Happy Friday fellow Linux geeks! This week, important updates have been issued for Chromium, the Linux Kernel and LibreCAD. Read on to learn about these vulnerabilities and how to secure your system against them.
Now you can personalize your LinuxSecurity.com User Profile to include the latest advisories for the distros you select, making it easier than ever to keep your system up-to-date and secure.
Have a question about or comment on one of the vulnerabilities highlighted in today's newsletter? Let's discuss!
Yours in Open Source,
ChromiumThe DiscoveryFour critical security vulnerabilities have been discovered in Chromium, including a use after free in WebGPU (CVE-2022-2007), out of bounds memory access in WebGL (CVE-2022-2008), out of bounds read in compositing (CVE-2022-2010), and a use after free in ANGLE (CVE-2022-2011). The ImpactThese dangerous bugs could result in the execution of arbitrary code, denial of service (DoS), or information disclosure. The FixWe recommend that you upgrade your Chromium packages now to protect the security, integrity and availability of your systems. Your Related Advisories:Register to Customize Your Advisories |
Linux KernelThe DiscoverySeveral security issues have been found in the Linux kernel, including a use-after-free vulnerability in the Linux kernel's Netfilter subsystem in net/netfilter/nf_tables_api.c (CVE-2022-1966), an out-of-bound write vulnerability within the netfilter subsystem (CVE-2022-1972), and an invalid free in log_replay (CVE-2022-1973). The ImpactThese flaws could result in privilege escalation attacks, among other security threats. The FixA kernel security update fixes these bugs. We recommend that you update as soon as possible to protect against attacks and compromise. Your Related Advisories:Register to Customize Your Advisories |
LibreCADThe DiscoveryTwo buffer overflow vulnerabilities have been discovered in the LibreCAD computer-aided design application (CVE-2021-45341 and CVE-2021-45342). The ImpactThese flaws could allow an attacker to achieve remote code execution (RCE) via a crafted JWW document. The FixAn update for LibreCAD mitigates these issues. Update promptly to keep your systems secure! Your Related Advisories:Register to Customize Your Advisories |