Linux admins -

Sandboxing in cybersecurity is a security mechanism that isolates an application or process in a controlled environment to prevent it from harming the main system. That is, when it works as expected. Sandboxes, like Chrome’s renderer sandbox, are designed to provide strong security, but this bug effectively disables one of the critical security boundaries in desktop Linux. Oops.

Learn more about what this means for Chrome users and how to protect yourself from this issue.

Yours in Open Source,

Dv Signature Newsletter 2024 Esm W150

Dave Wreski

LinuxSecurity Founder

Linux Kernel 

The Discovery 

A critical Linux kernel bug has been discovered that grants attackers full kernel-level control by breaking out of one of Chrome's most hardened sandboxes.

LinuxKernel Esm W206

The Impact

This flaw could result in arbitrary code execution or privilege escalation. 

The Fix

Patches have been released to fix this critical issue. All impacted users should update immediately to secure their kernel and their critical Linux systems.

Your Related Advisories:

[distro_list_1]

NestJS

The Discovery 

A serious Remote Code Execution (RCE) vulnerability has been found in the widely used @nestjs/devtools-integration package that lets developers debug and test their NestJS apps during the dev cycle.

Nestjs Esm W228

The Impact

The flaw enables attackers to steal credentials, install malware, or inject malicious code into production systems or public projects.

The Fix

NestJS Version 0.2.1 has been released to fix this critical bug. All impacted admins and developers should upgrade immediately to ensure their Linux systems and open-source projects. 

Your Related Advisories:

[distro_list_2]