Linux RCE Exploited in the Wild via CUPS Print Scheduler Before Disclosure
Posted on
Edited on
Quick Report
A high profile vulnerability with a CVSS score of 9.9 by RHEL and Canonical affecting widely used print server installed by default on many Linux and UNIX systems. The exploit discovered is a remote code execution vulnerability in the CUPS Print Scheduler allows attackers to run arbitrary code on the system without any user interaction required.
Intel Isolated 13th & 14th Gen Instability Issues Linked to Degraded Clock Tree Circuit
Posted on
Edited on
Quick Report
After Intel's Root Cause Analysis of 13th and 14th gen instability linked to microcode bug that delivered higher than optimal voltage degrading the CPU ultimately causing instability, Intel has released a microcode update to mitigate the issue. Now, Intel's research has determined that due to higher voltage supplied the CPUs now requires a higher minimum voltage called Vmin and the issue is linked to clock tree circuit in the IA core causing a shift in processor duty cycle resulting in system instability.
Qualcomm Approaching Intel About Takeover Bid
Posted on
Edited on
Quick Report
After Intel's disappointing FY results for Q3, Qualcomm is reportedly approaching Intel about a takeover bid according to WSJ rumours. The rumour states, Qualcomm was eyeing some of the client divisions related chip design and foundry services. At the moment not much concrete information is available. Even if the rumours are true, it is unlikely that Intel will accept a takeover bid to risk x86 licensing and other IPs.
Crucial MX500 SATA SSD Firmware M3CR046 Vulnerable to Buffer Overflow Attacks
Posted on
Edited on
Quick Report
One of the popular and best selling SATA SSDs from Crucial aka Micron is affected by buffer overflow attack for firmware version M3CR046. According to CVE-2024-42642 report, a specially crafted ATA packets from host to drive controller can lead to buffer overflow and memory corruption issues.