by EGI CSIRT | Aug 9, 2024 | News, Recommendations
Many sites use Docker for development or to provide automated deployment of software or containers via Gitlab runners or similar solutions. In the past weeks have seen some incidents related to Docker API misconfiguration and would like to address the security...
by EGI CSIRT | Aug 5, 2024 | News
It has been reported that there is a vulnerability in the Slurm interconnect plugin switch/hpe_slingshot, which leverages the capabilities of Slingshot interconnect. There is a problem with isolating the communication from other channels. Same issue with...
by EGI CSIRT | Jul 30, 2024 | Advisories, News
A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks. For further details, please...
by EGI CSIRT | Jun 17, 2024 | News
There is a critical zero click vulnerability in Microsoft Outlook, CVE-2024-30103, which enables remote code execution. When exploited, this vulnerability can enable an attacker to execute arbitrary code on the system, leading to data breaches, unauthorised access and...
by EGI CSIRT | Jun 17, 2024 | News
France Grilles GIS organised a technical workshop from 3 to 5 June 2024. Baptiste Grenier, Senior Service Delivery Officer and Information Security Manager at the EGI Foundation, also member of EGI CSIRT, took part in the meeting with a presentation during the “Le...
by EGI CSIRT | Jun 7, 2024 | Activities, News
A HIGH risk vulnerability CVE-2024-2961 has been found concerning glibc where an out-of-bounds write flaw in the ISO-2022-CN-EXT plugin for glibc’s iconv library may allow remote code execution See: https://advisories.egi.eu/Advisory-EGI-SVG-2024-10
Recent Comments