Tag Archives: Linux

Vulnerability in Libarchive Threatens Many Linux Distributions

Vulnerability in Libarchive Threatens Linux

In the summer this year, Google experts, using the ClusterFuzz and OSS-Fuzz tools, discovered a dangerous bug in the Libarchive library. This vulnerability in Libarchive threatens many Linux distributions. The vulnerability impacts Libarchive, a library for reading and creating compressed files. It is a powerful all-in-one toolkit for working with archive files that also bundles other Linux/BSD utilities like tar, …

Read More »

Was released new Debian 10 “Buster” with new security features

Debian 10 Buster

The Debian project has released a new version of the Linux distribution called Debian 10 “Buster”. As unlike other distributions, Debian is not developed by the company, but by the community members themselves and plays the role of a key OS for Ubuntu, each new release is an important event. Debian developers prioritize stability instead of pursuing the latest technology. …

Read More »

Linux and FreeBSD TCP Stacks Revealed DoS Vulnerabilities

FreeBSD 10 Bootloader

A number of vulnerabilities have been identified in the Linux and FreeBSD TCP stacks that potentially allow remotely causing a denial of service or cause excessive resource consumption while processing specially crafted TCP packets. Problems exist due to errors in the handler of the maximum data block size in the TCP packet (MSS, Maximum segment size) and the mechanism for …

Read More »

Vulnerability in Vim and Neovim editors leads to code execution while opening a malicious file

Linux under attack

In text editors Vim and Neovim was found a vulnerability (CVE-2019-12735), which allows to execute arbitrary code while opening a specially designed file. The problem manifests itself with the activity of the modeline enabled by default (“: set modeline“), which allows defining editing options in the file being processed. Vulnerability eliminated in Vim 8.1.1365 and Neovim 0.3.6 releases. Through modeline, …

Read More »

Experts told about Linux-variant of Winnti Trojan

Winnti Trojan

Chronicle experts from Alphabet cybersecurity holding discovered Linux version on Winnie backdoor that is popular among Chinese hackers for many years. Linux-version of a backdoor was discovered after a recent news that Chinese hackers that applied Winnti attacked Bayer (one of the world largest pharmaceutical companies). Chronicle analysts conducted additional research on Winnti on VirusTotal and fond variant for Linu …

Read More »

“GRO packet of death” vulnerability is found in Linux kernel

linux kernel vulnerability

In Linux kernel discovered vulnerability CVE-2019-11683. It enables remotely cause denial in service through sending specially designed UDP-packets (packet-of-death). Problem hides in the error of handler udp_gro_receive_segment (net/ipv4/udp_offload.c) with realization of GRO (Generic Receive Offload) technology and can lead to damage of core memory regions while processing UDP-packets with zero filling (empty payload). “Mishandling of padded packets, aka the “GRO …

Read More »