Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 569
Alerts This Week
Warning Icon 1 569

Stay Ahead With Linux Security News

Filter%20icon Refine news
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security news

We found 57 articles for you...
210

Google Chrome 132 Security Advisory: 13 Critical Flaws Impacting Integrity

Google's widely used Chrome web browser is back in the security spotlight, as yet another 13 critical security flaws need to be urgently addressed. Google quickly released Chrome 132 to patch these severe bugs. With vulnerabilities ranging from out-of-bounds memory access to a stack buffer overflow , these issues impact data integrity and the overall security posture of affected systems. . Luckily, Chrome updates are quick and painless to install, ensuring minimal disruption while providing maximum security benefits. Maintaining browser updates will decrease the risk that vulnerabilities exploited within your network can pose. Let's dive deeper into these flaws and effective mitigations, as prompt action against potential exploits is necessary! What Makes the Recent Chrome 132 Update So Urgent? Google Chrome is more than just a web browser - it plays a vital role in many workplaces, including Linux server environment. Due to its widespread adoption and usage, malicious actors frequently target Chrome to exploit vulnerabilities with high to low severity levels. Recently discovered flaws mitigated in Chrome 132, including out-of-bounds memory access, improper implementations, and stack buffer overflows that may allow attackers to access sensitive information without authorization or compromise system data. These vulnerabilities could enable malicious actors to access system data or gain unauthorized entry via compromised accounts or login credentials. Google's release of Chrome 132 represents an aggressive effort to address these vulnerabilities quickly. We security administrators must act fast or risk leaving our Linux environments exposed and at risk! Ignoring updates of this nature leaves our data susceptible and undermines our overall security posture. Examining the Impact of Vulnerabilities on Affected Systems To truly understand the significance of this update, we need to appreciate the dangers vulnerabilities pose in a networked environment. Out-of-bounds memory access,for instance, occurs when a program reads (or writes) data outside the bounds of allocated memory. This flaw can crash systems, corrupt data, or allow attackers to execute arbitrary code. Vulnerabilities in navigation or rendering engines, like those related to the V8 JavaScript engine in Chrome, could be exploited to redirect users to malicious sites or execute pernicious scripts. Such breaches can result in data theft, identity theft, or even localized denial of service. The update to Chrome 132 not only patches these individual vulnerabilities but also strengthens the browser's overall security architecture, providing a sturdy shield against potential exploits. The Critical Importance of Updating Chrome on Linux Protecting your environment is a multi-faceted endeavor, requiring everything from robust firewalls to impeccable patch management. Updating Chrome on Linux systems is straightforward and should be done immediately to ensure protection against newly identified vulnerabilities. Start by launching the Chrome browser. From there, click on the menu symbolized by three vertical dots at the top right corner. Select 'Help' and then 'About Google Chrome.' This action triggers the browser's automatic update check. If Chrome 132 is available, it will download automatically. After downloading the browser, restarting it is crucial to apply the new configurations effectively. Continuously ensuring that software is up-to-date is a fundamental practice that minimizes risk and boosts system integrity. As admins often juggle numerous tasks, implementing automated update checks could be a time-saving strategy to ensure security policies stay rigorous. Debian anf Fedora have issued important security advisories urging impacted users to update to Chrome 132 promptly. Mitigating Future Risks with Proactive Security Measures Understanding and acting upon vulnerabilities is only part of a broader security strategy. Looking forward, Linux security admins should adopt a proactivestance. This should include routine security audits, where networks and applications are scanned for vulnerabilities regularly, even before official patches become available. Security training for teams can ensure that everyone understands the importance of updates and the risks posed by vulnerabilities. This communal vigilance adds another layer of security, as even accidental errors or oversights can be promptly reported and addressed. Implementing robust monitoring tools can also provide admins real-time alerts about unusual activities or potential vulnerabilities and help flag necessary updates. This proactive approach helps manage risk and prepares admins and organizations to address new threats swiftly. Beyond Updates: Building a Culture of Robust Security While implementing software updates like Chrome 132 is vital, Linux admins should encourage a broader security culture within their organizations. Each member is critical to maintaining the integrity of your organization's security posture. This culture begins with education — ensuring that users understand the value of the data they interact with and the potential ramifications of security breaches . Promoting best practices for password management, such as using random password generators and secure password managers, can significantly reduce vulnerabilities. Furthermore, ensuring secure browsing practices, like avoiding suspicious sites or downloads and using VPNs when accessing public networks, can limit the risk of encountering malicious software. In environments where Chrome is a gateway to numerous web applications and services, a strong security culture can act as a human firewall that complements technical measures. Our Final Thoughts on the Significance of the Chrome 132 Update The release of Chrome 132 serves as a reminder of the ever-present need for vigilance within the IT landscape. For Linux security administrators, the update represents an actionable step towards maintaining control over the safety ofyour environment. Identifying vulnerabilities is essential; however, responding effectively through updates and fostering a security-minded culture is pivotal. Linux security admins must continuously learn and adapt to new cyber threats. Software updates like Chrome 132 are just part of a much larger, ongoing effort to protect systems and enhance organizational security postures. Ultimately, the swift application of updates like Chrome 132 protects information within an organization and fortifies trust in the systems underpinning our technological world. Taking decisive actions now, informed by an understanding of potential risks, positions admins and their organizations to face whatever challenges the future holds! . Rapid deployment of Firefox 102 addresses severe vulnerabilities, enhancing comprehensive information protection in Unix systems.. Chrome Update, Security Flaws, Linux Browser Security, Critical Update, System Integrity. . Brittany Day

Calendar%202 Jan 22, 2025 User Avatar Brittany Day Security Vulnerabilities
210

Linux: CVE-2024-47177 critical issue in CUPS remote execution threat

Linux powers the world, from servers to IoT devices, but its open-source foundation isn’t without risks. Attackers often exploit vulnerabilities in components like the Common Unix Printing System (CUPS) to execute remote commands, inject malware, and infiltrate networks. . For businesses, these exploits can mean costly disruptions and data breaches. The solution? Tools like Static Application Security Testing (SAST), regular updates, and strong security practices. In this post, we’ll show you how to protect your systems without sacrificing the power and flexibility of Linux. Critical Linux CUPS Vulnerabilities (CVE-2024-47177) Exposed There are many entry points for hackers on Linux systems. The open-source community fears several critical vulnerabilities within the Common Unix Printing System of Linux. Hackers exploit these vulnerabilities via remote command execution once flaws are chained together and users separately launch print jobs. These vulnerabilities – a quartet of them – include the following: CVE-2024-47177 CVE-2024-47176 CVE-2024-47175 CVE-2024-47076 Fraudsters attack by replacing IPP URLs on a specified printer with a Malware version, which gives them command and control over the system. These Linux vulnerabilities were initially assigned a 9.9 score, but researchers have tempered their initial fears compared to Heartbleed and Log4j of past Linux vulnerabilities. The bugs were unearthed in September 2024 by a security consultant named Simone Margaritelli (moniker @evilsocket). While these security flaws impact all Red Hat Enterprise Linux variants, the default configurations are safe. This is one of many known Linux vulnerabilities presented by flawed open-source systems. How can Static Application Security Testing (SAST) Help? Since Linux runs on open-source software, it is innately vulnerable to malicious code. Fortunately, SAST delivers on expectations with security and speed to improve the developer experience. Estimates suggestthat the best static application security testing tools can be up to 90% faster with 80% lower false positives. With SAST systems, organizations can efficiently scan for vulnerabilities in mission-critical applications, identifying and addressing risks early in the development process. Among the benefits of SAST all the following: Scan changed code for quicker fixing Accurate results with prioritized findings Easily fix vulnerable code to ensure secure applications Unbeatable security at ultra-fast speed on mission-critical apps Recent Linux security vulnerabilities include a Silent Intruder Exploit, a Residual Risk Flaw, a Performance Events Vulnerability, a Linux Kernel Ext4 File System Vulnerability, and a Firmware Infiltration Exploit. Regular updates and patches to software code can prevent many of these vulnerabilities. Vulnerability assessment is crucial in identifying risks before they escalate. Mandatory access control systems, including SELinux and AppArmor, can bolster security by restricting the capabilities of certain programs. Businesses benefit from regular vulnerability assessments to maintain system security. Significantly, the NSA (National Security Agency) created SELinux . Other safeguards available to Linux users include firewalls, an intrusion detection system, access controls, security audits, vulnerability, scanning, etc. Endpoint protection, such as Monitoring Tools and next-generation antivirus software, is imperative. Runtime application self-protection (RASP) can further protect Linux applications' security. Linux is Widely Regarded as Stable and Secure Linux is widely regarded as a stable, secure, and safe operating system . This is mainly due to its open-source nature. This means that a large community of users, contributors, and experts can rapidly remediate any vulnerabilities in the code; this is done with a top-quality source code vulnerability scanner. Yet, this does not eliminate threats that affect Linux software. The operatingsystem remains susceptible to cyber threats if it isn’t correctly maintained, configured, and monitored. Owing to the public accessibility of the source code, Linux can face significant threats from bad actors. In other words, they can inject malicious source code into the codebase. Fortunately, Linux's open-source nature is also its saving grace—the community routinely mitigates risks that crop up from time to time. Among others, Linux users can stay safe and secure by following generally accepted practices in the IT security industry, notably: Only use reputable sources for Linux software . Trusted sources are best for many reasons. Remember that bad actors can intentionally introduce vulnerabilities into the source code. Always use robust security practices, procedures, and frameworks . Strong passwords, managed permissions, and expertly configured network settings are sacrosanct. And even when 24/7 monitoring is underway, bugs can still appear. Keep the operating system software up-to-date at all times. Whenever security patches are available, they should be downloaded and installed. It is worth reiterating that regular security audits (SAs) are essential for detecting any outdated software. The vulnerability scanning resources make the process easier through automation. By comparing databases of known weaknesses against the scanned details, it’s much easier to find vulnerabilities through vulnerability assessment. Organizations should prioritize vulnerability scanning for comprehensive security. By integrating advanced tools like SAST, an intrusion detection system, and adopting rigorous security protocols, Linux users can mitigate risks, too. Open-source collaboration helps to address any glaring weaknesses as quickly as possible, reinforcing the OS's trust while addressing the cybersecurity landscape's dynamic challenges. . Investigate essential Linux CUPS vulnerabilities and the methodologies to fortify open-source platforms through recommended strategies andSAST instruments.. Linux security, open-source risks, Common Unix Printing System, static application testing. . MaK Ulac

Calendar%202 Dec 17, 2024 User Avatar MaK Ulac Security Vulnerabilities
210

Chrome 130: Update for 17 Critical Security Flaws and Exploits

Google recently unveiled Chrome 130 , an update that addresses several security vulnerabilities to ensure the web browser's safety and reliability. Version 130.0.6723.58/.59 will gradually roll out 17 security bugs with gradual rollout expected over days and weeks - this update's importance cannot be understated given today's digital landscape. . To help you understand these severe flaws and how to secure your systems against malicious hijacking and data theft, I'll explain these bugs, how adversaries could exploit them, and how to update Chrome to mitigate risk. Critical Vulnerabilities Addressed in Chrome 130 Among the 17 vulnerabilities fixed in Chrome 130, the most notable are highlighted below: CVE-2024-9954 : High Severity Use-After-Free in AI One of the most critical vulnerabilities addressed was CVE-2024-9954, classified as high severity and use-after-free in Chrome's AI component. Discovered by researcher DarkNavy, this flaw earned a bounty of $36,000 when exploited. It could allow attackers to execute malicious code on victim machines, steal sensitive information, or even gain control of them altogether. Potential Exploitation: This vulnerability could be exploited via malicious web content. An attacker could create a webpage containing code to exploit the use-after-free vulnerability. Once visited, their attack is executed, giving an unauthorized entity control over an affected system. CVE-2024-9955 : Medium Severity Use-After-Free in Web Authentication This medium-severity flaw lies within Chrome's Web Authentication component. As its APIs allow user authentication without passwords, any vulnerability could jeopardize users' security. Potential Exploitation: An attacker could exploit this flaw to bypass authentication mechanisms or execute arbitrary code, possibly leading to unauthorized access, data breaches, or further exploitation of vulnerabilities in other areas. CVE-2024-9956 : Medium Severity Inappropriate Implementation in Web Authentication Another vulnerability within the Web Authentication component stems from inappropriate implementation. Correct implementation is vital to maintaining security protocols and safeguarding user accounts. Potential Exploitation: This flaw could allow an authentication bypass and grant unauthorized access to user accounts or systems without proper verification. CVE-2024-9957 : Medium Severity Use-After-Free Vulnerability in User Interface [UI] The user interface (UI) was identified as another critical area where medium severity use-after-free vulnerabilities have been discovered. Potential Exploitation: This vulnerability could allow an attacker to execute arbitrary code or take control of a browser session, potentially leading to data theft or further intrusion. CVE-2024-9958 : Medium Severity Inappropriate Implementation in PictureInPicture PictureInPicture APIs enhance multimedia experience by enabling video playback over other content, but an inappropriate implementation could impede user interactions with multimedia files. Potential Exploitation: An attacker could exploit this vulnerability to perform unintended operations within a PictureInPicture window, leading to information disclosure or the possible creation of additional attack vectors. Other notable vulnerabilities addressed in this release include: CVE-2024-9960 : Use-after-free in Dawn. CVE-2024-9961 : Use-after-free in Parcel Tracking. CVE-2024-9962 : Inappropriate implementation in Permissions. These vulnerabilities range in impact from medium to low severity, and if left unpatched, they can threaten system integrity and user security. Affected Versions & Update Instructions All Chrome users should update their systems immediately to protect themselves against these threats. Debian , Fedora , and openSUSE have released important security advisory updates addressing these issues. To update your Chrome browser: Launch Chrome Browser: When your browser isrunning, make sure it is opened and click on the three-dot menu in the top-right corner to navigate to Settings. Under About Chrome: Scroll down and click About Chrome. Your browser will automatically check for updates. Install Updates: If an update is available, click Update, and the browser will download and install it automatically. Restart Chrome: Once the update has been applied successfully, rebooting will apply its changes. Updating your browser addresses these 17 vulnerabilities and ensures you benefit from Google's new features and improvements. Our Final Thoughts on the Significance of This Release Google's latest release, Chrome 130, demonstrates its dedication to providing a safe browsing environment. By patching 17 vulnerabilities of significant severity, this update plays an integral role in protecting users against cyber threats as the digital landscape shifts and changes over time. Staying abreast of security patches is vital. Chrome users are strongly urged to update their browsers immediately and regularly to maintain optimal security protections. In addition to automatic updates, regularly checking for updates will ensure you stay protected. Google and the cybersecurity community's joint effort demonstrates the vital importance of collaboration when creating a secure web ecosystem. Updates, awareness campaigns, and an informed user base all play critical roles in effectively fighting cyber threats. Overall, Chrome 130 is a crucial update that prepares us for the increasing challenges posed by cyber threats - reinforcing the significance of vigilant and preventative security measures. . Explore critical flaws in Chrome version 130 and vital measures to safeguard devices against takeovers and information breaches.. Browser Security Updates, Chrome Vulnerabilities, Cybersecurity Best Practices. . Brittany Day

Calendar%202 Oct 23, 2024 User Avatar Brittany Day Security Vulnerabilities
210

CentOS: Critical Kernel Flaws Disclosed by Google Project Zero

Google Project Zero is a security team responsible for discovering security flaws in Google's own products as well as software developed by other vendors. Following discovery, the issues are privately reported to vendors and they are given 90 days to fix the reported problems before they are disclosed publicly. In some cases, a 14-day grace period is also given, depending on the complexity of the solution involved. . We have covered Google Project Zero's findings extensively in the past as it has reported vulnerabilities in software developed by Google , Microsoft , Qualcomm , Apple , and more. Now, the security team has reported several flaws in CentOS' kernel. As detailed in the technical document here , Google Project Zero's security researcher Jann Horn learned that kernel fixes made to stable trees are not backported to many enterprise versions of Linux. To validate this hypothesis, Horn compared the CentOS Stream 9 kernel to the stable linux-5.15.y stable tree. For those unaware, CentOS is a Linux distro closest to Red Hat Enterprise Linux (RHEL) and its version 9 is based on the linux-5.14 release. . Recent findings from Google Project Zero unveil serious vulnerabilities in the CentOS kernel, prompting worries about the rapid deployment of fixes in corporate systems. CentOS Kernel Issues, Google Project Zero, Security Flaws. . Brittany Day

Calendar%202 Mar 26, 2023 User Avatar Brittany Day Security Vulnerabilities
82

CentOS Control Web Panel Critical Issue: Patch Required by February 7

The US government’s cybersecurity agency CISA is giving federal agencies an early February deadline to patch a critical -- and already exploited -- security vulnerability in the widely used CentOS Control Web Panel utility. . The agency added the CVE-2022-44877 flaw to its KEV (Known Exploited Vulnerabilities) catalog and set a February 7th deadline for federal agencies to test and deploy an available fix. Security researchers warned earlier this month that the publication of proof-of-concept code and a YouTube video demonstration would lead to live attacks. Soon after, threat-hunting outfits GreyNoise and Shadowserver spotted signs of exploitation in the wild. . CISA includes a critical vulnerability in CentOS Control Web Panel on its urgent patch list, requiring federal entities to rectify exploitation risks by February 7.. CentOS Patch, Control Web Panel Flaw, Cybersecurity Updates. . Brittany Day

Calendar%202 Jan 19, 2023 User Avatar Brittany Day Government
210

Linux Kernel: Critical Local Privilege Escalation Advisory CVE-2022-3977

The local privilege escalation vulnerability in the Linux Kernel was reported by Redhat, and its CVE code is 2022-3977 . The problem is that the most recent Linux kernel upstream contains a use-after-free vulnerability called mctp sk unhash that may be exploited to elevate privileges to root. . When a program tries to utilize memory that has been released or no longer assigned to it after it has been given to another application, it is known as a use-after-free vulnerability. In cyber attack situations, this might result in arbitrary code execution or provide an attacker access to remote code execution capabilities. It can also cause crashes and unintentional data overwriting. The concurrent DROPTAG ioctl and socket close may result in a race scenario, which is the cause of the vulnerability . The Active Defense Lab of Venustech has reported the vulnerability . “An unprivileged user duplicated it using new namespaces. Local Privilege Escalation would result from it (LPE). It was first made available in v5.18.0; the commit is 63ed1aab3d40aa61aaa66819bdce9377ac7f40fa. It had an impact on stable and upstream v6.0.0. The mctp kernel module, however, is not loaded automatically, according to the seclists website. . An urgent vulnerability related to local privilege elevation in the Linux kernel requires swift updates to avert potential misuse.. Linux Kernel Security, Privilege Escalation, Critical Patch. . Brittany Day

Calendar%202 Nov 16, 2022 User Avatar Brittany Day Security Vulnerabilities
67

OpenSSL 3.0.7 Delivers Crucial Update Addressing Remote Code Vulnerability

The OpenSSL Project team has announced that, on November 1, 2022, they will release OpenSSL version 3.0.7, which will fix a critical vulnerability in the popular open-source cryptographic library (but does not affect OpenSSL versions before 3.0). . According to the team’s own risk classification, critical vulnerabilities in OpenSSL are those that affect common configurations and are likely to be exploitable. “Examples include significant disclosure of the contents of server memory (potentially revealing user details), vulnerabilities which can be easily exploited remotely to compromise server private keys or where remote code execution is considered likely in common situations,” they say . . Anticipate the important OpenSSL 3.0.7 patch targeting significant flaws that may jeopardize safety.. OpenSSL Update,Critical Security Fix,Cryptographic Vulnerability,Remote Code Execution. . LinuxSecurity.com Team

Calendar%202 Oct 28, 2022 User Avatar LinuxSecurity.com Team Cryptography
210

Ubuntu 22.04 LTS & 20.04 LTS Kernel Security Update: DOS Threat

British Linux distributor Canonical is releasing security updates to the Linux kernel for Ubuntu 22.04 LTS (“Jammy Jellyfish”) and Ubuntu 20.04 LTS (“Focal Fossa”), patching vulnerabilities in its operating systems. The vulnerabilities fixed could lead to a Denial of Service (DOS) lead. . The latest free operating system kernel Linux 5.15.0.46.46 for Ubuntu 22.04 LTS and Ubuntu 20.04 LTS, which has also been upgraded to Linux kernel 5.15 LTS via the Hardware Enablement Stack (HWE), is now available for download and close the following Completely Eliminated Eight Distribution Vulnerabilities: Security Issues Canonical strongly recommends that all users immediately update the kernel packages of their systems running Ubuntu 22.04 LTS and Ubuntu 20.04 LTS as well as Linux 5.15 LTS to the new versions for security reasons. To do this, the following command can be run from the command line: sudo apt update && sudo apt full-upgrade The vulnerabilities open up to a local attacker who could specifically crash the system with a denial of service and run random malware on it to carry out. . Canonical issues security patches for Ubuntu 22.04 LTS and 20.04 LTS kernel versions, rectifying severe security flaws.. Ubuntu Kernel Security, Canonical Patches, Denial of Service Fixes, Kernel Updates. . Brittany Day

Calendar%202 Aug 15, 2022 User Avatar Brittany Day Security Vulnerabilities
News Add Esm H340

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200