Hello Linux users,
Multiple severe security flaws were recently found in Chromium, the open-source web browser project that is the basis of Chrome and many of the other browsers you likely use daily. These vulnerabilities are an admin's worst nightmare: they could enable attackers to access your network, steal sensitive data, install malware, and disrupt services.
To help you take proactive measures to secure your systems, I'll explain:
- The vulnerabilities discovered and their impact.
- How to determine if you are at risk.
- How to update Chrome to protect against these bugs.
Read on to learn about another critical vulnerability recently discovered in the Linux kernel dubbed "SLUBStick" that can grant attackers full system control, resulting in data breaches and service outages.
If you found value in today’s newsletter, please share it with your friends! Do you have a Linux security-related topic you'd like to cover for our audience? We welcome contributions from passionate, insightful community members who share our love for Linux and security!
Stay safe out there,
ChromiumThe DiscoveryMultiple severe security flaws were recently found in Chromium, the open-source web browser project that is the basis of Chrome and many other widely used browsers. CVE-2024-7532 was identified as the most significant vulnerability involving out-of-bounds memory access in ANGLE (Almost Native Graphics Layer Engine). Considered critical, this bug could enable attackers to execute arbitrary code and cause system crashes. |
Linux KernelThe DiscoveryA severe Linux vulnerability, oddly named "SLUBStick," has been identified in the kernel. This stealthy flaw turns heap vulnerabilities into read/write access points with total power over read/write operations. |
