[Bug 1857894] CVE-2020-15780 kernel: injection of malicious ACPI tables via configfs can be used to bypass lockdown and secure boot restrictions

Author:Source July 16, 2020

An issue was discovered in drivers/acpi/acpi_configfs.c in the Linux kernel before 5.7.7. Injection of malicious ACPI tables via configfs could be used by attackers to bypass lockdown and secure boot restrictions. Reference and upstream commit:

Created kernel tracking bugs for this issue: Affects:….

Source link

 Category Operating Systems

RedHat: RHSA-2020-5170:01 Moderate: Red Hat JBoss Web Server 5.4 security>

Source

November 23, 2020

Updated Red Hat JBoss Web Server 5.4.0 packages are now available for Red Hat Enterprise...

 Category Operating Systems

xuucms 3 SQL Injection – CXSecurity.com

Source

November 22, 2020

# Exploit Title: xuucms 3 – ‘keywords’ SQL Injection # Date: 2020-11-18 # Exploit Author:...

 Category Operating Systems

SUSE: 2020:3473-1 moderate: ceph>

Source

November 21, 2020

An update that solves one vulnerability, contains two features and has 23 fixes is now...

 Category Operating Systems

Odyssey Jailbreak for iOS 13.0-13.7 [IPA DOWNLOAD]

Source

November 20, 2020

The Odyssey developer team has released a pre-release build of its iOS 13 jailbreak. Here’s...

 Category Operating Systems

Bugs στο Webex επιτρέπουν σε χάκερς την είσοδο σε meetings!

Source

November 19, 2020

Η Cisco διόρθωσε χθες τρία bugs στο Webex Meetings που θα μπορούσαν να επιτρέψουν σε...

 Category Operating Systems

Tor Browser: Desktop-Version 10.0.5 mit Firefox-Sicherheitsupdates verfügbar

Source

November 18, 2020

Die Entwickler des anonymisierenden Tor Browsers haben dessen Firefox ESR-Basis aktualisiert. Als Resultat ist seit...

 Category Operating Systems

Aerospike Database 5.1.0.3 – OS Command Execution

Source

November 17, 2020

# Exploit Title: Aerospike Database 5.1.0.3 - OS Command Execution # Date: 2020-08-01 # Exploit...

 Category Operating Systems

Vulnerability Node Core: buffer overflow via fs.realpath.native

Source

November 16, 2020

Synthesis of the vulnerability An attacker can trigger a buffer overflow via fs.realpath.native of Node...

 Category Operating Systems

CVE-2020-16009 Google Chrome 缓冲区错误漏洞 -漏洞情报、漏洞详情、安全漏洞、CVE

Source

November 15, 2020

V8: Turbofan fails to deoptimize code after map deprecation, leading to type confusion NOTE: We...

 Category Operating Systems

Vulnerability Linux kernel via expand_downwards

Source

November 14, 2020

The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a...



RiteCMS 2.2.1 – Remote Code Execution Arunkumar Krishna – SOC Prime

[Bug 1857894] CVE-2020-15780 kernel: injection of malicious ACPI tables via configfs can be used to bypass lockdown and secure boot restrictions

RedHat: RHSA-2020-5170:01 Moderate: Red Hat JBoss Web Server 5.4 security>

xuucms 3 SQL Injection – CXSecurity.com

SUSE: 2020:3473-1 moderate: ceph>

Odyssey Jailbreak for iOS 13.0-13.7 [IPA DOWNLOAD]

Bugs στο Webex επιτρέπουν σε χάκερς την είσοδο σε meetings!

Tor Browser: Desktop-Version 10.0.5 mit Firefox-Sicherheitsupdates verfügbar

Aerospike Database 5.1.0.3 – OS Command Execution

Vulnerability Node Core: buffer overflow via fs.realpath.native

CVE-2020-16009 Google Chrome 缓冲区错误漏洞 -漏洞情报、漏洞详情、安全漏洞、CVE

Vulnerability Linux kernel via expand_downwards

Call Center
+31 55 8448040

Location

International Cyber Crime Investigation

Digitpol is licensed by the Ministry of Justice: Licence Number POB1557

RELATED STORIES

Call Center +31 55 8448040

Location

International Cyber Crime Investigation

Digitpol is licensed by the Ministry of Justice: Licence Number POB1557

Call Center
+31 55 8448040