Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability

CVE-2021-34506

Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability

CVE-2021-34475

CVE-2021-31982

By Waqas
According to Amazon, it has already taken significant action against 94 fraudsters operating in the United States, China, and Europe in May 2023.
This is a post from HackRead.com Read the original post: Amazon Files Lawsuits Against Fraudsters Peddling Fake Reviews

**Amazon’s action should come as no surprise that, just like the proliferation of fake news, fake reviews have also become a significant aspect of the underground scam market.**

In a determined effort to protect its customers and sellers from the growing menace of fake reviews, e-commerce giant **Amazon** has recently launched a series of lawsuits against fraudulent individuals and organizations.

These perpetrators, operating within an underground network known as the “fake review broker” industry, have been exploiting unsuspecting consumers and tarnishing the reputation of Amazon’s marketplace.

Amazon has invested substantial resources in advanced technologies, including machine learning models and expert investigators, to proactively combat fake reviews before they reach the eyes of customers.

In 2022 alone, the company successfully blocked over 200 million suspected fake reviews from appearing on its platform. Now, by targeting the facilitators of these fraudulent practices, Amazon aims to strike at the root of the problem and hold those responsible accountable.

Amazon announced significant actions taken against 94 fraudsters operating in the United States, China, and Europe. These actions were implemented as of May 2023, showcasing the technology giant’s proactive approach to tackling the issue at hand.

It should come as no surprise that, just like the proliferation of fake news, fake reviews have also become a significant aspect of the underground scam market. In fact, as of March 2020, fake reviews accounted for **50% of the threats** faced by Android-based devices, among other issues.

The seriousness of the issue is further exemplified by a notable incident in May 2021. During this incident, a misconfigured server inadvertently **exposed a staggering 7GB of well-organized schemes** employed by Amazon vendors to generate fake reviews for their products on the website.

According to a **press release** issued on June 28th, 2023, the legal actions filed by Amazon include four notable lawsuits against prominent perpetrators. Here is an overview of each case:

**Amazon v. Nice Discount:**

The owners and operators of Nice Discount have been accused of orchestrating a scheme to generate fake positive reviews and feedback through their “Product Tester Club.” Reviewers are enticed to leave fabricated positive reviews or feedback in exchange for refunds or monetary rewards. By connecting bad actors operating Amazon selling accounts with reviewers, the defendants have guided these individuals on when and how to post fake reviews, creating an illusion of authenticity. **Case No. 23-2-10603-2 SEA**.

**Amazon v. Littlesmm:**

The website Littlesmm has allegedly been selling packages of fake reviews to unscrupulous individuals operating Amazon selling accounts across Australia, Canada, and the U.S. Ranging in price from $20 to $440, these packages offer both positive and negative reviews. By employing Amazon customer accounts under their control, the defendants have orchestrated the posting of counterfeit positive reviews while simultaneously undermining their competitors’ product listings through fake negative reviews. **Case No. 23-2-10452-8 SEA.**

**Amazon v. MangoCity:**

The owners and operators of MangoCity have been accused of selling fake reviews for prices ranging from $50 to $4,000. Utilizing their website, video chats, and email correspondence, the defendants accept payments and subsequently deploy Amazon customer accounts to leave fabricated 5-star reviews on product listing pages. Additionally, they have targeted competitors by offering fake negative reviews on their products. Case No. 23-2-11278-4 SEA.

**Amazon v. Reddit Marketing Pro:**

The owners and operators of Reddit Marketing Pro have allegedly provided fraudulent services, including fake positive and negative reviews, to bad actors with Amazon selling accounts. In exchange for fees ranging from $99 for five fake reviews to $6,999 for 500 fake reviews, the defendants have employed Amazon customer accounts under their control to populate product listing pages with counterfeit reviews. They have also marketed fake “Questions and Answers” to manipulate the content displayed. Case No. 23-2-11265-2 SEA.

In a comment to Hackread.com, Chris Downie, CEO of Edinburgh, Scotland-based anti-fraud platform **Pasabi** said, “Fake review brokers play a central role in poisoning consumer decision-making, destroying businesses and inflicting untold damage on the wider economy.”

Downie added that “Whilst it’s encouraging to see Amazon taking these fraudsters to task via the legal system, so much more needs to be done to tackle the growing fake review epidemic which influences around £4bn in UK consumer spending every year.”

“By harnessing the power of AI and the latest fraud detection anti-fraud technology, review aggregators and business owners need to work together to identify and block fraudulent reviews, stamping out the problem before it gets any worse,” added Downie.

Amazon chief **David Montague**, vice president of Selling Partner Risk, said, “Our goal is to ensure that every review in Amazon’s stores is trustworthy and reflects customers’ actual experiences. Amazon welcomes authentic reviews—whether positive or negative —but strictly prohibits fake reviews that intentionally mislead customers.”

“We continue to innovate on our proactive technology to detect fake reviews and other indications of unusual behaviour. Another way we fight fake reviews is through legal action. Not only are we targeting the source of the problem but we’re sending a clear message that there’s no place for abuse in our store and we will hold fraudsters accountable,” he added.

Despite Amazon’s aggressive stance against fake review brokers, the company recognizes that this is a pervasive global problem affecting multiple industries. To address this issue effectively, a collaborative effort between the public and private sectors is required.

By taking legal action against 94 fraudsters across the United States, China, and Europe, as of May 2023, Amazon is demonstrating its commitment to combatting this menace. However, the battle against fake review brokers demands ongoing vigilance and cooperation to ensure a safe and trustworthy online marketplace for consumers and sellers alike.

1.  Brand Protection is Essential for Cybersecurity
2.  42,000 phishing domains found posing as popular brands
3.  Microsoft pwns domains used by hackers for cyber attacks
4.  Memcyco Drops Real-Time Solution to Combat Brandjacking
5.  Indian call center seized over Amazon scam against US citizens

Amazon Files Lawsuits Against Fraudsters Peddling Fake Reviews

The group has given one of Apple's biggest semiconductor suppliers until Aug. 6 to pay $70 million or risk having its data and "points of entry" to its network publicly leaked.

Taiwan Semiconductor Manufacturing Company (TSMC) — one of Apple's biggest semiconductor suppliers — on Friday blamed a third-party IT hardware supplier for a data breach that has exposed the company to a $70 million ransom demand from the LockBit ransomware group.

In an emailed statement to Dark Reading, TSMC confirmed multiple reports about the security incident but did not say what data specifically LockBit actors might have accessed from its systems and is holding for ransom. The statement, however, described the incident as not affecting any of TSMC's business or customer information.

**Third-Party Breach**

"TSMC has recently been aware that one of our IT hardware suppliers experienced a cybersecurity incident, which led to the leak of information pertinent to server initial setup and configuration," the statement noted. It identified the third-party supplier as Kinmax Technology, a Hsinchu, Taiwan- based systems integrator that claims to work with numerous other major technology players, including Aruba, Checkpoint, Cisco, Citrix, Fortinet, Hewlett-Packard Enterprise, Microsoft, and VMware. It's unclear if any other customers are affected by the attack.

Meanwhile, a subgroup within the LockBit operation that calls itself the National Hazard Agency claimed that it has given TSMC up to Aug. 6 to pay the multimillion-dollar ransom or risk having the company's stolen data publicly leaked. The threat actor claimed that it would also publish what it described as "points of entry" into TSMC's network as well as passwords and login information for gaining access to it. The latter is catnip to cyberattackers given that TSMC is a juicy target: It reported a net income of some $34 billion on consolidated revenue of $75.8 billion in 2022.

TSMC said it had conducted a review of its hardware components and security configurations used in its systems, after Kinmax reported the incident, to determine the scope of the breach. "After the incident, TSMC has immediately terminated its data exchange with this supplier in accordance with the company’s security protocols and standard operating procedures," the statement noted. The chipmaker said it remained committed to enhancing security awareness among its suppliers and in ensuring they complied with the company's security requirements.

**IT Supplier Downplays Incident**

Kinmax said it discovered the intrusion into its systems on June 29. The company described the attacker as having breached the company's engineering test environment and accessing system installation preparation information. 

"This is the system installation environment prepared for customers," Kinmax said in a statement on the incident. "The captured content is parameter information such as installation configuration files."

The statement appeared to downplay the seriousness of the breach. "The \[breached\] information has nothing to do with the actual application of the customer. It is only the basic setting at the time of shipment," the company said. The statement did not identify TSMC by name. But it somewhat bewilderingly claimed that the chipmaker (or others) had not experienced any negative consequences. "At present, no damage has been caused to the customer and the customer has not been hacked by it," the June 30 statement noted.

In the statement shared with Dark Reading, the systems integrator expressed regret over the incident. "We would like to express our sincere apologies to the affected customers, as the leaked information contained their names which may have caused some inconvenience. The company has thoroughly investigated this incident and implemented enhanced security measures to prevent such incidents from occurring in the future," the Kinmax statement said.

TSMC is the latest among a rapidly growing number of organizations that has experienced a data breach via a third-party compromise. News of the company's predicament comes even as reports continue to pour in about numerous organizations falling victim to the Cl0p ransomware gang because of a vulnerability in Progress Software's widely used MOVEit Transfer app. Victims of that campaign so far include biopharma giant AbbVie, Siemens, Schneider Electric, the University of California at Los Angles (UCLA).

Such breaches have brought IT supply chain security into sharp focus in recent years and made it a top priority in the Biden administration's May 2021 cybersecurity executive order.

Chip Giant TSMC Blames $70M LockBit Breach on IT Hardware Supplier

The number of malware samples is up as attackers aim to compromise users where they work and play: Their smartphones.

Attackers are increasingly targeting users through their mobile devices, attacking vulnerabilities in services that are built into applications and mounting increasing numbers of SMS phishing attacks.

That's according to mobile security firm Zimperium's 2023 "Global Mobile Threat Report," which also found that the average number of unique mobile malware samples grew 51% in 2022, totaling an average of 77,000 unique malware samples found every month. About a quarter of application samples submitted to public repositories — 23% of Android apps and 24% of iOS apps — were malicious, according to data in the report.

In total, that all contributed to the number of compromised devices nearly tripling (up 187%) in the time period, because the tactics are working: The company saw an average of four malicious phishing links clicked per device, for instance.

The trend comes as companies and their workers rely increasingly on mobile devices, with a majority of firms seeing more workers (58%) using mobile devices for business than in 2021 and most users (59%) doing more work with their mobile devices, according to the 2022 "Verizon Mobile Security Index" report. 

"Businesses and users need to mostly be concerned about mobile phishing and spyware today, and mobile ransomware will become increasingly concerning in the near future," says JT Keating, senior vice president of strategic initiatives at Zimperium. 

**Android, iOS Devices See Different Levels of Cyber Threats**

About 80% of phishing sites specifically target mobile devices with content suited to those platforms, Zimperium stated in its 2023 "Global Mobile Threat Report." But, as has been the case for many years, the Android platform tends to attract more threats. One of the reasons for that could be that the Android operating system has seen between about 500 and 900 vulnerabilities disclosed per year that threat actors can target; iOS meanwhile saw a little more than 300 vulnerabilities in five of the last eight years, according to Zimperium. 

Another reason that Android is a bigger target? App development mistakes. The firm found that there are more mistakes made in the process of developing apps when it comes to Android, particularly when it comes to how those apps interact with cloud storage instances. Only about 2% of iOS applications access unprotected cloud instances, while 10% of Android apps do so. These include database instances accessed through Google Firebase and Cloud Platform, Amazon Simple Storage Service (S3), and Microsoft Azure Cloud Storage, according to Zimperium's report. As a corollary, developers also tend to access the same poor resources, too: Only 1% of unprotected cloud instances accounted for 60% of applications at risk, the company said.

Georgy Kucherin, a security expert at Kaspersky's Global Research and Analysis Team (GReAT), says his firm's research bears out the finding that Android attracts more overall threats, though he notes that when it comes to spyware the targeting is evenly split between the two ecosystems; the recent Triangulation cyber espionage campaign for instance shows the value in targeting the iOS platform.

"Mobile users should worry about both cybercrime threats and nation-state espionage, \[but\] it is correct to say that Android faces more general threats," he says. "Android devices are more likely to become infected with malware distributed by cybercriminals. As for top-notch espionage spyware, both iOS and Android are vulnerable to it."

The lack of jailbreaking utilities for the latest version of iOS is also lowering the number of attacks for that platform, according to Zimperium. Jailbreaking allows users to add non-Apple-sanctioned software to their mobile devices, but it also removes significant security guardrails in the process. 

**Threats Up, or Leveling Off?**

In terms of the types of mobile malware that's circulating out there, Kaspersky saw fewer mobile malware installers and less ransomware in the past year, but more banking Trojans, it stated in "The Mobile Malware Threat Landscape in 2022" report.

"Cybercriminals are still working on improving both malware functionality and spread vectors," according to the report. "Malware is increasingly spreading through legitimate channels, such as official marketplaces and ads in popular apps. This is true for both scam apps and dangerous mobile banking malware."

To put all of this into perspective, it should be noted that traditional computing platforms still attract the lion's share of the cybercrime pie. Kaspersky, for example, blocked more than 20 million malicious installers, spyware, and adware attacks on mobile devices over the last four quarters, but blocked more than 20 times that number against more common work platforms, such as Windows. However, the mobile threat vector is not as well protected. 

"In most cases, mobile devices represent a significant, unaddressed attack surface for enterprises," Zimperium's Keating says. "No matter if they are corporate-owned or part of a BYOD strategy, the need to implement appropriate security controls, and educate end-users about potential threats, is critical."

Mobile Cyberattacks Soar, Especially Against Android Users

Nokod Security is building a platform that enables organizations to secure in-house low-code/no-code custom applications by scanning for security and compliance issues and applying remediation policies

**TEL AVIV, Israel****,** **June 29, 2023** **/PRNewswire/ --** Nokod Security, a company developing security for low-code / no-code custom applications and Robotic Process Automation (RPA), announced its $8 million seed round, which will be used to establish a presence in the United States market, as well as to expand the R&D teams and support novel research of security vulnerabilities in the low-code/no-code domain. Funds were raised from Acrew Capital, Meron Capital and Flint Capital, firms with a successful track record of investing in top companies in the data protection, software verification and cybersecurity sectors like Exabeam, Mitiga, Laminar, Socure, and others.

Adoption of low-code / no-code and RPA platforms like Microsoft PowerApps, ServiceNow or UiPath is predicted to reach 65% of the IT market by 2024. More so, Generative AI and ChatGPT-like tools, introduced just this past year, are set to hyper-accelerate low-code / no-code development. Although these platforms provide businesses fast application development with minimal complex coding using third-party toolkits, they are not covered by the application security stack. As a result, the applications and automations create a new attack surface as well as introduce the risk of compliance violations.

Yair Finzi, a former Head of Department in an elite cyber security unit of the Israeli Army and a cybersecurity entrepreneur with over 15 years of experience, and Amichai Shulman, a cybersecurity researcher, advisor, entrepreneur and investor with multiple successful exits, recognized this gap early on. They have a proven track record of running successful companies: Yair co-founded and led SecuredTouch (acquired by Ping Identity), while Amichai co-founded and served as CTO of application and data security giant, Imperva.

With Nokod, Yair and Amichai empower businesses with a platform to manage cybersecurity and compliance risks stemming from their low-code / no-code custom applications and RPAs by streamlining security into the application's lifecycle. The platform provides the security team with a comprehensive view of the application inventory, identifies security issues and vulnerabilities and offers the organization customized auto-remediation, effectively accelerating their digital transformation. The company is in discussions with Fortune 500 companies in several verticals.

**"**In today's world, application development is both time-consuming and costly, exacerbated by the anticipated threefold increase in the shortage of full-time software developers by 2025. As companies increasingly turn to low-code/no-code and RPA platforms, coupled with the rise of Generative AI tools, the adoption of low-code/no-code tools is set to skyrocket. This trend can take us back to the days when everyone coded without proper security measures, leaving sensitive business and personal data vulnerable to unauthorized access. Our product ensures 100% secure citizen development within enterprises,"— notes Yair Finzi**, co-founder and СЕО of Nokod Security.**

"Low-code / no-code apps are being widely deployed, but the shared security model, as in other domains, only helps customers up to a certain point, and then they are on their own. This is a huge looming security problem, and Acrew is excited to back a founding team at Nokod that can solve it," - says Mark Kraynak**, founding partner at Acrew Capital.** 

"Meron invests in leading early-stage companies with deep technologies. We are proud to invest in a pioneering company in the world of low-code / no-code security. The growth of Generative AI tools and their expected adoption in the business environment will further accelerate the adoption of low-code / no-code development. However, there is currently no real solution to this new attack surface. Nokod has the right team to solve it at the right time," - adds **Liron Azrielant, managing partner at Meron Capital.**

"We invest in cybersecurity startups and place our bets on their teams. With Nokod, we are confident in their founders' extensive experience in web application security, which is a critical factor for both small and medium-sized businesses as well as for large enterprises," — notes Sergey Gribov**, partner at Flint Capital.**

The global cybersecurity market was valued at $163.53 billion in 2019 and by 2030, the market is forecast to have a value of $430.46 billion. The low-code development platform market size is projected to reach 

**About Nokod Security**

Nokod Security is a Tel Aviv\-based startup providing a platform that enables organizations to secure their low-code / no-code custom applications and Remote Process Automation (RPA) by scanning them for security and compliance issues and applying customized auto-remediation policies.

The company was founded in 2023 by Yair Finzi, serial entrepreneur and former co-founder of SecuredTouch (acquired by Ping Identity), and Amichai Shulman, former co-founder and CTO of Imperva, a multibillion-dollar cybersecurity company that was a pioneer in the web application firewall (WAF) and database security categories.

SOURCE Nokod Security

Nokod Raises $8M Seed Round From Seasoned Cybersecurity Investors to Enhance Low-Code/No-Code App Security

Ubuntu Security Notice 6193-1 - Hangyu Hua discovered that the Flower classifier implementation in the Linux kernel contained an out-of-bounds write vulnerability. An attacker could use this to cause a denial of service or possibly execute arbitrary code. It was discovered that for some Intel processors the INVLPG instruction implementation did not properly flush global TLB entries when PCIDs are enabled. An attacker could use this to expose sensitive information or possibly cause undesired behaviors.

    ==========================================================================Ubuntu Security Notice USN-6193-1June 29, 2023linux, linux-aws, linux-aws-5.15, linux-aws-5.4, linux-azure,linux-azure-5.15, linux-azure-5.4, linux-azure-fde-5.15, linux-bluefield,linux-gcp, linux-gcp-5.15, linux-gcp-5.4, linux-gke, linux-gke-5.15,linux-gkeop, linux-gkeop-5.15, linux-hwe-5.15, linux-hwe-5.4, linux-ibm,linux-ibm-5.4, linux-kvm, linux-lowlatency, linux-lowlatency-hwe-5.15,linux-nvidia, linux-oracle, linux-oracle-5.15, linux-oracle-5.4,linux-raspi, linux-raspi-5.4 vulnerabilities==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 23.04- Ubuntu 22.04 LTS- Ubuntu 20.04 LTS- Ubuntu 18.04 LTS (Available with Ubuntu Pro)Summary:Several security issues were fixed in the Linux kernel.Software Description:- linux: Linux kernel- linux-aws: Linux kernel for Amazon Web Services (AWS) systems- linux-kvm: Linux kernel for cloud environments- linux-lowlatency: Linux low latency kernel- linux-raspi: Linux kernel for Raspberry Pi systems- linux-azure: Linux kernel for Microsoft Azure Cloud systems- linux-gcp: Linux kernel for Google Cloud Platform (GCP) systems- linux-gke: Linux kernel for Google Container Engine (GKE) systems- linux-gkeop: Linux kernel for Google Container Engine (GKE) systems- linux-ibm: Linux kernel for IBM cloud systems- linux-nvidia: Linux kernel for NVIDIA systems- linux-oracle: Linux kernel for Oracle Cloud systems- linux-aws-5.15: Linux kernel for Amazon Web Services (AWS) systems- linux-azure-5.15: Linux kernel for Microsoft Azure cloud systems- linux-azure-fde-5.15: Linux kernel for Microsoft Azure CVM cloud systems- linux-bluefield: Linux kernel for NVIDIA BlueField platforms- linux-gcp-5.15: Linux kernel for Google Cloud Platform (GCP) systems- linux-gke-5.15: Linux kernel for Google Container Engine (GKE) systems- linux-gkeop-5.15: Linux kernel for Google Container Engine (GKE) systems- linux-hwe-5.15: Linux hardware enablement (HWE) kernel- linux-lowlatency-hwe-5.15: Linux low latency kernel- linux-oracle-5.15: Linux kernel for Oracle Cloud systems- linux-aws-5.4: Linux kernel for Amazon Web Services (AWS) systems- linux-azure-5.4: Linux kernel for Microsoft Azure cloud systems- linux-gcp-5.4: Linux kernel for Google Cloud Platform (GCP) systems- linux-hwe-5.4: Linux hardware enablement (HWE) kernel- linux-ibm-5.4: Linux kernel for IBM cloud systems- linux-oracle-5.4: Linux kernel for Oracle Cloud systems- linux-raspi-5.4: Linux kernel for Raspberry Pi systemsDetails:Hangyu Hua discovered that the Flower classifier implementation in theLinux kernel contained an out-of-bounds write vulnerability. An attackercould use this to cause a denial of service (system crash) or possiblyexecute arbitrary code.  (CVE-2023-35788, LP: #2023577)It was discovered that for some Intel processors the INVLPG instructionimplementation did not properly flush global TLB entries when PCIDs areenabled. An attacker could use this to expose sensitive information(kernel memory) or possibly cause undesired behaviors. (LP: #2023220)Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 23.04:   linux-image-6.2.0-1006-aws      6.2.0-1006.6   linux-image-6.2.0-1007-kvm      6.2.0-1007.7   linux-image-6.2.0-1007-lowlatency  6.2.0-1007.7   linux-image-6.2.0-1007-lowlatency-64k  6.2.0-1007.7   linux-image-6.2.0-1007-raspi    6.2.0-1007.9   linux-image-6.2.0-1007-raspi-nolpae  6.2.0-1007.9   linux-image-6.2.0-24-generic    6.2.0-24.24   linux-image-6.2.0-24-generic-64k  6.2.0-24.24   linux-image-6.2.0-24-generic-lpae  6.2.0-24.24   linux-image-aws                 6.2.0.1006.7   linux-image-generic             6.2.0.24.24   linux-image-generic-64k         6.2.0.24.24   linux-image-generic-lpae        6.2.0.24.24   linux-image-kvm                 6.2.0.1007.7   linux-image-lowlatency          6.2.0.1007.7   linux-image-lowlatency-64k      6.2.0.1007.7   linux-image-raspi               6.2.0.1007.10   linux-image-raspi-nolpae        6.2.0.1007.10   linux-image-virtual             6.2.0.24.24Ubuntu 22.04 LTS:   linux-image-5.15.0-1023-gkeop   5.15.0-1023.28   linux-image-5.15.0-1028-nvidia  5.15.0-1028.28   linux-image-5.15.0-1028-nvidia-lowlatency  5.15.0-1028.28   linux-image-5.15.0-1033-ibm     5.15.0-1033.36   linux-image-5.15.0-1033-raspi   5.15.0-1033.36   linux-image-5.15.0-1033-raspi-nolpae  5.15.0-1033.36   linux-image-5.15.0-1037-gcp     5.15.0-1037.45   linux-image-5.15.0-1037-gke     5.15.0-1037.42   linux-image-5.15.0-1037-kvm     5.15.0-1037.42   linux-image-5.15.0-1038-oracle  5.15.0-1038.44   linux-image-5.15.0-1039-aws     5.15.0-1039.44   linux-image-5.15.0-1041-azure   5.15.0-1041.48   linux-image-5.15.0-76-generic   5.15.0-76.83   linux-image-5.15.0-76-generic-64k  5.15.0-76.83   linux-image-5.15.0-76-generic-lpae  5.15.0-76.83   linux-image-5.15.0-76-lowlatency  5.15.0-76.83   linux-image-5.15.0-76-lowlatency-64k  5.15.0-76.83   linux-image-aws-lts-22.04       5.15.0.1039.38   linux-image-azure               5.15.0.1041.37   linux-image-azure-lts-22.04     5.15.0.1041.37   linux-image-gcp-lts-22.04       5.15.0.1037.33   linux-image-generic             5.15.0.76.74   linux-image-generic-64k         5.15.0.76.74   linux-image-generic-lpae        5.15.0.76.74   linux-image-gke                 5.15.0.1037.36   linux-image-gke-5.15            5.15.0.1037.36   linux-image-gkeop               5.15.0.1023.22   linux-image-gkeop-5.15          5.15.0.1023.22   linux-image-ibm                 5.15.0.1033.29   linux-image-kvm                 5.15.0.1037.33   linux-image-lowlatency          5.15.0.76.81   linux-image-lowlatency-64k      5.15.0.76.81   linux-image-nvidia              5.15.0.1028.28   linux-image-nvidia-lowlatency   5.15.0.1028.28   linux-image-oracle              5.15.0.1038.33   linux-image-raspi               5.15.0.1033.30   linux-image-raspi-nolpae        5.15.0.1033.30   linux-image-virtual             5.15.0.76.74Ubuntu 20.04 LTS:   linux-image-5.15.0-1023-gkeop   5.15.0-1023.28~20.04.1   linux-image-5.15.0-1037-gcp     5.15.0-1037.45~20.04.1   linux-image-5.15.0-1037-gke     5.15.0-1037.42~20.04.1   linux-image-5.15.0-1038-oracle  5.15.0-1038.44~20.04.1   linux-image-5.15.0-1039-aws     5.15.0-1039.44~20.04.1   linux-image-5.15.0-1041-azure   5.15.0-1041.48~20.04.1   linux-image-5.15.0-1041-azure-fde  5.15.0-1041.48~20.04.1.1   linux-image-5.15.0-76-generic   5.15.0-76.83~20.04.1   linux-image-5.15.0-76-generic-64k  5.15.0-76.83~20.04.1   linux-image-5.15.0-76-generic-lpae  5.15.0-76.83~20.04.1   linux-image-5.15.0-76-lowlatency  5.15.0-76.83~20.04.1   linux-image-5.15.0-76-lowlatency-64k  5.15.0-76.83~20.04.1   linux-image-5.4.0-1052-ibm      5.4.0-1052.57   linux-image-5.4.0-1066-bluefield  5.4.0-1066.72   linux-image-5.4.0-1072-gkeop    5.4.0-1072.76   linux-image-5.4.0-1089-raspi    5.4.0-1089.100   linux-image-5.4.0-1094-kvm      5.4.0-1094.100   linux-image-5.4.0-1104-oracle   5.4.0-1104.113   linux-image-5.4.0-1105-aws      5.4.0-1105.113   linux-image-5.4.0-1108-gcp      5.4.0-1108.117   linux-image-5.4.0-1111-azure    5.4.0-1111.117   linux-image-5.4.0-153-generic   5.4.0-153.170   linux-image-5.4.0-153-generic-lpae  5.4.0-153.170   linux-image-5.4.0-153-lowlatency  5.4.0-153.170   linux-image-aws                 5.15.0.1039.44~20.04.28   linux-image-aws-lts-20.04       5.4.0.1105.102   linux-image-azure               5.15.0.1041.48~20.04.31   linux-image-azure-cvm           5.15.0.1041.48~20.04.31   linux-image-azure-fde           5.15.0.1041.48~20.04.1.20   linux-image-azure-lts-20.04     5.4.0.1111.104   linux-image-bluefield           5.4.0.1066.61   linux-image-gcp                 5.15.0.1037.45~20.04.1   linux-image-gcp-lts-20.04       5.4.0.1108.110   linux-image-generic             5.4.0.153.150   linux-image-generic-64k-hwe-20.04  5.15.0.76.83~20.04.37   linux-image-generic-hwe-20.04   5.15.0.76.83~20.04.37   linux-image-generic-lpae        5.4.0.153.150   linux-image-generic-lpae-hwe-20.04  5.15.0.76.83~20.04.37   linux-image-gke-5.15            5.15.0.1037.42~20.04.1   linux-image-gkeop               5.4.0.1072.70   linux-image-gkeop-5.15          5.15.0.1023.28~20.04.19   linux-image-gkeop-5.4           5.4.0.1072.70   linux-image-ibm                 5.4.0.1052.78   linux-image-ibm-lts-20.04       5.4.0.1052.78   linux-image-kvm                 5.4.0.1094.89   linux-image-lowlatency          5.4.0.153.150   linux-image-lowlatency-64k-hwe-20.04  5.15.0.76.83~20.04.34   linux-image-lowlatency-hwe-20.04  5.15.0.76.83~20.04.34   linux-image-oem                 5.4.0.153.150   linux-image-oem-20.04           5.15.0.76.83~20.04.37   linux-image-oem-20.04b          5.15.0.76.83~20.04.37   linux-image-oem-20.04c          5.15.0.76.83~20.04.37   linux-image-oem-20.04d          5.15.0.76.83~20.04.37   linux-image-oem-osp1            5.4.0.153.150   linux-image-oracle              5.15.0.1038.44~20.04.1   linux-image-oracle-lts-20.04    5.4.0.1104.97   linux-image-raspi               5.4.0.1089.119   linux-image-raspi-hwe-18.04     5.4.0.1089.119   linux-image-raspi2              5.4.0.1089.119   linux-image-raspi2-hwe-18.04    5.4.0.1089.119   linux-image-virtual             5.4.0.153.150   linux-image-virtual-hwe-20.04   5.15.0.76.83~20.04.37Ubuntu 18.04 LTS (Available with Ubuntu Pro):   linux-image-5.4.0-1052-ibm      5.4.0-1052.57~18.04.1   linux-image-5.4.0-1089-raspi    5.4.0-1089.100~18.04.1   linux-image-5.4.0-1104-oracle   5.4.0-1104.113~18.04.1   linux-image-5.4.0-1105-aws      5.4.0-1105.113~18.04.1   linux-image-5.4.0-1108-gcp      5.4.0-1108.117~18.04.1   linux-image-5.4.0-1111-azure    5.4.0-1111.117~18.04.1   linux-image-5.4.0-153-generic   5.4.0-153.170~18.04.1   linux-image-5.4.0-153-generic-lpae  5.4.0-153.170~18.04.1   linux-image-5.4.0-153-lowlatency  5.4.0-153.170~18.04.1   linux-image-aws                 5.4.0.1105.83   linux-image-azure               5.4.0.1111.84   linux-image-gcp                 5.4.0.1108.84   linux-image-generic-hwe-18.04   5.4.0.153.170~18.04.124   linux-image-generic-lpae-hwe-18.04  5.4.0.153.170~18.04.124   linux-image-ibm                 5.4.0.1052.63   linux-image-lowlatency-hwe-18.04  5.4.0.153.170~18.04.124   linux-image-oem                 5.4.0.153.170~18.04.124   linux-image-oem-osp1            5.4.0.153.170~18.04.124   linux-image-oracle              5.4.0.1104.113~18.04.76   linux-image-raspi-hwe-18.04     5.4.0.1089.86   linux-image-snapdragon-hwe-18.04  5.4.0.153.170~18.04.124   linux-image-virtual-hwe-18.04   5.4.0.153.170~18.04.124After a standard system update you need to reboot your computer to makeall the necessary changes.ATTENTION: Due to an unavoidable ABI change the kernel updates havebeen given a new version number, which requires you to recompile andreinstall all third party kernel modules you might have installed.Unless you manually uninstalled the standard kernel metapackages(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,linux-powerpc), a standard system upgrade will automatically performthis as well.References:   https://ubuntu.com/security/notices/USN-6193-1   https://launchpad.net/bugs/2023220   https://launchpad.net/bugs/2023577   CVE-2023-35788Package Information:   https://launchpad.net/ubuntu/+source/linux/6.2.0-24.24   https://launchpad.net/ubuntu/+source/linux-aws/6.2.0-1006.6   https://launchpad.net/ubuntu/+source/linux-kvm/6.2.0-1007.7   https://launchpad.net/ubuntu/+source/linux-lowlatency/6.2.0-1007.7   https://launchpad.net/ubuntu/+source/linux-raspi/6.2.0-1007.9   https://launchpad.net/ubuntu/+source/linux/5.15.0-76.83   https://launchpad.net/ubuntu/+source/linux-aws/5.15.0-1039.44   https://launchpad.net/ubuntu/+source/linux-azure/5.15.0-1041.48   https://launchpad.net/ubuntu/+source/linux-gcp/5.15.0-1037.45   https://launchpad.net/ubuntu/+source/linux-gke/5.15.0-1037.42   https://launchpad.net/ubuntu/+source/linux-gkeop/5.15.0-1023.28   https://launchpad.net/ubuntu/+source/linux-ibm/5.15.0-1033.36   https://launchpad.net/ubuntu/+source/linux-kvm/5.15.0-1037.42   https://launchpad.net/ubuntu/+source/linux-lowlatency/5.15.0-76.83   https://launchpad.net/ubuntu/+source/linux-nvidia/5.15.0-1028.28   https://launchpad.net/ubuntu/+source/linux-oracle/5.15.0-1038.44   https://launchpad.net/ubuntu/+source/linux-raspi/5.15.0-1033.36   https://launchpad.net/ubuntu/+source/linux/5.4.0-153.170   https://launchpad.net/ubuntu/+source/linux-aws/5.4.0-1105.113   https://launchpad.net/ubuntu/+source/linux-aws-5.15/5.15.0-1039.44~20.04.1   https://launchpad.net/ubuntu/+source/linux-azure/5.4.0-1111.117   https://launchpad.net/ubuntu/+source/linux-azure-5.15/5.15.0-1041.48~20.04.1 https://launchpad.net/ubuntu/+source/linux-azure-fde-5.15/5.15.0-1041.48~20.04.1.1   https://launchpad.net/ubuntu/+source/linux-bluefield/5.4.0-1066.72   https://launchpad.net/ubuntu/+source/linux-gcp/5.4.0-1108.117   https://launchpad.net/ubuntu/+source/linux-gcp-5.15/5.15.0-1037.45~20.04.1   https://launchpad.net/ubuntu/+source/linux-gke-5.15/5.15.0-1037.42~20.04.1   https://launchpad.net/ubuntu/+source/linux-gkeop/5.4.0-1072.76   https://launchpad.net/ubuntu/+source/linux-gkeop-5.15/5.15.0-1023.28~20.04.1   https://launchpad.net/ubuntu/+source/linux-hwe-5.15/5.15.0-76.83~20.04.1   https://launchpad.net/ubuntu/+source/linux-ibm/5.4.0-1052.57   https://launchpad.net/ubuntu/+source/linux-kvm/5.4.0-1094.100 https://launchpad.net/ubuntu/+source/linux-lowlatency-hwe-5.15/5.15.0-76.83~20.04.1   https://launchpad.net/ubuntu/+source/linux-oracle/5.4.0-1104.113 https://launchpad.net/ubuntu/+source/linux-oracle-5.15/5.15.0-1038.44~20.04.1   https://launchpad.net/ubuntu/+source/linux-raspi/5.4.0-1089.100

Ubuntu Security Notice USN-6193-1

Ubuntu Security Notice 6192-1 - Hangyu Hua discovered that the Flower classifier implementation in the Linux kernel contained an out-of-bounds write vulnerability. An attacker could use this to cause a denial of service or possibly execute arbitrary code. Xingyuan Mo and Gengjia Chen discovered that the io_uring subsystem in the Linux kernel did not properly handle locking when IOPOLL mode is being used. A local attacker could use this to cause a denial of service.

    ==========================================================================Ubuntu Security Notice USN-6192-1June 29, 2023linux, linux-allwinner, linux-allwinner-5.19, linux-aws, linux-aws-5.19,linux-azure, linux-gcp, linux-gcp-5.19, linux-hwe-5.19, linux-ibm,linux-kvm, linux-lowlatency, linux-oracle, linux-raspi, linux-starfive,linux-starfive-5.19 vulnerabilities==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 22.10- Ubuntu 22.04 LTSSummary:Several security issues were fixed in the Linux kernel.Software Description:- linux: Linux kernel- linux-allwinner: Linux kernel for Allwinner processors- linux-aws: Linux kernel for Amazon Web Services (AWS) systems- linux-azure: Linux kernel for Microsoft Azure Cloud systems- linux-gcp: Linux kernel for Google Cloud Platform (GCP) systems- linux-ibm: Linux kernel for IBM cloud systems- linux-kvm: Linux kernel for cloud environments- linux-lowlatency: Linux low latency kernel- linux-oracle: Linux kernel for Oracle Cloud systems- linux-raspi: Linux kernel for Raspberry Pi systems- linux-starfive: Linux kernel for StarFive processors- linux-allwinner-5.19: Linux kernel for Allwinner processors- linux-aws-5.19: Linux kernel for Amazon Web Services (AWS) systems- linux-gcp-5.19: Linux kernel for Google Cloud Platform (GCP) systems- linux-hwe-5.19: Linux hardware enablement (HWE) kernel- linux-starfive-5.19: Linux kernel for StarFive processorsDetails:Hangyu Hua discovered that the Flower classifier implementation in theLinux kernel contained an out-of-bounds write vulnerability. An attackercould use this to cause a denial of service (system crash) or possiblyexecute arbitrary code. (CVE-2023-35788, LP: #2023577)Xingyuan Mo and Gengjia Chen discovered that the io_uring subsystem in theLinux kernel did not properly handle locking when IOPOLL mode is beingused. A local attacker could use this to cause a denial of service (systemcrash). (CVE-2023-2430)It was discovered that for some Intel processors the INVLPG instructionimplementation did not properly flush global TLB entries when PCIDs areenabled. An attacker could use this to expose sensitive information(kernel memory) or possibly cause undesired behaviors. (LP: #2023220)Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 22.10:   linux-image-5.19.0-1015-allwinner  5.19.0-1015.15   linux-image-5.19.0-1020-starfive  5.19.0-1020.22   linux-image-5.19.0-1022-raspi   5.19.0-1022.29   linux-image-5.19.0-1022-raspi-nolpae  5.19.0-1022.29   linux-image-5.19.0-1025-ibm     5.19.0-1025.27   linux-image-5.19.0-1026-kvm     5.19.0-1026.27   linux-image-5.19.0-1026-oracle  5.19.0-1026.29   linux-image-5.19.0-1027-gcp     5.19.0-1027.29   linux-image-5.19.0-1028-aws     5.19.0-1028.29   linux-image-5.19.0-1028-lowlatency  5.19.0-1028.29   linux-image-5.19.0-1028-lowlatency-64k  5.19.0-1028.29   linux-image-5.19.0-1029-azure   5.19.0-1029.32   linux-image-5.19.0-46-generic   5.19.0-46.47   linux-image-5.19.0-46-generic-64k  5.19.0-46.47   linux-image-5.19.0-46-generic-lpae  5.19.0-46.47   linux-image-allwinner           5.19.0.1015.15   linux-image-aws                 5.19.0.1028.25   linux-image-azure               5.19.0.1029.24   linux-image-gcp                 5.19.0.1027.23   linux-image-generic             5.19.0.46.42   linux-image-generic-64k         5.19.0.46.42   linux-image-generic-lpae        5.19.0.46.42   linux-image-ibm                 5.19.0.1025.22   linux-image-kvm                 5.19.0.1026.23   linux-image-lowlatency          5.19.0.1028.24   linux-image-lowlatency-64k      5.19.0.1028.24   linux-image-oracle              5.19.0.1026.22   linux-image-raspi               5.19.0.1022.21   linux-image-raspi-nolpae        5.19.0.1022.21   linux-image-starfive            5.19.0.1020.18   linux-image-virtual             5.19.0.46.42Ubuntu 22.04 LTS:   linux-image-5.19.0-1015-allwinner  5.19.0-1015.15~22.04.1   linux-image-5.19.0-1020-starfive  5.19.0-1020.22~22.04.1   linux-image-5.19.0-1027-gcp     5.19.0-1027.29~22.04.1   linux-image-5.19.0-1028-aws     5.19.0-1028.29~22.04.1   linux-image-5.19.0-46-generic   5.19.0-46.47~22.04.1   linux-image-5.19.0-46-generic-64k  5.19.0-46.47~22.04.1   linux-image-5.19.0-46-generic-lpae  5.19.0-46.47~22.04.1   linux-image-allwinner           5.19.0.1015.15~22.04.8   linux-image-aws                 5.19.0.1028.29~22.04.12   linux-image-gcp                 5.19.0.1027.29~22.04.1   linux-image-generic-64k-hwe-22.04  5.19.0.46.47~22.04.21   linux-image-generic-hwe-22.04   5.19.0.46.47~22.04.21   linux-image-generic-lpae-hwe-22.04  5.19.0.46.47~22.04.21   linux-image-starfive            5.19.0.1020.22~22.04.7   linux-image-virtual-hwe-22.04   5.19.0.46.47~22.04.21After a standard system update you need to reboot your computer to makeall the necessary changes.ATTENTION: Due to an unavoidable ABI change the kernel updates havebeen given a new version number, which requires you to recompile andreinstall all third party kernel modules you might have installed.Unless you manually uninstalled the standard kernel metapackages(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,linux-powerpc), a standard system upgrade will automatically performthis as well.References:   https://ubuntu.com/security/notices/USN-6192-1   https://launchpad.net/bugs/2023220   https://launchpad.net/bugs/2023577   CVE-2023-2430, CVE-2023-35788Package Information:   https://launchpad.net/ubuntu/+source/linux/5.19.0-46.47   https://launchpad.net/ubuntu/+source/linux-allwinner/5.19.0-1015.15   https://launchpad.net/ubuntu/+source/linux-aws/5.19.0-1028.29   https://launchpad.net/ubuntu/+source/linux-azure/5.19.0-1029.32   https://launchpad.net/ubuntu/+source/linux-gcp/5.19.0-1027.29   https://launchpad.net/ubuntu/+source/linux-ibm/5.19.0-1025.27   https://launchpad.net/ubuntu/+source/linux-kvm/5.19.0-1026.27   https://launchpad.net/ubuntu/+source/linux-lowlatency/5.19.0-1028.29   https://launchpad.net/ubuntu/+source/linux-oracle/5.19.0-1026.29   https://launchpad.net/ubuntu/+source/linux-raspi/5.19.0-1022.29   https://launchpad.net/ubuntu/+source/linux-starfive/5.19.0-1020.22 https://launchpad.net/ubuntu/+source/linux-allwinner-5.19/5.19.0-1015.15~22.04.1   https://launchpad.net/ubuntu/+source/linux-aws-5.19/5.19.0-1028.29~22.04.1   https://launchpad.net/ubuntu/+source/linux-gcp-5.19/5.19.0-1027.29~22.04.1   https://launchpad.net/ubuntu/+source/linux-hwe-5.19/5.19.0-46.47~22.04.1 https://launchpad.net/ubuntu/+source/linux-starfive-5.19/5.19.0-1020.22~22.04.1

Ubuntu Security Notice USN-6192-1

Ubuntu Security Notice 6191-1 - USN-6081-1, USN-6084-1, USN-6092-1 and USN-6095-1 fixed vulnerabilities in the Linux kernel. Unfortunately, that update introduced a spurious warning in the IPv6 subsystem. This update removes the undesired warning message.

    ==========================================================================Ubuntu Security Notice USN-6191-1June 29, 2023linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-4.15,linux-dell300x, linux-gcp, linux-gcp-4.15, linux-hwe, linux-kvm,linux-oracle, linux-raspi2, linux-snapdragon regression==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 18.04 LTS- Ubuntu 16.04 LTS (Available with Ubuntu Pro)Summary:The system could show undesired warning messages in certain conditions.Software Description:- linux: Linux kernel- linux-aws: Linux kernel for Amazon Web Services (AWS) systems- linux-azure-4.15: Linux kernel for Microsoft Azure Cloud systems- linux-dell300x: Linux kernel for Dell 300x platforms- linux-gcp-4.15: Linux kernel for Google Cloud Platform (GCP) systems- linux-kvm: Linux kernel for cloud environments- linux-oracle: Linux kernel for Oracle Cloud systems- linux-raspi2: Linux kernel for Raspberry Pi systems- linux-snapdragon: Linux kernel for Qualcomm Snapdragon processors- linux-aws-hwe: Linux kernel for Amazon Web Services (AWS-HWE) systems- linux-azure: Linux kernel for Microsoft Azure Cloud systems- linux-gcp: Linux kernel for Google Cloud Platform (GCP) systems- linux-hwe: Linux hardware enablement (HWE) kernelDetails:USN-6081-1, USN-6084-1, USN-6092-1 and USN-6095-1 fixed vulnerabilities inthe Linux kernel. Unfortunately, that update introduced a spurious warningin the IPv6 subsystem. This update removes the undesired warning message.Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 18.04 LTS:   linux-image-4.15.0-1067-dell300x  4.15.0-1067.72   linux-image-4.15.0-1121-oracle  4.15.0-1121.132   linux-image-4.15.0-1134-raspi2  4.15.0-1134.142   linux-image-4.15.0-1142-kvm     4.15.0-1142.147   linux-image-4.15.0-1151-gcp     4.15.0-1151.167   linux-image-4.15.0-1152-snapdragon  4.15.0-1152.162   linux-image-4.15.0-1158-aws     4.15.0-1158.171   linux-image-4.15.0-1167-azure   4.15.0-1167.182   linux-image-4.15.0-213-generic  4.15.0-213.224   linux-image-4.15.0-213-generic-lpae  4.15.0-213.224   linux-image-4.15.0-213-lowlatency  4.15.0-213.224   linux-image-aws-lts-18.04       4.15.0.1158.156   linux-image-azure-lts-18.04     4.15.0.1167.135   linux-image-dell300x            4.15.0.1067.66   linux-image-gcp-lts-18.04       4.15.0.1151.165   linux-image-generic             4.15.0.213.196   linux-image-generic-lpae        4.15.0.213.196   linux-image-kvm                 4.15.0.1142.133   linux-image-lowlatency          4.15.0.213.196   linux-image-oracle-lts-18.04    4.15.0.1121.126   linux-image-raspi2              4.15.0.1134.129   linux-image-snapdragon          4.15.0.1152.151   linux-image-virtual             4.15.0.213.196Ubuntu 16.04 LTS (Available with Ubuntu Pro):   linux-image-4.15.0-1121-oracle  4.15.0-1121.132~16.04.1   linux-image-4.15.0-1152-gcp     4.15.0-1152.168~16.04.1   linux-image-4.15.0-1158-aws     4.15.0-1158.171~16.04.1   linux-image-4.15.0-1167-azure   4.15.0-1167.182~16.04.1   linux-image-4.15.0-213-generic  4.15.0-213.224~16.04.1   linux-image-4.15.0-213-lowlatency  4.15.0-213.224~16.04.1   linux-image-aws-hwe             4.15.0.1158.141   linux-image-azure               4.15.0.1167.151   linux-image-gcp                 4.15.0.1152.142   linux-image-generic-hwe-16.04   4.15.0.213.198   linux-image-gke                 4.15.0.1152.142   linux-image-lowlatency-hwe-16.04  4.15.0.213.198   linux-image-oem                 4.15.0.213.198   linux-image-oracle              4.15.0.1121.102   linux-image-virtual-hwe-16.04   4.15.0.213.198After a standard system update you need to reboot your computer to makeall the necessary changes.ATTENTION: Due to an unavoidable ABI change the kernel updates havebeen given a new version number, which requires you to recompile andreinstall all third party kernel modules you might have installed.Unless you manually uninstalled the standard kernel metapackages(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,linux-powerpc), a standard system upgrade will automatically performthis as well.References:   https://launchpad.net/bugs/2020279   https://ubuntu.com/security/notices/USN-6191-1Package Information:   https://launchpad.net/ubuntu/+source/linux/4.15.0-213.224   https://launchpad.net/ubuntu/+source/linux-aws/4.15.0-1158.171   https://launchpad.net/ubuntu/+source/linux-azure-4.15/4.15.0-1167.182   https://launchpad.net/ubuntu/+source/linux-dell300x/4.15.0-1067.72   https://launchpad.net/ubuntu/+source/linux-gcp-4.15/4.15.0-1151.167   https://launchpad.net/ubuntu/+source/linux-kvm/4.15.0-1142.147   https://launchpad.net/ubuntu/+source/linux-oracle/4.15.0-1121.132   https://launchpad.net/ubuntu/+source/linux-raspi2/4.15.0-1134.142   https://launchpad.net/ubuntu/+source/linux-snapdragon/4.15.0-1152.162

Tag

#microsoft