Linux

Linux Vulnerabilities of the Week: August 31, 2021 1. Improper Input Validation in Node.js (<16.6.0, 14.17.4, and 12.22.4) affecting Red Hat Enterprise Linux 8 Severity: Critical         CVSS Score: 9.8 Node. js is vulnerable to remote code execution, Cross-site scripting (XSS),...

Top Linux Vulnerabilities for August 2021 1. Apache httpd mod_session heap overflow affecting Red Hat Enterprise Linux 8 Severity: Critical CVSS Score: 9.8  In Apache HTTP Server versions 2.4.0 to 2.4.46 a specially crafted SessionHeader sent by an origin server could cause a heap...

Linux Vulnerabilities of the Week: August 9, 2021 1. Command injection vulnerability in RDoc 3.11 affecting Red Hat Enterprise Linux 8 Severity: Critical         CVSS Score: 9.8 This is an operating system command injection in RDoc. A remote unprivileged attacker can...

Linux Vulnerabilities of the Week: August 2, 2021 1. Out-of-bounds write in ANGLE in Google Chrome (< 91.0.4472.101)  Severity: Important   CVSS Score: 8.8 This is a flaw in ANGLE. Exploiting this vulnerability, a remote attacker can potentially perform out-of-bounds memory...

Linux Vulnerabilities of the Week: July 26, 2021 1. Out-of-bounds write in ANGLE in Google Chrome (< 91.0.4472.101) Severity: Important    CVSS Score: 8.8 This is a flaw in ANGLE. Exploiting this vulnerability, a remote attacker can potentially perform out-of-bounds memory...

Top Linux Vulnerabilities for July 2021 1. Apache httpd mod_session heap overflow affecting Red Hat Enterprise Linux 8 Severity: Critical         CVSS Score: 9.8 In Apache HTTP Server versions 2.4.0 to 2.4.46 a specially crafted SessionHeader sent by an origin server...

Linux Vulnerabilities of the Week: July 5, 2021 1. Apache httpd mod_session heap overflow affecting Red Hat Enterprise Linux 8 Severity: Critical         CVSS Score: 9.8 In Apache HTTP Server versions 2.4.0 to 2.4.46 a specially crafted SessionHeader sent by an...

Linux Vulnerabilities of the Week: June 28, 2021 1. Apache HTTP Server (2.4.0 to 2.4.46) vulnerability affecting Red Hat Enterprise Linux 8 Severity: Critical     CVSS Score: 9.8 This is a  flaw In Apache httpd mod_session. It allows a specially crafted...

Linux Vulnerabilities of the Week: June 21, 2021 1. The runc (<1.0.0-rc95) package vulnerability Severity: Important    CVSS Score: 8.5 The runc package is vulnerable to a symlink exchange attack. To exploit the vulnerability, an attacker must create multiple containers with...

Linux Vulnerabilities of the Week: June 14, 2021 1. The libX11 (<1.7.1) missing validation flaw affecting Red Hat Enterprise Linux 7 and 8 Severity: Critical         CVSS Score: 9.8 Exploiting this vulnerability, an attacker can inject X11 protocol commands on X...