Linux Advisory Watch: November 19, 2021 | LinuxSecurity.com

Advisories

Linux Advisory Watch: November 19, 2021

Happy Friday fellow Linux geeks! This week, important updates have been issued for the Linux kernel, libxstream-java and OpenJDK. Read on to learn about these vulnerabilities and how to secure your system against them. 

Now you can personalize your LinuxSecurity.com User Profile to include the latest advisories for the distros you select, making it easier than ever to keep your system up-to-date and secure.

Have a question about or comment on one of the vulnerabilities highlighted in today's newsletter? Let's discuss!

Yours in Open Source,

Brittany Day Signature

Linux Kernel

The Discovery 

Multiple security issues have been discovered in the Linux kernel, including a use-after-free vulnerability in the NFC stack (CVE-2021-3760), a flaw in the SCTP stack where a blind attacker may be able to kill an existing SCTP association through invalid chunks (CVE-2021-3772), a heap buffer overflow in the kernel's AMD Radeon graphics card driver (CVE-2021-42327), a flaw was in the cryptographic receive code in the kernel's implementation of transparent interprocess communication (CVE-2021-43267) and an array-index-out-of-bounds flaw in the detach_capi_ctr function in drivers/isdn/capi/kcapi.c (CVE-2021-43389).ghostscript

The Impact

These vulnerabilities could result in privilege escalation, spoofing attacks, system crash and memory corruption, posing a threat to the confidentiality, integrity and availability of impacted systems.

The Fix

An update based on upstream 5.10.78 that fixes these issues has been released. Update now!

Your Related Advisories:

Register to Customize Your Advisories

libxstream-java

The Discovery 

Multiple remotely-exploitable security vulnerabilities have been discovered in XStream, a Java library used to serialize objects to XML and back again.
firefox

The Impact

These vulnerabilities may allow a remote attacker to load and execute arbitrary code from a remote host only by manipulating the processed input stream.

The Fix

We recommend that you upgrade your libxstream-java packages immediately to protect against remote code execution (RCE). 

Your Related Advisories:

Register to Customize Your Advisories

OpenJDK

The Discovery

Several vulnerabilities have been discovered in the OpenJDK Java runtime, including issues with cryptographic hashing, TLS client handshaking, and various other issues (CVE-2021-35550, CVE-2021-35556, CVE-2021-35559 and CVE-2021-35561).
libsndfile

The Impact

These flaws pose a threat to the security and privacy of impacted systems.

The Fix

We recommend that you upgrade your openjdk-8 packages as soon as possible.

Your Related Advisories:

Register to Customize Your Advisories

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.