Security: Updates, Mitigations, Myths, DNS/IPFire and Huawei

-
Security updates for Wednesday
Security updates have been issued by CentOS (spice-gtk), Debian (libemail-address-list-perl), openSUSE (chromium, libqt5-qtbase, nginx, systemd, and wicked), Oracle (spice-gtk), Slackware (firefox and thunderbird), and Ubuntu (libexif and Yubico PIV Tool).
-
Mitigations are attack surface, too
This blog post discusses a bug leading to memory corruption in Samsung's Android kernel (specifically the kernel of the Galaxy A50, A505FN - I haven't looked at Samsung's kernels for other devices). I will describe the bug and how I wrote a (very unreliable) exploit for it. I will also describe how a second vulnerability, which had long been fixed in the upstream kernel, the upstream stable releases, and the Android common kernel, but not in Samsung's kernel, aided in its exploitation.
If you want to look at the corresponding source code yourself, you can download Samsung's kernel sources for the A505FN from here. The versions seem to be sorted such that the newer ones are at the top of the list; A505FNXXS3ASK9 is the newest one at the time of writing, corresponding to the November 2019 security patch level.
-
What to know about open source security
Many companies have a preference towards open source technology, so what should be kept in mind in regards to ensuring its security?
-
Enhancements to our DNS Resolver
Today, we have taken some important changes on our DNS Resolver into production. Having released support for DNS-over-TLS in 2018, we have now added TCP Fast Open and TLSv1.3.
Lightning Wire Labs is managing a DNS Resolver to provide an alternative to the large corporation who are trying to get the global DNS system under their control and use it for marketing purposes.
To not fall behind the technical development, we have now enabled some new features on our resolver to make it ready for the new DNS changes that are going to land with IPFire 2.25 - Core Update 141 very soon.
-
U.S. Officials Say Huawei Can Covertly Access Telecom Networks
Huawei can covertly access mobile networks through back doors meant for law enforcement, the U.S. has told allies in a bid to show that the firm poses a security threat.
U.S. officials say Huawei Technologies Co. can covertly access mobile-phone networks around the world through “back doors” designed for use by law enforcement, as Washington tries to persuade allies to exclude the Chinese company from their networks.
-
- Login or register to post comments
Printer-friendly version
- 3331 reads
PDF version
More in Tux Machines
- Highlights
- Front Page
- Latest Headlines
- Archive
- Recent comments
- All-Time Popular Stories
- Hot Topics
- New Members
How to Get Install Docker On Ubuntu 20.04 LTS
Docker is an Open source technology that allows you to install an run application on several containers (machine) without Interfering with the host or other containers technology is similar to Virtualization, but it is more portable and easy to use.
What is the type of Docker are available?
There is two types of Docker are available Docker CE (Community Edition) and Docker EE (Enterprise Edition).
| today's howtos
|
Contributing to KDE is easier than you think – Bug triaging
Today, 2021-01-28, is the Plasma Beta Review Day for Plasma 5.21, that is to say, Plasma 5.20.90. Right now it’s a bit after 2 a.m., so after this I’m going to bed so I can be present later.
This month I’ve mostly been enjoying my post-job vacation as last year I was bordering burnout. As such I didn’t help much.
Before bed I’ll be providing a few things I’ve learned about triaging, though. While this blog post isn’t specifically about the Beta Review Day, this should make the general bug triaging process clearer for you, making it quite timely.
| Audiocasts/Shows: Coder Radio, TLLTS, and FLOSS Weekly
|
Recent comments
1 min ago
3 hours 53 min ago
6 hours 35 min ago
8 hours 12 min ago
8 hours 13 min ago
8 hours 14 min ago
8 hours 15 min ago
8 hours 16 min ago
8 hours 55 min ago
14 hours 56 min ago