The Linode Security Team

This week we discuss an escalation vulnerability in DirtyCred, an arbitrary code execution in PostgreSQL, and a vulnerability in Zoom.

This week, we discuss a race condition in the Linux kernel's memory subsystem, a path traversal vulnerability in UnRAR software, and more.

In this week’s security digest, we discuss vulnerabilities in Joplin, zlib, and the NVIDIA GPU display driver.

This week, we cover new OpenJDK vulnerabilities, a heap overflow vulnerability in Redis, and an arbitrary PHP code execution in Drupal core.

This week we cover vulnerabilities in Grafana 5.3 and pyenv and a denial-of-service vulnerability in Apache Tomcat.

This week, we discuss high-severity vulnerabilities in OpenSSL and Django. We also discuss the Kali Linux distribution now on Linode.

This week, we summarize a security vulnerability in the lelastic tool and recently discovered Panchan malware.

This week, we summarize Verizon’s Data Breach Investigation report for 2022 and a critical severity vulnerability in Confluence.

This week, we discuss issues and vulnerabilities discovered in open source projects including one within the Linux kernel netfilter subsystem.

This week, we discus a race condition in the Linux Perf subsystem, denial of service in BIND, and a Risk Assessment Calculator.

This week, we discuss high-severity vulnerabilities in Rubygems and Rsyslogs as well as the importance of defining secure coding practices.

This week, we discuss a Linux privilege escalation issue and vulnerabilities related to Rancher and Redis.