Fellow Linux admins -

Another week, two more high-severity type confusion flaws within the V8 JavaScript engine in Chrome and browsers based on Chromium. Not a time to get complacent, though.

Type confusion flaws make it possible for attackers to take control of your system, inject malicious code to steal sensitive data, corrupt vital information, or even bring down connections across networks. For Linux users, the stakes are particularly high, from interrupted business operations and financial losses to compromised personal data and loss of client trust.

Read on for info on how you can update your system against these threats and more on the tools Google is using and developing to identify these vulnerabilities more quickly.

You'll also learn about a critical CUPS flaw that could result in unauthorized access and data theft through system takeover, disrupting essential infrastructure services reliant on Linux systems.

If you found value in today’s newsletter, please share it with your friends! Do you have a Linux security-related topic you'd like to cover for our audience? We welcome contributions from passionate, insightful community members who share our love for Linux and security!

Stay safe out there,

Brittany Signature 150 Esm W150

Chromium

The Discovery 

Two high-severity Type Confusion bugs have been found in Chromium (CVE-2024-9602 and CVE-2024-9603).

Chromium Esm W225

The Impact

These flaws could enable attackers to steal sensitive data and gain control over impacted systems.

The Fix

Distros have released Chromium patch updates to mitigate these bugs. We urge you to apply these updates immediately to secure your sensitive data and critical systems.

Your Related Advisories:

[distro_list_1]

CUPS

The Discovery 

It was recently discovered that CUPS contains a critical vulnerability that allows remote attackers to gain entry and take control of devices remotely. This vulnerability is tracked as CVE-2024-47076 (libcupsfilters), CVE-2024-47175 (libppd), CVE-2024-47176 (cups-browsed) and CVE-2024-47177 (cups-filters).

Cups Esm W212

The Impact

This bug could result in unauthorized access and data theft through system takeover, disrupting essential infrastructure services reliant on Linux systems.

The Fix

Distros have released critical CUPS security updates to mitigate these issues. We urge you to apply these updates immediately to secure your Linux systems and sensitive data.

Your Related Advisories:

[distro_list_2]