Rewterz

Rewterz Threat Alert – Outlook Web Mail Phishing Email Asks Targets to Manage Undelivered Email

June 3, 2019
Rewterz

Rewterz Threat Alert – Eight Exploits Used in BlackSquid Attacks

June 10, 2019

Rewterz Threat Advisory – CVE-2018-16871 – Linux Kernel “nfsd4_verify_copy()” Vulnerability

Severity

Medium

Analysis Summary

An error within the “nfsd4_verify_copy()” function (fs/nfsd/nfs4proc.c) can be exploited to trigger a NULL pointer deference and subsequently crash the NFS server.

Impact

Denial of Service

Affected Vendors

Linux

Affected Products

  • Linux Kernel 4.9.x
  • Linux Kernel 4.14.x
  • Linux Kernel 4.19.x

Remediation

Update to a fixed version.

Versions 4.19.x:

Update to version 4.19.3 or later.

Versions 4.14.x:

Update to version 4.14.82 or later.

Versions 4.9.x:

Update to version 4.9.138 or later.

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.