Suricata 安全特征问题漏洞

Suricata is a network IDS, IPS and NSM engine from the Open Information Security Foundation. A security signature issue vulnerability exists in Suricata versions prior to 7.0.7, which stems from a lack of initialization of the "thash" random seed, which results in byte range tracking with...

Ubuntu本地提权漏洞(CVE-2017-16995)

Since commit f1174f77b50c "bpf/verifier: rework value tracking", the eBPF range tracking is security-relevant for the verification of eBPF code provided by unprivileged users. Therefore, any tiny slip-up in the arithmetic range tracking now turns into an arbitrary read+write in the full kernel...