Happy Friday fellow Linux geeks! This week, important updates have been issued for the Linux kernel, Expat and PHP. Read on to learn about these vulnerabilities and how to secure your system against them.
Now you can personalize your LinuxSecurity.com User Profile to include the latest advisories for the distros you select, making it easier than ever to keep your system up-to-date and secure.
Have a question about or comment on one of the vulnerabilities highlighted in today's newsletter? Let's discuss!
Yours in Open Source,
Linux KernelThe DiscoverySeveral security issues have been found in the Linux kernel, the most critical being a remotely exploitable stack-based buffer overflow in the Transparent Inter-Process Communication (TIPC) protocol implementation in the kernel. The ImpactExploitation of these Linux kernel vulnerabilities could result in denial of service (DoS), privilege escalation attacks and the exposure of sensitive information (kernel memory). The FixThese flaws have been fixed in the Linux kernel. Patch now to protect the security integrity, and availability of your systems. Your Related Advisories:Register to Customize Your Advisories |
ExpatThe DiscoveryMultiple vulnerabilities have been discovered in Expat, an XML parsing C library (CVE-2022-25235, CVE-2022-25236, CVE-2022-25313, CVE-2022-25314 and CVE-2022-25315). The ImpactThese issues could lead to denial of service (DoS) or potentially the execution of arbitrary code, if a malformed XML file is processed. The FixAn Expat security update fixes these vulnerabilities. We recommend updating as soon as possible to mitigate your risk. Your Related Advisories:Register to Customize Your Advisories |
PHPThe DiscoverySeveral PHP security issues have been discovered. It was found that PHP incorrectly handled certain scripts and certain inputs (CVE-2015-9253, CVE-2017-8923, CVE-2017-9118, CVE-2017-9119, CVE-2017-9120 and CVE-2021-21707). The ImpactExploitation of these bugs could result in denial of service (DoS) or information leakage. The FixThese issues have now been fixed in PHP. Update as soon as possible to protect sensitive information and prevent attacks. Your Related Advisories:Register to Customize Your Advisories |