Category Archives: Linux

Patch Microsoft Azure vulnerabilities OMIGOD in Linux VMs

[German]Those responsible for Linux VMs under Microsoft Azure need to react immediately. Management agents have been silently installed, that have RCE and LPE vulnerabilities. The vulnerability, called OMIGOD, must be patched manually because there is no Azure update mechanism. Advertising

Posted in Cloud, Linux, Security, Update | Tagged , , , , | Leave a comment

Advertising

Vulnerability CVE-2021-3773 in OpenVPN-Clients (Linux, FreeBSD)

[German]A privilege escalation vulnerability CVE-2021-3773 exists in the Linux and FreeBSD OpenVPN clients. The issue occurs in the OpenVPN use of Netfilter for NAT on Linux and FreeBSD 13, OpenVPN, and natd. A detailed technical report can be found on … Continue reading

Posted in Linux, Security | Tagged , | Leave a comment

LemonDuck and LemonCat malware boost activity

[German]LemonDuck and LemonCat is malware that both acts as a bot and mines crypto-money. LemonDuck can run on different platforms (Linux, Windows), threatening machines on corporate networks. According to Microsoft, this malware has been poorly documented so far, which is … Continue reading

Posted in Linux, Security, Windows | Tagged , , , | Leave a comment

Sequoia: LPE Vulnerability CVE-2021-33909 in Linux

[German]Security researchers from Qualsys have discovered a Local Privilege Escalation (LPE) vulnerability CVE-2021-33909 in the filesystem layer of the Linux kernel. In addition, a second vulnerability CVE-2021-33910 has been discovered. Linux distributions such as Debian, Fedora and Ubuntu are vulnerable … Continue reading

Posted in Linux, Security | Tagged , | Leave a comment

Linux Mint 20.2

[German]The team of maintainers of Linux Mint have just announced the availability of Mint 20.2. Linux Mint 20.2 (Uma) is a Long-Term Support release that will be supported until 2025. It comes with updated software and brings refinements and many … Continue reading

Posted in Linux | Tagged | Leave a comment

Advertising

DarkRadiation Ransomware targets Linux (Red Hat, Debian & Co.)

[German]A ransomware called DarkRadiation targets Linux systems from Red Hat, CentOS or Debian-based distributions. Security vendor Trend Micro points this out in a new blog post. The malware does so using tools to detect the environment and then spread laterally … Continue reading

Posted in Linux, Security | Tagged , , | Leave a comment

Microsoft switches internally to Linux

Microsoft internally wants to change its systems (servers, but also clients) to Linux in the medium future. So Windows will be phased out in the long run – they are only considering to port a part of the GUI and … Continue reading

Posted in Linux | Tagged | 4 Comments

Spectre Exploits for Linux and Windows found on VirusTotal

[German] A security researcher has found working exploits for Linux and Windows on VirusTotal that exploit the Spectre vulnerability discovered in CPUs in 2018. But the exploits only work against unpatched systems, are already detected by virus scanners, and have … Continue reading

Posted in Linux, Security, Windows | Tagged | Leave a comment

Advertising

Linux OS secretly installs Microsoft repo on Raspberry Pi

[German]Nasty  story or technical necessary? In the Raspberry Pi community, there is a shit storm, after an update of the Raspbian operating system secretly installed a Microsoft repo. This repo triggers a ping on a Microsoft server with every update. … Continue reading

Posted in Linux, Security | Tagged , | Leave a comment

Linux: Bug in Sudo allows privilege escalation

[German]Security researchers at Qualsys have discovered a vulnerability (CVE-2021-3156) in the BSD/Linux Sudo command. Due to a heap overflow, attackers with normal privileges could achieve privilege escalation to root. However, updates for the vulnerability are now available from major Linux … Continue reading

Posted in Linux, Security | Tagged , | Leave a comment