Rewterz

Rewterz Threat Advisory – Security Updates for Mozilla Firefox

May 6, 2020
Rewterz

Rewterz Threat Alert – New Linux Malware – Kaiji

May 6, 2020

Rewterz Threat Advisory – CVE-2020-12114 – Linux Kernel Denial of Service Vulnerability

Severity

Medium

Analysis Summary

Linux Kernel is vulnerable to a denial of service, caused by a pivot_root race condition in fs/namespace.c. By corrupting a mountpoint reference counter, a local attacker could exploit this vulnerability to cause a system panic.

Impact

Denial of service

Affected Vendors

Linux

Affected Products

Linux Kernel 4.4.22
Linux Kernel 5.2
Linux Kernel 4.9.22
Linux Kernel 4.14.177
Linux Kernel 4.19.118

Remediation

Refer to Linux Kernel GIT Repository for upgraded patch.https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?h=v4.19.119&id=f511dc75d22e0c000fc70b54f670c2c17f5fba9a 

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.