4 matches found
CVE-2024-40635 containerd has an integer overflow in User ID handling
containerd is an open-source container runtime. A bug was found in containerd prior to versions 1.6.38, 1.7.27, and 2.0.4 where containers launched with a User set as a UID:GID larger than the maximum 32-bit signed integer can cause an overflow condition where the container ultimately runs as roo...
#bulkExecute() can reenter to steal funds
Lines of code Vulnerability details Impact ExchangebulkExecute can reenter, and internal execution of delegatecall is allowed to fail, not revert, malicious users can reenter to steal funds Proof of Concept Assumptions: There is a malicious user alice,with NFT for sale, paid through eth If user b...
How to implement Multi-Factor Authentication (MFA)
Another day, another data breach. If the regular drumbeat of leaked and phished accounts hasn't persuaded you to switch to Multi-Factor Authentication MFA already, maybe the usual January rush of 'back to work' password reset requests is making you reconsider. When such an effective option for...
Threatpost Poll: Do You Hate Facebook?
Facebook is under fire again after a bombshell report went live, claiming it has had broad data-sharing arrangements with Amazon, Apple, Netflix and others for years. We’re wondering if this changes how you use Facebook in your everyday life. An exhaustive investigation in the New York Times on...