White AgendaPress – Easily Publish Meeting Agendas and Programs on WordPress agendapress allows Stored XSS.This issue affects AgendaPress – Easily Publish Meeting Agendas and Programs on...