Ike.ninja » 2025 » July » 30

Archive for July 30th, 2025

6 results.

Ubuntu 22.04 LTS Linux Kernel Azure Critical Flaws CVE-2025-37890

Jul30

by Ike on July 30, 2025 at 7:59 pm

Posted In: Ubuntu Linux Distribution - Security Advisories

Ubuntu 22.04 LTS Azure kernel critical issues

Several security issues were fixed in the Linux kernel.

└ Tags: Ubuntu Linux Distribution - Security Advisories

Debian: Firefox Critical Memory Leak Priv Esc Info Discl DSA-5970-1

Jul30

by Ike on July 30, 2025 at 6:55 pm

Posted In: Debian Linux Distribution - Security Advisories

Debian Security Advisory for Chromium Vulnerability Updates

Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure.

└ Tags: Debian Linux Distribution - Security Advisories

Ubuntu 25.04: Cloud-Init Critical Root Access Issues USN-7677-1

Jul30

by Ike on July 30, 2025 at 11:31 am

Posted In: Ubuntu Linux Distribution - Security Advisories

Cloud-Init Vulnerabilities in Ubuntu Security Notice

Several security issues were fixed in cloud-init.

└ Tags: Ubuntu Linux Distribution - Security Advisories

Critical Buffer Overflow Patch in Fedora 41 for Cloud-Init CVE-2024-11584

Jul30

by Ike on July 30, 2025 at 2:03 am

Posted In: Fedora Linux Distribution - Security Advisories

Fedora 41 cloud-init security patch overview

Backport fixes for CVE-2024-6174 and CVE-2024-11584 cloud-init included the systemd socket unit cloud-init-hotplugd.socket with default SocketMode that grants 0666 permissions, making it world-writable. An unprivelege user could trigger hotplug-hook commands (CVE-2024-11584) When a non-x86 platform is detected, cloud-init granted root access to a

└ Tags: Fedora Linux Distribution - Security Advisories

Fedora 42: Important Permission Issues in cloud-init with CVE-2024-6174

Jul30

by Ike on July 30, 2025 at 1:51 am

Posted In: Fedora Linux Distribution - Security Advisories

Cloud-init update notification for Fedora 42.

Backport fixes for CVE-2024-6174 and CVE-2024-11584 cloud-init included the systemd socket unit cloud-init-hotplugd.socket with default SocketMode that grants 0666 permissions, making it world-writable. An unprivelege user could trigger hotplug-hook commands (CVE-2024-11584) When a non-x86 platform is detected, cloud-init granted root access to a

└ Tags: Fedora Linux Distribution - Security Advisories

Fedora 42: Chromium Critical Type Confusion CVE-2025-8010 Advisory

Jul30

by Ike on July 30, 2025 at 1:37 am

Posted In: Fedora Linux Distribution - Security Advisories

Fedora 42 Chromium CVE-2025-8010 update advisory

Update to 138.0.7204.168 CVE-2025-8010: Type Confusion in V8 CVE-2025-8011: Type Confusion in V8

└ Tags: Fedora Linux Distribution - Security Advisories

Posts

51 queries. 8.75 mb Memory usage. 0.403 seconds.