CVE-2021-34392
Trusty TLK contains a vulnerability in the NVIDIA TLK kernel where an integer overflow in the tz_map_shared_mem function can bypass boundary checks, which might lead to denial of service.
Similar Posts
One million stolen credit cards leaked to promote carding market
A threat actor is promoting a new criminal carding marketplace by releasing one million credit cards stolen between 2018 and 2019 on hacking forums. Carding is the trafficking and use of stolen credit cards. These credit cards are stolen through point-of-sale malware, magecart attacks on websites, and information stealing trojans. These stolen credit cards are then sold on…
ISMG Editors’ Panel: Hot Cybersecurity Issues
3rd Party Risk Management , Endpoint Security , Governance & Risk Management Exchange Hacks, Insider Threats and More Anna Delaney (annamadeline) • March 26, 2021 Clockwise, from top left: Nick Holland, Anna Delaney, Mathew Schwartz and Tom Field Four editors at Information Security Media Group discuss the latest cybersecurity…
US announces new security directive after critical pipeline hack
The US Department of Homeland Security (DHS) has announced new pipeline cybersecurity requirements after the largest fuel pipeline in the United States was forced to shut down operations in early May following a ransomware attack. The new security directive requires critical pipeline owners and operators to report any confirmed and potential cybersecurity incidents to the Cybersecurity and Infrastructure Security…
Tech companies pledge billions in cybersecurity investments
Some of the country’s leading technology companies have committed to investing billions of dollars to strengthen cybersecurity defences and to train skilled workers, the White House has announced, following President Joe Biden’s private meeting with top executives. The gathering was held Wednesday during a relentless stretch of ransomware attacks that have targeted critical…
Tracking DarkSide Ransomware Gang’s Profits
Forensics , Fraud Management & Cybercrime , Next-Generation Technologies & Secure Development Elliptic Says It Traced Payments by Colonial Pipeline and Many Others Doug Olenick (DougOlenick) • May 18, 2021 Ransom payment amounts generated by DarkSide ransomware (Source: Elliptic) The DarkSide ransomware gang apparently collected over $90 million in ransom payments from about…
Hundreds of Millions of Dell Computers Potentially …
Hardware maker has issued an update to fix multiple critical privilege escalation vulnerabilities that have gone undetected since 2009. Hundreds of millions of Dell laptops, notebooks, and tablets are at risk of compromise from a set of five high-severity flaws that have been undetected since at least 2009. The flaws allow an attacker who already has…