Security Leftovers

posted by Roy Schestowitz on Dec 30, 2022

• What Is the CVE-2021-4034 Polkit Privilege Escalation Vulnerability? [Ed: Misattributing systemd problems to "Linux"]

  Linux is widely known as a highly secure operating system. However, like any other system software, it too can fall prey to loopholes and exploits, the worst of which are privilege escalation vulnerabilities that allow an adversary to elevate their permissions and potentially take over an entire organization.

  Polkit CVE-2021-4034 is a critical privilege escalation vulnerability that has gone unnoticed for over 12 years and affects all major Linux distributions. It is so devastating that a criticality rating of 8 was issued to the vulnerability. So, what exactly is Polkit CVE-2021-4034, and how can you fix it?

• Security updates for Thursday [LWN.net]

  Security updates have been issued by Debian (multipath-tools), Fedora (containerd and trafficserver), Gentoo (libksba and openssh), and SUSE (webkit2gtk3).

• 5 cybersecurity trends accelerating in 2023 [Ed: Microsoft Windows TCO]

  The return of malware strains like Emotet, Conti and Trickbot indicates an expansion of cybercrime for hire.

• CISA Adds Two Known Exploited Vulnerabilities to Catalog | CISA [Ed: JasperReports Library and JasperReports Server]

  CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise. Note: To view the newly added vulnerabilities in the catalog, click on the arrow in the "Date Added to Catalog" column, which will sort by descending dates.

• New data shows constant rise of new malware on Windows, Linux, MacOS and Android / Digital Information World

  According to their data, the company had received almost 70 million new malware samples on Windows.