Search cyberveille.decio.ch

Found 7 bookmarks

Custom sorting

GameOver(lay) - Local Privilege Escalation in Ubuntu Kernel

GameOver(lay) encompasses two significant vulnerabilities within the Ubuntu kernel, CVE-2023-2640, and CVE-2023-32629, each carrying a high-severity rating with CVSS scores of 7.8. These vulnerabilities pose a critical threat, potentially affecting around 40% of Ubuntu users. The vulnerability lies within the OverlayFS module of the Ubuntu kernel, enabling a

#projectdiscovery #EN #2023 #Ubuntu #kernel #CVE-2023-2640 #CVE-2023-32629

·blog.projectdiscovery.io·Nov 14, 2023

GameOver(lay) - Local Privilege Escalation in Ubuntu Kernel

[CVE-2023-42752] integer overflow in Linux kernel leading to exploitable memory access

I recently found an integer overflow in the Linux kernel, which leads to the kernel allocating skb_shared_info in the userspace, which is exploitable in systems without SMAP protection since skb_shared_info contains references to function pointers.

#seclists #EN #2023 #CVE-2023-42752 #integer #overflow #Linux #kernel

·seclists.org·Sep 19, 2023

[CVE-2023-42752] integer overflow in Linux kernel leading to exploitable memory access

Reptile Malware Targeting Linux Systems

Reptile is an open-source kernel module rootkit that targets Linux systems and is publicly available on GitHub. [1] Rootkits are malware that possess the capability to conceal themselves or other malware. They primarily target files, processes, and network communications for their concealment. Reptile’s concealment capabilities include not only its own kernel module but also files, directories, file contents, processes, and network traffic. Unlike other rootkit malware that typically only provide concealment capabilities, Reptile goes a step further by offering a reverse...

#ASEC #EN #2023 #Reptile #open-source #kernel #module #rootkit #Linux

·asec.ahnlab.com·Aug 4, 2023

Reptile Malware Targeting Linux Systems

Almost 40% of Ubuntu users vulnerable to new privilege elevation flaws

Two Linux vulnerabilities introduced recently into the Ubuntu kernel create the potential for unprivileged local users to gain elevated privileges on a massive number of devices.

#bleepingcomputer #EN #2023 #Code-Execution #Kernel #Linux #Linux-Kernel #Local-Privilege-Escalation #Ubuntu #Vulnerability #CVE-2023-2640 #CVE-2023-32629

·bleepingcomputer.com·Jul 26, 2023

Almost 40% of Ubuntu users vulnerable to new privilege elevation flaws

BlackCat Ransomware Deploys New Signed Kernel Driver

In this blog post, we will provide details on a BlackCat ransomware incident that occurred in February 2023, where we observed a new capability, mainly used for the defense evasion phase.

#trendmicro #EN #2023 #ransomware #research #BlackCat #Kernel #Driver

·trendmicro.com·May 22, 2023

BlackCat Ransomware Deploys New Signed Kernel Driver

oss-sec: [CVE-2023-32233] Linux kernel use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary reads and writes in kernel memory

An issue has been discovered in the Linux kernel that can be abused by unprivileged local users to escalate privileges. The issue is about Netfilter nf_tables accepting some invalid updates to its configuration.

#seclists.org #EN #2023 #CVE-2023-32233 #Linux #Kernel #Netfilter #nf_tables #arbitrary #memory #vulnerability

·seclists.org·May 10, 2023

oss-sec: [CVE-2023-32233] Linux kernel use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary reads and writes in kernel memory

Linux kernel logic allowed Spectre attack on major cloud

Kernel 6.2 ditched a useful defense against ghostly chip design flaw

#theregister #EN #2023 #Spectre #Kernel #Linux #cloud

·theregister.com·Apr 17, 2023

Linux kernel logic allowed Spectre attack on major cloud