Linux Advisory Watch: May 6, 2022

Advisories

Linux Advisory Watch: May 6, 2022

Happy Friday fellow Linux geeks! This week, important updates have been issued for LibreCAD, the Linux kernel and VIM. Read on to learn about these vulnerabilities and how to secure your system against them. 

Now you can personalize your LinuxSecurity.com User Profile to include the latest advisories for the distros you select, making it easier than ever to keep your system up-to-date and secure.

Have a question about or comment on one of the vulnerabilities highlighted in today's newsletter? Let's discuss!

Yours in Open Source,

Brittany Signature 150

LibreCAD

The Discovery 

Buffer overflow vulnerabilities have been discovered in CDataMoji and CDataList of the jwwlib component of LibreCAD 2.2.0-rc3 and older (CVE-2021-45341 and CVE-2021-45342).

LibreCAD

The Impact

These flaws allow an attacker to achieve Remote Code Execution using a crafted JWW document.

The Fix

A LibreCAD security update fixes these issues. Update now to protect your systems against attacks and compromise.

Your Related Advisories:

Register to Customize Your Advisories

Linux Kernel

The Discovery 

Two important security bugs have been found in the Linux kernel, including a vulnerability in the nf_tables component of the netfilter subsystem (CVE-2022-1016) and a use-after-free vulnerability (CVE-2022-1011). 
LinuxKernel

The Impact

The vulnerabilities could result in remote code execution and the retrieval of (partial) /etc/shadow hashes or any other data from filesystem when the attacker can mount a FUSE filesystem.

The Fix

An update for the Linux kernel fixes these dangerous flaws. Update now to protect the security and integrity of your systems.

Your Related Advisories:

Register to Customize Your Advisories

VIM

The Discovery

A global heap buffer overflow in skip_range (CVE-2022-1381) and an out-of-range Pointer Offset (CVE-2022-1420) have been discovered in the VIM vi editor.

The ImpactVim

These flaws could result in buffer overflow and denial of service (DoS) attacks.

The Fix

A VIM update mitigates these security issues. Update promptly to protect against attacks and compromise.

Your Related Advisories:

Register to Customize Your Advisories

 

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.