CVE-2021-34392
Trusty TLK contains a vulnerability in the NVIDIA TLK kernel where an integer overflow in the tz_map_shared_mem function can bypass boundary checks, which might lead to denial of service.
Similar Posts
CISA Warns of Holiday Ransomware Attacks
Fraud Management & Cybercrime , Next-Generation Technologies & Secure Development , Ransomware Before Labor Day, Agency Cites Recent Attacks Centered on Holiday Weekends Doug Olenick (DougOlenick) • September 1, 2021 Citing damaging ransomware attacks that it, along with the FBI, has observed over recent holidays, the Cybersecurity and Infrastructure Security Agency issued an…
Cyberattack prompts shutdown of major fuel pipeline in the US
One of the largest pipelines in the US has been taken offline by its operator following a cyberattack. First reported by the New York Times, Colonial Pipeline, which carries 45 percent of the fuel supplies for the eastern US, said in a statement late Friday that it took “certain systems offline to contain the threat,…
Hackers breached four prominent underground cybercrime forumsSecurity Affairs
A suspicious wave of attacks resulted in the hack of four cybercrime forums Verified, Crdclub, Exploit, and Maza since January. Since January, a series of mysterious cyberattacks that resulted in the hack of popular Russian-language cybercrime forums. Unknown threat actors hacked the Verified forum in January, Crdclub in February, and Exploit and Maza in March,…
Команда 0patch предлагает бесплатные микропатчи для PrintNightmare
Выявлена новая вредоносная кампания, инициатором которой предположительно является северокорейская APT-группа Lazarus. Злоумышленники рассылают поддельные письма, предлагая инженерную должность в крупной американской или европейской компании. В AT&T Cybersecurity (ранее AlienVault) проанализировали три образца вредоносных документов Word, распространявшихся в мае и июне от имени Airbus, General Motors и германского производителя военной техники Rheinmetall. Оказалось, что все эти…
Assessing AI Security Solutions: Questions to Ask
Artificial Intelligence & Machine Learning , Next-Generation Technologies & Secure Development Nat Smith of Gartner Offers Advice on Cutting Through the Hype Anna Delaney (annamadeline) • August 13, 2021 Nat Smith, senior director security analyst, Gartner Nat Smith, senior director security analyst at Gartner, describes what factors potential buyers…
Pearson Slammed for Breach – Wasn’t Just ‘Data Exposure’
Breach Notification , Governance & Risk Management , Incident & Breach Response Firm Pays $1 Million Settlement After Regulator Says It Misled Investors and Victims Mathew J. Schwartz (euroinfosec) • August 17, 2021 When is a data exposure not just a data exposure? See Also: Forrester Consulting: Strained Relationship Between Security and IT…