Introduction
I noticed that the network subsystem was already being fuzzed extensively by syzkaller, but that subsystems like Bluetooth were less well covered. In general, research on the Bluetooth host attack surface seemed to be quite limited – with most public vulnerabilities in Bluetooth only affecting the firmware or the specification itself, and only allowing attackers to eavesdrop and/or manipulate information.
But what if attackers could take full control over devices? The most prominent examples that demonstrated this scenario were BlueBorne and BlueFrag. I set myself the goal to research the Linux Bluetooth stack, to extend upon BlueBorne’s findings, and to extend syzkaller with the capability to fuzz the
Francis-perron
Eduardo-vela
Jann-horn
Google
Intel
Linux-bluetooth-zero-click-remote-code
Linux-bluetooth
Linux-bluetooth-subsystem
Linux-kernel-security
Host-controller-interface
Logical-link-control
Security-management-protocol
Sudo vulnerability could give attackers root access on Linux systems
Security researchers have revealed details of a vulnerability in Sudo that could be exploited by an attacker to gain root privileges on a wide range of Linux-based systems.
News of the security flaw was shared by Qualys, and it has been described as perhaps the most significant sudo vulnerability in recent memory . Worryingly, the heap-based buffer overflow bug has existed for almost a decade. It is known as Baron Samedit, tracked as CVE-2021-3156, and affects various versions of Sudo.
See also:
Vulnerable versions of Sudo are legacy versions from 1.8.2 to 1.8.31p2 and all stable versions from 1.9.0 to 1.9.5p1, assuming configurations have not been changed. Writing about its findings, Qualys says that the vulnerability is exploitable by any local user, without authentication .
Baron-samedit
Red-hat
National-vulnerability-database
Heap-based-buffer-overflow
சிவப்பு-தொப்பி
குவியல்-அடிப்படையிலானது-இடையக-ஓவர்ஃப்லோ