· @just4fun
4 followers · 377 posts · Server mastodon.social
Redhotcyber · @redhotcyber
294 followers · 271 posts · Server mastodon.bida.im
Una vulnerabilità con score 10 sul Kernel Linux è stata scoperta
Nel modulo #ksmbd è stata scoperta una #vulnerabilità critica del #kernel #Linux estremamente pericolosa.
Ha ricevuto l’identificativo CVE-2022-47939 e 10 punti su 10 possibili nella scala #CVSS. Ksmbd è un modulo del kernel Linux che implementa un file #server basato sul protocollo #SMB3 per lo scambio di file utilizzando lo #standard Samba.
Gli #esperti raccomandano agli amministratori che utilizzano ksmbd di aggiornare il kernel Linux alla versione 5.15.61 o successiva.
#redhotcyber #informationsecurity #ethicalhacking #dataprotection #hacking #cybersecurity #cybercrime #cybersecurityawareness #cybersecuritytraining #cybersecuritynews #privacy #infosecurity
#infosecurity #privacy #CyberSecurityNews #cybersecuritytraining #CyberSecurityAwareness #cybercrime #cybersecurity #hacking #dataprotection #ethicalhacking #informationsecurity #redhotcyber #esperti #standard #smb3 #server #cvss #linux #kernel #vulnerabilità #ksmbd
Justin :clippy: · @shearsjt
34 followers · 371 posts · Server mastodon.social
Edd · @iMeddles
14 followers · 98 posts · Server mastodon.eddmil.esThe lack of co-ordinated disclosure on ZDI-22-1690 is appalling. IT'S THREE DAYS BEFORE CHRISTMAS YOU ABSOLUTE IDIOTS, GET IT TOGETHER. I literally don't know if this is 5 mins work tomorrow, or if my Christmas just disappeared. It's complete insanity. https://www.zerodayinitiative.com/advisories/ZDI-22-1690/
dwm · @dwm
117 followers · 60 posts · Server mastodon.socialCVSS 10.0 RCE in Linux kernel ksmbd component:
https://www.zerodayinitiative.com/advisories/ZDI-22-1690/
Appears to have been patched in 5.15.61 in August, so anyone keeping up with upstream security patches ought to be okay?
Fix in upstream commit cf6531d98190fa2cf92a6d8bbc8af0a4740a223c
No CVE appears to as yet have been assigned. (Which is somewhat upsetting given this bug was spotted and fixes 6 months ago!)
#ksmbd #linux #security #vulnerability