A researcher has discovered a data broker had stored 644,869 PDF files in a publicly accessible cloud storage container.

A researcher has discovered a data broker had stored 644,869 PDF files in a publicly accessible cloud storage container.

The 713.1 GB container (an Amazon S3 bucket ) did not have password-protection, and the data was left unencrypted, so anybody who stumbled on them could read the files. The files not only contained thousands of people’s vehicle records (license plate and VIN) and property ownership reports, but also criminal histories, and background checks.

The majority of the records were labelled as background checks which contained full names, home addresses, phone numbers, email addresses, employment history, family members, social media accounts, and criminal record history.

Data brokers collect and sell your information, including financial, personal, behavior and interests, for profit. SL Data Services markets itself as a provider of real estate information reports. But when the researcher contacted its support team, they stated the company also provides criminal checks, division of motor vehicles (DMV) records, death and birth records.

Probably to organize the data to this end, the folders inside the container all had names of separate website domains. The company apparently operates a network of an estimated 16 different websites, offering a range of information services (e.g. PropertyRec).

Background checks can and are often done without the subject’s awareness. But with all the combined information about a person, it paints a very complete picture that insurance companies, advertisers, and even cybercriminals can use to their advantage.

The researcher explained:

> “I am not stating nor implying that Propertyrec’s customers or any individuals are at risk of impersonation, spear phishing, or social engineering attacks, I am only providing a real world risk scenario of how this type of information could possibly be exploited by criminals.”

And to make things worse—if possible– the files had names that used the following format: “First\_Middle\_Last\_State.PDF.” Which makes it incredibly easy for anyone, whether they are supposed to have access or not, to find a person of interest and read that file.

It took the researcher quite a few calls and emails to get the exposed data taken out of public sight, and SL Data Services never provided the researcher with a response, let alone an explanation how this could happen.

**Don’t give up your information, remove it where you can**

Unfortunately, incidents like this are commonplace, so it’s clear that we should take it upon ourselves to make sure our information can’t be found by data brokers.

Removing your personal information from data broker sites can be a complex and time-consuming process. While manual opt-outs are effective, they require considerable effort to keep up with new data entries and the reappearance of your information on various sites. This is where data broker removal services come in handy. 

Data broker removal services are designed to automate the process of finding and removing your personal information from data broker databases. These services regularly scan known databases for your information and submit opt-out requests on your behalf, ensuring a more comprehensive and continuous protection of your privacy. 

Malwarebytes offers a Personal Data Remover service (US only) that can delete your information from search results, spam lists, people search sites, data brokers, and more.

 Data broker exposes 600,000 sensitive files including background checks 

Amazon Web Services' identity and access management platform has added new features that help developers implement secure, scalable, and customizable authentication solutions for their applications.

Source: GK Images via Alamy Stock Photo

Amazon Web Services (AWS) has announced updates to Amazon Cognito, its identity and access management service for Web and mobile applications. The service allows developers to secure machine-to-machine authentication, enable role-based access to AWS resources, and create sign-in and sign-up experiences in applications. 

Cognito now supports passwordless login with managed login, enabling users to integrate passwordless authentication methods, including passkeys, email one-time-passwords, and SMS one-time-passwords. 

The new features include a developer-focused console experience that streamlines onboarding via a wizard and use-case specific recommendations. This allows developers to configure their sign-in options and follow the system-provided instructions to create the application's sign-in and sign-up pages. A new user pool, a user directory for authentication and authorization, is automatically created, according to the blog post announcing the new updates. Amazon Cognito also supports major application frameworks and offers detailed instructions for integrating them using standard OpenID Connect (OIDC) and OAuth open source libraries.

Amazon has updated the pricing structure for Cognito, adding user pool feature tiers: Lite, Essentials, and Plus. New user pools are created at the Essentials tier by default, and users can switch between tiers depending on their needs. 

The Lite tier includes user registration, password-based authentication, and social identity provider integration. The Essentials tier includes expanded authentication and access control features, including managed login and passwordless capabilities and enhanced security features. The Plus tier offers more security features, including threat protection capabilities against suspicious logins and compromised credential detection. 

Pricing is based on monthly active users. The Essentials and Plus tiers are available in all AWS regions where Cognito is available, except AWS GovCloud (US) regions. 

**About the Author**

Contributing Writer

Jennifer Lawinski is a writer and editor with more than 20 years experience in media, covering a wide range of topics including business, news, culture, science, technology and cybersecurity. After earning a Master's degree in Journalism from Boston University, she started her career as a beat reporter for The Daily News of Newburyport. She has since written for a variety of publications including CNN, Fox News, Tech Target, CRN, CIO Insight, MSN News and Live Science. She lives in Brooklyn with her partner and two cats.

AWS Rolls Out Updates to Amazon Cognito

Protection ranged from 0.38% to 50.57% for security effectiveness.

PRESS RELEASE

AUSTIN, Texas, Nov. 26, 2024 /PRNewswire/ -- CyberRatings.org (CyberRatings), the non-profit entity dedicated to providing confidence in cybersecurity products and services through its research and testing programs, has completed an independent "Mini-Test" of Cloud Service Provider (CSP) Native Firewalls from Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP). Security effectiveness protection ranged from 0.38% to 50.57%.

In today's cloud-centric environment, businesses often face a critical choice regarding the security of their cloud infrastructure. They can rely on firewalls offered directly by Cloud Service Providers (CSPs) or use independent security vendor firewall offerings typically available through the respective CSP's marketplace. Security effectiveness is a crucial factor in selecting the right firewall solution, as it directly impacts the organization's ability to protect against cyber threats.

The CSP firewalls were tested against 522 exploits using Keysight's CyPerf v5.0 software testing platform, offering an evidence-based look at how well these native solutions withstand real-world security threats. Only known Common Vulnerabilities and Exposures (CVEs) from the last ten years with a severity of medium or higher were used to assess security effectiveness, usability, and protection. The exploit (CVE) types targeted servers and are typically relevant to cloud workload deployments.

"This was designed to be an entry level test," said Vikram Phatak, CEO of CyberRatings.org. "The exploits were straightforward; we didn't apply any evasions which is normally how attackers bypass security products. The number of missed exploits is concerning. Until cloud native firewalls demonstrate they have a higher level of security effectiveness to protect against cyber threats, we strongly recommend that customers consider third-party providers with a proven track record."

This test is part one of a two-part test. Part two will include a higher number of exploits, along with evasions and malware. The second part of the test will also compare cloud service provider native solutions against market leading third-party cloud network firewall providers.

The native firewalls were tested using Keysight's CyPerf v5.0 software testing platform. Enterprises can easily replicate the results with a 2-week free trial from Keysight. Further details of the strike library can be found here: https://www.keysight.com/us/en/products/network-test/cloud-test/cyperf.html

The test report is available for free at cyberratings.org.

About CyberRatings.org 

CyberRatings.org is a 501(c)6 non-profit organization dedicated to providing confidence in cybersecurity products and services through our research and testing programs. We provide enterprises with independent, objective ratings of security product efficacy to make informed decisions. To become a member, visit www.cyberratings.org and follow us on LinkedIn.

SOURCE  CyberRatings.org

CyberRatings.org Announces Test Results for Cloud Service Provider Native Firewalls

Newly published research finds that the flashing lights on police cruisers and ambulances can cause “digital epileptic seizures” in image-based automated driving systems, potentially risking wrecks.

Carmakers say their increasingly sophisticated automated driving systems make driving safer and less stressful by leaving some of the hard work of knowing when a crash is about to happen—and avoiding it—to the machines. But new research suggests some of these systems might do the virtual opposite at the worst possible moment.

A new paper from researchers at Ben-Gurion University of the Negev and the Japanese technology firm Fujitsu Limited demonstrates that when some camera-based automated driving systems are exposed to the flashing lights of emergency vehicles, they can no longer confidently identify objects on the road. The researchers call the phenomenon a “digital epileptic seizure”—_epilepticar_ for short—where the systems, trained by artificial intelligence to distinguish between images of different road objects, fluctuate in effectiveness in time with the emergency lights’ flashes. The effect is especially apparent in darkness, the researchers say.

Emergency lights, in other words, could make automated driving systems less sure that the car-shaped thing in front of them is actually a car. The researchers write that the flaw “poses a significant risk” because it could potentially cause vehicles with automated driving systems enabled to “crash near emergency vehicles" and “be exploited by adversaries to cause such accidents.”

While the findings are alarming, this new research comes with several caveats. For one thing, the researchers were unable to test their theories on any specific driving systems, such as Tesla’s famous Autopilot. Instead, they ran their tests using five off-the-shelf automated driving systems embedded in dashcams purchased off of Amazon. (These products are marketed as including some collision detection features, but for this research, they functioned as cameras.) They then ran the images captured on those systems through four open source object detectors, which are trained using images to distinguish between different objects. The researchers aren’t sure whether any automakers use the object detectors tested in their paper. It could be that most systems are already hardened against flashing light vulnerabilities.

The research was inspired by reports that Teslas using the electric carmaker’s advanced driver assistance feature, Autopilot, collided with some 16 stationary emergency vehicles between 2018 and 2021, says Ben Nassi, a cybersecurity and machine learning researcher at Ben-Gurion University who worked on the paper. “It was pretty clear to us from the beginning that the crashes might be related to the lighting of the emergency flashers,” says Nassi. “Ambulances and police cars and fire trucks are different shapes and sizes, so it’s not the type of vehicle that causes this behavior.”

A three-year investigation by the US National Highway Traffic Safety Administration into the Tesla-emergency vehicle collisions eventually led to a sweeping recall of Tesla Autopilot software, which is designed to perform some driving tasks—like steering, accelerating, braking, and changing lanes on certain kinds of roads—without a driver’s help. The agency concluded that the system inadequately ensured drivers paid attention and were in control of their vehicles while the system was engaged. (Other automakers’ advanced driving assistance packages, including General Motors’ Super Cruise and Ford’s BlueCruise, also perform some driving tasks but mandate that drivers pay attention behind the wheel. Unlike Autopilot, these systems work only in areas that have been mapped.)

In a written statement sent in response to WIRED’s questions, Lucia Sanchez, a spokesperson for NHTSA, acknowledged that emergency flashing lights may play a role. “We are aware of some advanced driver assistance systems that have not responded appropriately when emergency flashing lights were present in the scene of the driving path under certain circumstances,” Sanchez wrote.

Tesla, which disbanded its public relations team in 2021, did not respond to WIRED’s request for comment. The camera systems the researchers used in their tests were manufactured by HP, Pelsee, Azdome, Imagebon, and Rexing; none of those companies responded to WIRED’s requests for comment.

Although the NHTSA acknowledges issues in “some advanced driver assistance systems,” the researchers are clear: They’re not sure what this observed emergency light effect has to do with Tesla’s Autopilot troubles. “I do not claim that I know why Teslas crash into emergency vehicles,” says Nassi. “I do not know even if this is still a vulnerability.”

The researchers’ experiments were also concerned solely with image-based object detection. Many automakers use other sensors, including radar and lidar, to help detect obstacles in the road. A smaller crop of tech developers—Tesla among them—argue that image-based systems augmented with sophisticated artificial intelligence training can enable not only driver assistance systems, but also completely autonomous vehicles. Last month, Tesla CEO Elon Musk said the automaker's vision-based system would enable self-driving cars next year.

Indeed, how a system might react to flashing lights depends on how individual automakers design their automated driving systems. Some may choose to “tune” their technology to react to things it’s not entirely certain are actually obstacles. In the extreme, that choice could lead to “false positives,” where a car might hard brake, for example, in response to a toddler-shaped cardboard box. Others may tune their tech to react only when it’s very confident that what it’s seeing is an obstacle. On the other side of the extreme, that choice could lead to the car failing to brake to avoid a collision with another vehicle because it misses that it is another vehicle entirely.

The BGU and Fujitsu researchers did come with a software fix to the emergency flasher issue. Called “Caracetamol”—a portmanteau of “car” and the painkiller “Paracetamol”—it’s designed to avoid the “seizure” issue by being specifically trained to identify vehicles with emergency flashing lights. The researchers say it improves object detectors’ accuracy.

Earlence Fernandes, an assistant professor of computer science and engineering at University of California, San Diego, who was not involved in the research, said it appeared “sound.” “Just like a human can get temporarily blinded by emergency flashers, a camera operating inside an advanced driver assistance system can get blinded temporarily,” he says.

For researcher Bryan Reimer, who studies vehicle automation and safety at the MIT AgeLab, the paper points to larger questions about the limitations of AI-based driving systems. Automakers need “repeatable, robust validation” to uncover blind spots like susceptibility to emergency lights, he says. He worries some automakers are “moving technology faster than they can test it.”

Emergency Vehicle Lights Can Screw Up a Car's Automated Driving System

Cybercriminals are spamming content platforms like Spotify and Amazon with cracks, keygens, and forex trading platforms. We explain why.

Spotify and Amazon services have been flooded with bogus listings that push dubious “forex trading” sites, Telegram channels, and suspicious links claiming to offer pirated software according to our friends over at BleepingComputer.

Cybercriminals are abusing the options to inject keywords and links into playlist names to make their entries rank high in Google search results.

BleepingComputer found that spammers had posted a lot of links on the content platforms, but that the length of the audio “episodes” published under these “podcasts” was zero seconds.

What you can expect to be offered are cracks, keygens, cheat codes, and other game related content, but also “forex trading” seems to be a popular subject to promote.

The fact that many cracks, keygens, and game mods are often replaced by or come bundled with malware was already known in the previous century, so that shouldn’t surprise anyone.

The “forex trading” part may be a little harder to understand.

On the content platforms we mentioned, links are shared pointing to forex trading platforms where you can trade one currency for another speculating on exchange rate fluctuations. Forex trading is far from illegal, it’s an important part of international trade. But in areas where so much money changes hands, there will always be criminals looking for a piece of the action.

There are two main types of forex trading scams you need to be aware of. Scams performed by external criminals, and unethical forex brokers. Even though management teams within brokers must be vetted by regulators and licensers, there are plenty of incentives for brokers to take advantage of their customers.

The scams themselves can be largely identified as:

*   Signal scams: Signals are data-driven broker-generated information prompts that give traders improved opportunities to make profitable trades. While many of them can be considered legitimate, they do not guarantee success and they can be abused by signal-sellers that prey on our tendency to want to get rich fast and with little effort.
*   Pyramid schemes: The pyramid schemes are in fact private circles run by individuals who seek to profit by charging a subscription fee and encouraging new members to recruit fellow investors for the prize of a small commission payout. The higher up the money-earning pyramid you are, the more subscription fees flow your way.
*   Point-spread scam: As brokers earn their commissions based on the gap between bid and ask prices, they make more money when the gap is bigger. When the natural supply and demand conditions do not create a big enough gap, some brokers have been known to exaggerate the gap by rigging the code that displays the prices.
*   Robot scamming: This is a relative newcomer to the scams. It offers traders the option to earn money while you are not actively trading on your system. The term “robot” refers to the automation of the process with software. Needless to say these robots can be rigged to work for the broker instead of for you.
*   Sale of personal information: Under the rules of Know Your Customer (KYC) legislation, every trader must be able to supply private and confidential information that often includes details like banking information and credit card information. Scam brokers could sell this information to a third party, who may try to lure you into another scheme.

But cybercriminals could also have set up their own fraudulent trading platforms and be phishing for your login credentials to existing platforms.

**How to stay safe**

If you decide you want to delve in forex trading, there are a few pointers to keep your money safe.

There are some similarities between forex trading and casino gambling, only forex trading involves more skill and analysis than most casino games. Don’t go all-in. Don’t lose your shirt.

*   Get rich quick schemes often work for those offering them, but not for those falling for them.
*   It is vital to research any financial service or platform before investing.
*   As always, if it sounds too good to be true, it probably is.
*   It is crucial to understand what you are doing or what is being done for you.
*   Watch out for clone websites.
*   If you don’t understand how the trader’s robot works, ask until you do or don’t use it.
*   Stay away from forex trading platforms promoted on content platforms that have nothing to do with forex trading.

**We don’t just report on threats—we remove them**

Cybersecurity risks should never spread beyond a headline. Keep threats off your devices by downloading Malwarebytes today.

 Spotify, Audible, and Amazon used to push dodgy forex trading sites and more 

A list of topics we covered in the week of November 18 to November 24 of 2024

November 25, 2024 - Cybercriminals are spamming content platforms like Spotify and Amazon with cracks, keygens, and forex trading platforms. We explain why.

November 25, 2024 - Hacktivists have breached Andrew Tate's learning platform The Real World and obtained 794,000 usernames for current and former members, as well as 324,382 email addresses of former clients.

November 22, 2024 - Meta provided some insight into their fight against pig butchering scammers, who are often victims of organized crime themselves

November 20, 2024 - People are receiving disturbing emails that appear to imply something has happened to their friend or family member.

November 20, 2024 - Apple has released security updates that look especially important for Intel-based Macs because they are already being exploited in the wild.

 A week in security (November 18 &#8211; November 24) 

New York, the city that never sleeps, is renowned as a global epicentre for innovation, creativity, and business…

New York, the city that never sleeps, is renowned as a global epicentre for innovation, creativity, and business excellence. While it’s best known for its financial district, cultural landmarks, and media industry, New York has also emerged as a thriving cybersecurity, technology and app development hub.

Mobile app development companies in New York are at the forefront of delivering innovative solutions, driven by the city’s unique combination of resources, talent, and opportunity. Here’s why New York is a prime location for leading mobile development agencies.

****1\. Access to a Diverse Talent Pool****

New York is home to some of the world’s most prestigious universities and tech programs, including Columbia University, NYU, and Cornell Tech. These institutions produce highly skilled graduates in technology, design, and software engineering.

**Why It Matters:** Mobile app development companies in New York benefit from access to top-tier talent across various disciplines, ensuring they can assemble teams with diverse expertise. This diversity fosters creativity and innovation, critical for building cutting-edge mobile applications.

****2\. Thriving Tech Ecosystem****

New York’s Silicon Alley has grown into a vibrant tech ecosystem, attracting startups, established tech companies, and venture capitalists. This environment creates opportunities for collaboration, knowledge sharing, and investment in new ideas.

**Why It Matters:** Mobile development agencies in the city are well-connected to this tech network, allowing them to leverage the latest tools and technologies. This ecosystem also provides opportunities to partner with other innovative businesses, further enhancing their service offerings.

****3\. Exposure to Multiple Industries****

New York is a global leader in industries such as finance, healthcare, fashion, real estate, and media. Each sector has specific needs for mobile applications, from e-commerce platforms to health monitoring tools.

**Why It Matters:** The wide range of industries in New York challenges mobile app development companies to adapt and innovate constantly. By working with clients across diverse sectors, these agencies gain valuable experience and insights that make their solutions more versatile and effective.

****4\. Strong Focus on Innovation and Creativity****

As a cultural melting pot, New York is known for its dynamic and creative energy. This culture of innovation extends to the tech industry, where agencies are encouraged to think outside the box and develop groundbreaking mobile solutions.

**Why It Matters:** Mobile app development companies in New York are uniquely positioned to combine technical expertise with creative problem-solving. This results in apps that are not only functional but also visually appealing and user-friendly.

****5\. Access to a Global Market****

New York’s status as an international hub makes it a gateway to global markets. Companies based in the city have the advantage of working with clients from around the world, giving them a broader perspective on user needs and preferences.

**Why It Matters:** Mobile app development companies in New York design solutions that cater to diverse audiences. Their global outlook allows them to incorporate features that appeal to users across different cultures and regions, making their apps more competitive on a worldwide scale.

****6\. Cutting-Edge Use of Emerging Technologies****

The city’s tech agencies are at the forefront of integrating emerging technologies such as artificial intelligence, augmented reality, blockchain, and IoT into mobile applications.

**Why It Matters:** By embracing these innovations, New York-based companies deliver apps that are future-proof and highly functional. This proactive approach ensures that their clients stay ahead of the competition and meet evolving market demands.

****7\. Networking Opportunities and Events****

New York hosts numerous tech conferences, meetups, and hackathons, providing opportunities for professionals to connect, learn, and share ideas. Events like TechDay NYC and the NY Tech Meetup attract thought leaders and innovators from across the globe.

**Why It Matters:** These events help mobile app development companies stay updated on industry trends and best practices. Networking opportunities also enable them to forge partnerships that enhance their capabilities and broaden their client base.

****8\. Strong Support for Startups and Enterprises****

New York’s robust economy supports both startups and established enterprises, creating a thriving market for mobile app development. The city offers resources like incubators, accelerators, and funding opportunities to help businesses grow.

**Why It Matters:** Mobile development agencies in New York can cater to a wide range of clients, from ambitious startups looking to make their mark to large corporations aiming to enhance their digital presence. This versatility strengthens their expertise and reputation.

****Conclusion****

New York’s combination of talent, industry diversity, and technological innovation makes it a prime location for leading mobile development agencies. Mobile app development companies in New York thrive in an environment that encourages creativity, collaboration, and excellence, enabling them to deliver world-class solutions.

For businesses seeking to create impactful mobile apps, partnering with a New York-based agency ensures access to top-tier expertise and innovative technologies. As the city continues to drive advancements in the digital space, it remains a global leader in mobile app development.

1.  21 Best Amazon PPC Management Agencies
2.  Top SEO Agencies in the UK: Expert Insights
3.  The Idea of Web3 and 7 Global Web3 Agencies
4.  Kotlin app development company – How to choose
5.  Benefits of hiring a Java web appl development company
6.  5 Best Crypto Marketing Agencies for Web3 Security Brands

Why New York is a Prime Location for Leading Mobile Development Agencies

Ubuntu Security Notice 7120-2 - Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.

    ==========================================================================Ubuntu Security Notice USN-7120-2November 20, 2024linux-aws-6.8, linux-azure, linux-azure-6.8, linux-oracle-6.8,vulnerabilities==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 24.04 LTS- Ubuntu 22.04 LTSSummary:Several security issues were fixed in the Linux kernel.Software Description:- linux-azure: Linux kernel for Microsoft Azure Cloud systems- linux-aws-6.8: Linux kernel for Amazon Web Services (AWS) systems- linux-azure-6.8: Linux kernel for Microsoft Azure cloud systems- linux-oracle-6.8: Linux kernel for Oracle Cloud systemsDetails:Several security issues were discovered in the Linux kernel.An attacker could possibly use these to compromise the system.This update corrects flaws in the following subsystems:  - File systems infrastructure;  - Network traffic control;(CVE-2024-46800, CVE-2024-43882)Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 24.04 LTS  linux-image-6.8.0-1018-azure    6.8.0-1018.21  linux-image-6.8.0-1018-azure-fde  6.8.0-1018.21  linux-image-azure               6.8.0-1018.21  linux-image-azure-fde           6.8.0-1018.21Ubuntu 22.04 LTS  linux-image-6.8.0-1016-oracle   6.8.0-1016.17~22.04.1  linux-image-6.8.0-1016-oracle-64k  6.8.0-1016.17~22.04.1  linux-image-6.8.0-1018-azure    6.8.0-1018.21~22.04.1  linux-image-6.8.0-1018-azure-fde  6.8.0-1018.21~22.04.1  linux-image-6.8.0-1019-aws      6.8.0-1019.21~22.04.1  linux-image-aws                 6.8.0-1019.21~22.04.1  linux-image-azure               6.8.0-1018.21~22.04.1  linux-image-azure-fde           6.8.0-1018.21~22.04.1  linux-image-oracle              6.8.0-1016.17~22.04.1  linux-image-oracle-64k          6.8.0-1016.17~22.04.1After a standard system update you need to reboot your computer to makeall the necessary changes.ATTENTION: Due to an unavoidable ABI change the kernel updates havebeen given a new version number, which requires you to recompile andreinstall all third party kernel modules you might have installed.Unless you manually uninstalled the standard kernel metapackages(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,linux-powerpc), a standard system upgrade will automatically performthis as well.References:  https://ubuntu.com/security/notices/USN-7120-2  https://ubuntu.com/security/notices/USN-7120-1  CVE-2024-43882, CVE-2024-46800Package Information:  https://launchpad.net/ubuntu/+source/linux-azure/6.8.0-1018.21  https://launchpad.net/ubuntu/+source/linux-aws-6.8/6.8.0-1019.21~22.04.1  https://launchpad.net/ubuntu/+source/linux-azure-6.8/6.8.0-1018.21~22.04.1  https://launchpad.net/ubuntu/+source/linux-oracle-6.8/6.8.0-1016.17~22.04.1

Ubuntu Security Notice USN-7120-2

Ubuntu Security Notice 7121-1 - Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.

    ==========================================================================Ubuntu Security Notice USN-7121-1November 19, 2024linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-4.15, linux-gcp,linux-gcp-4.15, linux-hwe, linux-kvm, linux-oracle vulnerabilities==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 18.04 LTS- Ubuntu 16.04 LTSSummary:Several security issues were fixed in the Linux kernel.Software Description:- linux: Linux kernel- linux-aws: Linux kernel for Amazon Web Services (AWS) systems- linux-azure-4.15: Linux kernel for Microsoft Azure Cloud systems- linux-gcp-4.15: Linux kernel for Google Cloud Platform (GCP) systems- linux-kvm: Linux kernel for cloud environments- linux-oracle: Linux kernel for Oracle Cloud systems- linux-aws-hwe: Linux kernel for Amazon Web Services (AWS-HWE) systems- linux-azure: Linux kernel for Microsoft Azure Cloud systems- linux-gcp: Linux kernel for Google Cloud Platform (GCP) systems- linux-hwe: Linux hardware enablement (HWE) kernelDetails:Several security issues were discovered in the Linux kernel.An attacker could possibly use these to compromise the system.This update corrects flaws in the following subsystems:  - ARM64 architecture;  - S390 architecture;  - x86 architecture;  - Block layer subsystem;  - Cryptographic API;  - ATM drivers;  - Device frequency scaling framework;  - GPU drivers;  - Hardware monitoring drivers;  - VMware VMCI Driver;  - Network drivers;  - Device tree and open firmware driver;  - SCSI drivers;  - Greybus lights staging drivers;  - BTRFS file system;  - File systems infrastructure;  - F2FS file system;  - JFS file system;  - NILFS2 file system;  - Netfilter;  - Memory management;  - Ethernet bridge;  - IPv6 networking;  - IUCV driver;  - Logical Link layer;  - MAC80211 subsystem;  - NFC subsystem;  - Network traffic control;  - Unix domain sockets;(CVE-2023-52614, CVE-2024-26633, CVE-2024-46758, CVE-2024-46723,CVE-2023-52502, CVE-2024-41059, CVE-2024-44987, CVE-2024-36020,CVE-2023-52599, CVE-2023-52639, CVE-2024-26668, CVE-2024-42094,CVE-2022-48938, CVE-2022-48733, CVE-2024-27397, CVE-2023-52578,CVE-2024-38560, CVE-2024-38538, CVE-2024-42310, CVE-2024-46722,CVE-2024-46800, CVE-2024-41095, CVE-2024-42104, CVE-2024-35877,CVE-2022-48943, CVE-2024-46743, CVE-2023-52531, CVE-2024-46757,CVE-2024-36953, CVE-2024-46756, CVE-2024-38596, CVE-2023-52612,CVE-2024-38637, CVE-2024-41071, CVE-2024-46759, CVE-2024-43882,CVE-2024-26675, CVE-2024-43854, CVE-2024-44942, CVE-2024-44998,CVE-2024-42240, CVE-2024-41089, CVE-2024-26636, CVE-2024-46738,CVE-2024-42309)Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 18.04 LTS  linux-image-4.15.0-1137-oracle  4.15.0-1137.148                                  Available with Ubuntu Pro  linux-image-4.15.0-1158-kvm     4.15.0-1158.163                                  Available with Ubuntu Pro  linux-image-4.15.0-1168-gcp     4.15.0-1168.185                                  Available with Ubuntu Pro  linux-image-4.15.0-1175-aws     4.15.0-1175.188                                  Available with Ubuntu Pro  linux-image-4.15.0-1183-azure   4.15.0-1183.198                                  Available with Ubuntu Pro  linux-image-4.15.0-231-generic  4.15.0-231.243                                  Available with Ubuntu Pro  linux-image-4.15.0-231-lowlatency  4.15.0-231.243                                  Available with Ubuntu Pro  linux-image-aws-lts-18.04       4.15.0.1175.173                                  Available with Ubuntu Pro  linux-image-azure-lts-18.04     4.15.0.1183.151                                  Available with Ubuntu Pro  linux-image-gcp-lts-18.04       4.15.0.1168.181                                  Available with Ubuntu Pro  linux-image-generic             4.15.0.231.215                                  Available with Ubuntu Pro  linux-image-kvm                 4.15.0.1158.149                                  Available with Ubuntu Pro  linux-image-lowlatency          4.15.0.231.215                                  Available with Ubuntu Pro  linux-image-oracle-lts-18.04    4.15.0.1137.142                                  Available with Ubuntu Pro  linux-image-virtual             4.15.0.231.215                                  Available with Ubuntu ProUbuntu 16.04 LTS  linux-image-4.15.0-1168-gcp     4.15.0-1168.185~16.04.1                                  Available with Ubuntu Pro  linux-image-4.15.0-1175-aws     4.15.0-1175.188~16.04.1                                  Available with Ubuntu Pro  linux-image-4.15.0-1183-azure   4.15.0-1183.198~16.04.1                                  Available with Ubuntu Pro  linux-image-4.15.0-231-generic  4.15.0-231.243~16.04.1                                  Available with Ubuntu Pro  linux-image-4.15.0-231-lowlatency  4.15.0-231.243~16.04.1                                  Available with Ubuntu Pro  linux-image-aws-hwe             4.15.0.1175.188~16.04.1                                  Available with Ubuntu Pro  linux-image-azure               4.15.0.1183.198~16.04.1                                  Available with Ubuntu Pro  linux-image-gcp                 4.15.0.1168.185~16.04.1                                  Available with Ubuntu Pro  linux-image-generic-hwe-16.04   4.15.0.231.243~16.04.1                                  Available with Ubuntu Pro  linux-image-gke                 4.15.0.1168.185~16.04.1                                  Available with Ubuntu Pro  linux-image-lowlatency-hwe-16.04  4.15.0.231.243~16.04.1                                  Available with Ubuntu Pro  linux-image-oem                 4.15.0.231.243~16.04.1                                  Available with Ubuntu Pro  linux-image-virtual-hwe-16.04   4.15.0.231.243~16.04.1                                  Available with Ubuntu ProAfter a standard system update you need to reboot your computer to makeall the necessary changes.ATTENTION: Due to an unavoidable ABI change the kernel updates havebeen given a new version number, which requires you to recompile andreinstall all third party kernel modules you might have installed.Unless you manually uninstalled the standard kernel metapackages(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,linux-powerpc), a standard system upgrade will automatically performthis as well.References:  https://ubuntu.com/security/notices/USN-7121-1  CVE-2022-48733, CVE-2022-48938, CVE-2022-48943, CVE-2023-52502,  CVE-2023-52531, CVE-2023-52578, CVE-2023-52599, CVE-2023-52612,  CVE-2023-52614, CVE-2023-52639, CVE-2024-26633, CVE-2024-26636,  CVE-2024-26668, CVE-2024-26675, CVE-2024-27397, CVE-2024-35877,  CVE-2024-36020, CVE-2024-36953, CVE-2024-38538, CVE-2024-38560,  CVE-2024-38596, CVE-2024-38637, CVE-2024-41059, CVE-2024-41071,  CVE-2024-41089, CVE-2024-41095, CVE-2024-42094, CVE-2024-42104,  CVE-2024-42240, CVE-2024-42309, CVE-2024-42310, CVE-2024-43854,  CVE-2024-43882, CVE-2024-44942, CVE-2024-44987, CVE-2024-44998,  CVE-2024-46722, CVE-2024-46723, CVE-2024-46738, CVE-2024-46743,  CVE-2024-46756, CVE-2024-46757, CVE-2024-46758, CVE-2024-46759,  CVE-2024-46800

Ubuntu Security Notice USN-7121-1

Ubuntu Security Notice 7120-1 - Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.

    ==========================================================================Ubuntu Security Notice USN-7120-1November 19, 2024linux, linux-aws, linux-gcp, linux-gcp-6.8, linux-gke, linux-hwe-6.8,linux-ibm, linux-nvidia, linux-nvidia-6.8, linux-nvidia-lowlatency,linux-oem-6.8, linux-oracle, linux-raspi vulnerabilities==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 24.04 LTS- Ubuntu 22.04 LTSSummary:Several security issues were fixed in the Linux kernel.Software Description:- linux: Linux kernel- linux-aws: Linux kernel for Amazon Web Services (AWS) systems- linux-gcp: Linux kernel for Google Cloud Platform (GCP) systems- linux-gke: Linux kernel for Google Container Engine (GKE) systems- linux-ibm: Linux kernel for IBM cloud systems- linux-nvidia: Linux kernel for NVIDIA systems- linux-nvidia-lowlatency: Linux low latency kernel for NVIDIA systems- linux-oem-6.8: Linux kernel for OEM systems- linux-oracle: Linux kernel for Oracle Cloud systems- linux-raspi: Linux kernel for Raspberry Pi systems- linux-gcp-6.8: Linux kernel for Google Cloud Platform (GCP) systems- linux-hwe-6.8: Linux hardware enablement (HWE) kernel- linux-nvidia-6.8: Linux kernel for NVIDIA systemsDetails:Several security issues were discovered in the Linux kernel.An attacker could possibly use these to compromise the system.This update corrects flaws in the following subsystems:  - File systems infrastructure;  - Network traffic control;(CVE-2024-46800, CVE-2024-43882)Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 24.04 LTS  linux-image-6.8.0-1014-gke      6.8.0-1014.18  linux-image-6.8.0-1015-raspi    6.8.0-1015.17  linux-image-6.8.0-1016-ibm      6.8.0-1016.16  linux-image-6.8.0-1016-oracle   6.8.0-1016.17  linux-image-6.8.0-1016-oracle-64k  6.8.0-1016.17  linux-image-6.8.0-1017-oem      6.8.0-1017.17  linux-image-6.8.0-1018-gcp      6.8.0-1018.20  linux-image-6.8.0-1018-nvidia   6.8.0-1018.20  linux-image-6.8.0-1018-nvidia-64k  6.8.0-1018.20  linux-image-6.8.0-1018-nvidia-lowlatency  6.8.0-1018.20.1  linux-image-6.8.0-1018-nvidia-lowlatency-64k  6.8.0-1018.20.1  linux-image-6.8.0-1019-aws      6.8.0-1019.21  linux-image-6.8.0-49-generic    6.8.0-49.49  linux-image-6.8.0-49-generic-64k  6.8.0-49.49  linux-image-aws                 6.8.0-1019.21  linux-image-gcp                 6.8.0-1018.20  linux-image-generic             6.8.0-49.49  linux-image-generic-64k         6.8.0-49.49  linux-image-generic-64k-hwe-24.04  6.8.0-49.49  linux-image-generic-hwe-24.04   6.8.0-49.49  linux-image-generic-lpae        6.8.0-49.49  linux-image-gke                 6.8.0-1014.18  linux-image-ibm                 6.8.0-1016.16  linux-image-ibm-classic         6.8.0-1016.16  linux-image-ibm-lts-24.04       6.8.0-1016.16  linux-image-kvm                 6.8.0-49.49  linux-image-nvidia              6.8.0-1018.20  linux-image-nvidia-64k          6.8.0-1018.20  linux-image-nvidia-lowlatency   6.8.0-1018.20.1  linux-image-nvidia-lowlatency-64k  6.8.0-1018.20.1  linux-image-oem-24.04           6.8.0-1017.17  linux-image-oem-24.04a          6.8.0-1017.17  linux-image-oracle              6.8.0-1016.17  linux-image-oracle-64k          6.8.0-1016.17  linux-image-raspi               6.8.0-1015.17  linux-image-virtual             6.8.0-49.49  linux-image-virtual-hwe-24.04   6.8.0-49.49Ubuntu 22.04 LTS  linux-image-6.8.0-1018-gcp      6.8.0-1018.20~22.04.1  linux-image-6.8.0-1018-nvidia   6.8.0-1018.20~22.04.1  linux-image-6.8.0-1018-nvidia-64k  6.8.0-1018.20~22.04.1  linux-image-6.8.0-49-generic    6.8.0-49.49~22.04.1  linux-image-6.8.0-49-generic-64k  6.8.0-49.49~22.04.1  linux-image-gcp                 6.8.0-1018.20~22.04.1  linux-image-generic-64k-hwe-22.04  6.8.0-49.49~22.04.1  linux-image-generic-hwe-22.04   6.8.0-49.49~22.04.1  linux-image-nvidia-6.8          6.8.0-1018.20~22.04.1  linux-image-nvidia-64k-6.8      6.8.0-1018.20~22.04.1  linux-image-nvidia-64k-hwe-22.04  6.8.0-1018.20~22.04.1  linux-image-nvidia-hwe-22.04    6.8.0-1018.20~22.04.1  linux-image-oem-22.04           6.8.0-49.49~22.04.1  linux-image-oem-22.04a          6.8.0-49.49~22.04.1  linux-image-oem-22.04b          6.8.0-49.49~22.04.1  linux-image-oem-22.04c          6.8.0-49.49~22.04.1  linux-image-oem-22.04d          6.8.0-49.49~22.04.1  linux-image-virtual-hwe-22.04   6.8.0-49.49~22.04.1After a standard system update you need to reboot your computer to makeall the necessary changes.ATTENTION: Due to an unavoidable ABI change the kernel updates havebeen given a new version number, which requires you to recompile andreinstall all third party kernel modules you might have installed.Unless you manually uninstalled the standard kernel metapackages(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,linux-powerpc), a standard system upgrade will automatically performthis as well.References:  https://ubuntu.com/security/notices/USN-7120-1  CVE-2024-43882, CVE-2024-46800Package Information:  https://launchpad.net/ubuntu/+source/linux/6.8.0-49.49  https://launchpad.net/ubuntu/+source/linux-aws/6.8.0-1019.21  https://launchpad.net/ubuntu/+source/linux-gcp/6.8.0-1018.20  https://launchpad.net/ubuntu/+source/linux-gke/6.8.0-1014.18  https://launchpad.net/ubuntu/+source/linux-ibm/6.8.0-1016.16  https://launchpad.net/ubuntu/+source/linux-nvidia/6.8.0-1018.20  https://launchpad.net/ubuntu/+source/linux-nvidia-lowlatency/6.8.0-1018.20.1  https://launchpad.net/ubuntu/+source/linux-oem-6.8/6.8.0-1017.17  https://launchpad.net/ubuntu/+source/linux-oracle/6.8.0-1016.17  https://launchpad.net/ubuntu/+source/linux-raspi/6.8.0-1015.17  https://launchpad.net/ubuntu/+source/linux-gcp-6.8/6.8.0-1018.20~22.04.1  https://launchpad.net/ubuntu/+source/linux-hwe-6.8/6.8.0-49.49~22.04.1  https://launchpad.net/ubuntu/+source/linux-nvidia-6.8/6.8.0-1018.20~22.04.1

Tag

#amazon