Cybersecurity information flow

Red Hat Security Advisory 2024-2377-03 - An update for zziplib is now available for Red Hat Enterprise Linux 9.

" 红帽安全公告2024-2377-03 - 针对红帽企业Linux 9的zziplib更新现已可用。"

Red Hat Security Advisory 2024-2387-03 - An update for mod_jk and mod_proxy_cluster is now available for Red Hat Enterprise Linux 9. Issues addressed include cross site scripting and information leakage vulnerabilities.

" 红帽安全公告2024-2387-03 - 针对Red Hat Enterprise Linux 9的mod_jk和mod_proxy_cluster更新现已可用。解决的问题包括跨站脚本和信息泄漏漏洞。"

Red Hat Security Advisory 2024-2394-03 - An update for kernel is now available for Red Hat Enterprise Linux 9. Issues addressed include code execution, double free, integer overflow, memory exhaustion, memory leak, null pointer, out of bounds access, out of bounds read, out of bounds write, privilege escalation, and use-after-free vulnerabilities.

" 红帽安全公告2024-2394-03 - 针对Red Hat Enterprise Linux 9的kernel更新现已可用。解决的问题包括代码执行、双释放、整数溢出、内存耗尽、内存泄漏、空指针、越界访问、越界读取、越界写入、权限提升以及使用后释放漏洞。"

Red Hat Security Advisory 2024-2396-03 - An update for squashfs-tools is now available for Red Hat Enterprise Linux 9. Issues addressed include a traversal vulnerability.

" 红帽安全公告2024-2396-03 - 现已为红帽企业Linux 9提供squashfs-tools更新。解决的问题包括一个遍历漏洞。"

Red Hat Security Advisory 2024-2410-03 - An update for harfbuzz is now available for Red Hat Enterprise Linux 9.

" 红帽安全公告2024-2410-03 - Harfbuzz 的更新现已适用于 Red Hat Enterprise Linux 9。"

Red Hat Security Advisory 2024-2433-03 - An update for avahi is now available for Red Hat Enterprise Linux 9.

" 红帽安全公告2024-2433-03 - 适用于红帽企业Linux 9的avahi更新现已可用。"

Red Hat Security Advisory 2024-2437-03 - An update for exfatprogs is now available for Red Hat Enterprise Linux 9.

" 红帽安全公告2024-2437-03 - 现已为红帽企业Linux 9提供exfatprogs更新。"

Red Hat Security Advisory 2024-2438-03 - An update for pam is now available for Red Hat Enterprise Linux 9.

" 红帽安全公告2024-2438-03 - 现已为红帽企业Linux 9提供pam更新。"

Red Hat Security Advisory 2024-2447-03 - An update for openssl and openssl-fips-provider is now available for Red Hat Enterprise Linux 9. Issues addressed include a denial of service vulnerability.

" 红帽安全公告2024-2447-03 - 针对Red Hat Enterprise Linux 9的openssl和openssl-fips-provider更新现已可用。解决的问题包括一个拒绝服务漏洞。"

Red Hat Security Advisory 2024-2456-03 - An update for grub2 is now available for Red Hat Enterprise Linux 9. Issues addressed include code execution, out of bounds read, and out of bounds write vulnerabilities.

" 红帽安全公告2024-2456-03 - 针对红帽企业Linux 9的grub2更新现已可用。解决的问题包括代码执行、越界读取和越界写入漏洞。"

Red Hat Security Advisory 2024-2463-03 - An update for systemd is now available for Red Hat Enterprise Linux 9.

" 红帽安全公告2024-2463-03 - 现已为红帽企业Linux 9提供systemd更新。"

Red Hat Security Advisory 2024-2483-03 - An update for traceroute is now available for Red Hat Enterprise Linux 9.

" 红帽安全公告2024-2483-03 - 适用于红帽企业Linux 9的traceroute更新现已可用。"

Red Hat Security Advisory 2024-2504-03 - An update for libssh is now available for Red Hat Enterprise Linux 9.

" 红帽安全公告2024-2504-03 - 适用于红帽企业Linux 9的libssh更新现已可用。"

Red Hat Security Advisory 2024-2512-03 - An update for file is now available for Red Hat Enterprise Linux 9. Issues addressed include a buffer over-read vulnerability.

" 红帽安全公告2024-2512-03 - Red Hat Enterprise Linux 9文件的更新现已可用。解决的问题包括缓冲区溢出漏洞。"

Red Hat Security Advisory 2024-2517-03 - An update for wpa_supplicant is now available for Red Hat Enterprise Linux 9. Issues addressed include a bypass vulnerability.

" 红帽安全公告2024-2517-03 - 针对红帽企业Linux 9的wpa_supplicant更新现已可用。解决的问题包括一个绕过漏洞。"

Red Hat Security Advisory 2024-2525-03 - An update for mingw-pixman is now available for Red Hat Enterprise Linux 9. Issues addressed include integer overflow and out of bounds write vulnerabilities.

" 红帽安全公告2024-2525-03 - 现已为红帽企业Linux 9提供mingw-pixman更新。解决的问题包括整数溢出和越界写入漏洞。"

Red Hat Security Advisory 2024-2528-03 - An update for mingw-glib2 is now available for Red Hat Enterprise Linux 9.

" 红帽安全公告2024-2528-03 - 现已为红帽企业Linux 9提供mingw-glib2更新。"

Ubuntu Security Notice 6757-1 - It was discovered that PHP incorrectly handled PHP_CLI_SERVER_WORKERS variable. An attacker could possibly use this issue to cause a crash or execute arbitrary code. This issue only affected Ubuntu 20.04 LTS, and Ubuntu 22.04 LTS. It was discovered that PHP incorrectly handled certain cookies. An attacker could possibly use this issue to cookie by pass.

" Ubuntu安全通知6757-1 - 发现PHP错误地处理了PHP_CLI_SERVER_WORKERS变量。攻击者可能利用此问题导致崩溃或执行任意代码。此问题仅影响Ubuntu 20.04 LTS和Ubuntu 22.04 LTS。发现PHP错误地处理了某些cookie。攻击者可能利用这个问题绕过cookie。"

Ubuntu Security Notice 6759-1 - It was discovered that FreeRDP incorrectly handled certain memory operations. If a user were tricked into connecting to a malicious server, a remote attacker could possibly use this issue to cause FreeRDP to crash, resulting in a denial of service.

" Ubuntu安全通知6759-1 - 发现FreeRDP在处理某些内存操作时存在错误。如果用户被诱骗连接到恶意服务器，远程攻击者可能利用此问题导致FreeRDP崩溃，从而导致服务拒绝。"

Ubuntu Security Notice 6761-1 - It was discovered that Anope did not properly process credentials for suspended accounts. An attacker could possibly use this issue to normally login to the platform as a suspended user after changing their password.

" Ubuntu安全通知6761-1 - 发现Anope未能正确处理暂停账户的凭据。攻击者可能利用此问题在更改密码后以暂停用户身份正常登录平台。"

Ubuntu Security Notice 6758-1 - It was discovered that the JSON5 parse method incorrectly handled the parsing of keys named __proto__. An attacker could possibly use this issue to pollute the prototype of the returned object, setting arbitrary or unexpected keys, and cause a denial of service, allow unintended access to network services or have other unspecified impact, depending on the application's use of the module.

" Ubuntu安全通知6758-1 - 发现JSON5解析方法错误地处理了名为__proto__的键的解析。攻击者可能利用此问题污染返回对象的原型，设置任意或意外的键，导致服务拒绝，允许非预期的网络服务访问或产生其他未指明的影响，具体取决于应用程序如何使用该模块。"

osCommerce version 4 suffers from a cross site scripting vulnerability. Original discovery of cross site scripting in this version is attributed to CraCkEr in November of 2023.

" osCommerce 4 版本存在跨站脚本漏洞。该版本中跨站脚本的原始发现归功于于2023年11月的 CraCkEr。"

This is the full Windows privilege escalation exploit produced from the blog Exploiting the NT Kernel in 24H2: New Bugs in Old Code and Side Channels Against KASLR.

" 这是根据博客《在24H2中利用NT内核：旧代码中的新漏洞和针对KASLR的侧通道》发布的完整Windows权限提升漏洞利用。"

Proof of concept code that demonstrates how the Windows kernel suffers from a privilege escalation vulnerability due to a double-fetch in NtQueryInformationThread that leads to an arbitrary write.

" 概念证明代码，展示了Windows内核由于NtQueryInformationThread中的双fetch而导致特权升级漏洞，进而引发任意写入。"

Proof of concept code that demonstrates how the Windows kernel suffers from a privilege escalation vulnerability due to a double-fetch in PspBuildCreateProcessContext that leads to a stack buffer overflow.

" 概念验证代码，展示了Windows内核由于PspBuildCreateProcessContext中的双fetch操作而导致特权升级漏洞，进而引发堆栈缓冲区溢出的现象。"

A sophisticated, covert Windows-based credential dumper using C++ and MASM x64.

Dump lsass using only Native APIs by hand-crafting Minidump files (without MinidumpWriteDump!)

大型语言模型安全风险的基准评估套件 https://mp.weixin.qq.com/s/aomDE-_l0H25HY2anOU2bg
利用ChatGPT辅助静态分析 https://mp.weixin.qq.com/s/0mNumRh4voA2FVsOcW9WDQ