by EGI CSIRT | Feb 26, 2022 | Advisories, News
A privilege escalation vulnerability CVE-2021-4034 has been discovered on polkit’s pkexec utility – a setuid tool designed to allow unprivileged users to run commands as privileged users according predefined policies. A temporary mitigation is to remove...
by EGI CSIRT | Feb 26, 2022 | Advisories, News
Heap buffer overflow vulnerability has been found in Linux kernel RHEL 8 and derivatives, CVE-2022-0185, in the legacy_parse_param function in the Filesystem Context functionality of the Linux kernel and the way it verifies the supplied parameters length which could...
by EGI CSIRT | Feb 21, 2022 | Advisories, News
A CRITICAL security flaw was detected in OSG XCache images published in DockerHub and OSG’s Harbor which could compromise the integrity and confidentiality of data on other containers for all varieties of XCache and XRootD standalone. Details are available in...
by EGI CSIRT | Feb 3, 2022 | News
The registration is open and the programme is available for the TF-CSIRT and FIRST Regional Symposium: 2-3 March 2022. Interesting lectures about the current computer security and threats, including analysing and hunting for recent log4j compromises and ransomware...
Recent Comments