Linux Advisory Watch: June 10, 2022

Advisories

Linux Advisory Watch: June 10, 2022

Happy Friday fellow Linux geeks! This week, important updates have been issued for Thunderbird, vim and the kernel. Read on to learn about these vulnerabilities and how to secure your system against them.

Now you can personalize your LinuxSecurity.com User Profile to include the latest advisories for the distros you select, making it easier than ever to keep your system up-to-date and secure.

Have a question about or comment on one of the vulnerabilities highlighted in today's newsletter? Let's discuss!

Yours in Open Source,

Brittany Signature 150

Thunderbird

The Discovery 

Two critical vulnerabilities have been discovered in Mozilla Thunderbird, including untrusted input used in JavaScript object indexing (CVE-2022-1529) and prototype pollution in the Top-Level Await implementation (CVE-2022-1802).

Thunderbird

The Impact

These vulnerabilities could result in prototype pollution.

The Fix

A Thunderbird security update fixes these dangerous bugs. We recommend that you upgrade Thunderbird to version 91.9.1 as soon as possible!

Your Related Advisories:

Register to Customize Your Advisories

vim

The Discovery 

A large number of security bugs have been found in the vim text editor.


Vim

The Impact

These flaws could be exploited to carry out buffer overflow attacks.

The Fix

A vim security update mitigates these vulnerabilities. We recommend that you update promptly to secure your systems against attacks and compromise.

Your Related Advisories:

Register to Customize Your Advisories

Kernel

The Discovery

Multiple security vulnerabilities have been discovered in the kernel, including a race condition in the perf subsystem (CVE-2022-1729) and a lockdown break issue that could allow a remote attacker to bypass security restrictions (CVE-2022-21499).

The ImpactLinuxKernel

These issues could allow a remote attacker to ​​perform read and write access to kernel memory, and a local attacker to escalate privileges.

The Fix

A kernel security update fixes these flaws. Update now to protect the security and integrity of your systems.

Your Related Advisories:

Register to Customize Your Advisories

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.