Ubuntu Security Notice USN-5106-1

Discussion in 'News Aggregator' started by Packet Storm, 7 Oct 2021.

  1. Packet Storm

    Packet Storm Guest

    Ubuntu Security Notice 5106-1 - Valentina Palmiotti discovered that the io_uring subsystem in the Linux kernel could be coerced to free adjacent memory. A local attacker could use this to execute arbitrary code. It was discovered that the Linux kernel did not properly enforce certain types of entries in the Secure Boot Forbidden Signature Database protection mechanism. An attacker could use this to bypass UEFI Secure Boot restrictions. Various other issues were also addressed.

    Continue reading...
     

Share This Page

Loading...