Denial-of-Service (DoS) Archives

Best of 2025: NOT-So-Great Firewall: China Blocks the Web for 74 Min.

HTTPS connections on port 443 received forged  replies. Chinese web users couldn’t access websites outside the People’s Republic yesterday. The outage lasted an hour and a quarter—with no explanation. Nobody’s sure whether it ...

Security Boulevard

NOT-So-Great Firewall: China Blocks the Web for 74 Min.

Xi Whiz: HTTPS connections on port 443 received forged replies ...

Security Boulevard

kvmCTF: Google’s $250K Bounty for KVM Zero-Day Vulnerabilities

Rohan Timalsina | August 1, 2024 | arbitrary memory read, arbitrary memory write, Bug Bounty program alert, Denial-of-Service (DoS), KVM (Kernel-based Virtual Machine), KVM hypervisor, KVM zero-day vulnerabilities, kvmCTF, Linux & Open Source News, relative memory read, relative memory write, virtual machines, Virtualization, zero-day vulnerabilities

In October 2023, Google announced the launch of kvmCTF, a new vulnerability reward program (VRP) designed to improve the security of the Kernel-based Virtual Machine (KVM) hypervisor. This innovative program comes with ...

TuxCare

Several Linux Kernel Azure Vulnerabilities Fixed in Ubuntu

Recently, Canonical released security updates to address several vulnerabilities in the Linux kernel for Microsoft Azure Cloud systems in Ubuntu 16.04 ESM and Ubuntu 18.04 ESM. An attacker could possibly use these ...

TuxCare

Patch Squid Vulnerabilities Affecting Ubuntu 16.04/18.04

Rohan Timalsina | July 16, 2024 | Denial-of-Service (DoS), Extended Lifecycle Support, Linux & Open Source News, linux live patching, security patches, Squid vulnerabilities, Ubuntu 16.04, Ubuntu 16.04 End of Life, Ubuntu 18.04, Ubuntu 18.04 End of Life, ubuntu 18.04 security updates, Ubuntu 18.04 security vulnerabilities, Ubuntu Security Fixes, Ubuntu Security Updates

Several security issues were discovered in Squid, a web proxy cache server. These vulnerabilities have a high severity score and could lead to denial of service or exposure of sensitive information. The ...

TuxCare

Several libheif Vulnerabilities Fixed in Ubuntu

Rohan Timalsina | July 9, 2024 | Denial-of-Service (DoS), Extended Lifecycle Support, libheif, libheif vulnerabilities, Linux & Open Source News, security patches, security vulnerabilites, Ubuntu 18.04, Ubuntu 18.04 End of Life, ubuntu 18.04 security updates, Ubuntu 18.04 security vulnerabilities, Ubuntu 20.04, Ubuntu 22.04, ubuntu 23.10, Ubuntu Security Fixes, Ubuntu Security Updates

libheif is a library that allows you to work with HEIF (High Efficiency Image File Format) and AVIF (AV1 Image File Format) images. Recently, Canonical released Ubuntu security updates to address multiple ...

TuxCare

Multiple Linux Kernel Vulnerabilities Lead to Denial of Service

Rohan Timalsina | June 27, 2024 | Denial-of-Service (DoS), KernelCare Enterprise, KernelCare live patches, Linux & Open Source News, Linux kernel, linux kernel patching, Linux Kernel Security Patches, linux kernel vulnerabilities, linux live patching, linux security updates, live patching, security patches, security vulnerabilites, Ubuntu Security Fixes, Ubuntu Security Updates

Several vulnerabilities have been identified in the Linux kernel, potentially leading to denial of service or privilege escalation. However, the good news is the patches are already available for them. Ubuntu and ...

TuxCare

Recent glibc Vulnerabilities and How to Protect Your Linux System

Rohan Timalsina | June 11, 2024 | Denial-of-Service (DoS), Extended Lifecycle Support, glibc vulnerabilities, glibc Vulnerability, GNU C Library vulnerabilities, KernelCare Enterprise, LibCare, Linux & Open Source News, linux live patching, live patching, Name Service Cache Daemon, Ubuntu 18.04 End of Life, ubuntu 18.04 security updates, Ubuntu Security Fixes, Ubuntu Security Updates

The GNU C Library, commonly known as glibc, is a critical component in many Linux distributions. It provides core functions essential for system operations. However, like any software library, it is not ...

TuxCare

Critical Fluent Bit Vulnerability Affects Major Cloud Providers

Rohan Timalsina | June 4, 2024 | cloud environments, Cloud Infrastructure, Cloud Security, Cloud Threats, CVE-2024-4323, Denial-of-Service (DoS), enterprise security, Fluent Bit, Fluent Bit vulnerability, Information Disclosure, Linguistic Lumberjack, Linguistic Lumberjack vulnerability, Linux & Open Source News, open source, RCE (Remote Code Execution)

Researchers have identified a critical memory corruption vulnerability in Fluent Bit, a popular logging and metrics utility. Dubbed Linguistic Lumberjack, this flaw exists in Fluent Bit’s embedded HTTP server, specifically in the ...

TuxCare

VMware Workstation and Fusion: Critical Security Flaws Fixed

Rohan Timalsina | May 30, 2024 | arbitrary code execution, Denial-of-Service (DoS), enterprise security, Linux & Open Source News, Linux Virtualization, security patches, virtual patching, Virtualization, VMware, VMware Fusion, VMware Security, VMware security advisories, VMware vulnerabilities 2024, VMware Workstation

VMware, a leading virtualization technology company, has fixed multiple security vulnerabilities found in VMware Workstation and Fusion products. These flaws, if exploited, could allow attackers to cause a denial of service, obtain ...

TuxCare

Denial-of-Service (DoS)

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On