Skip to main content
All posts tagged “CVE”

Background on the Stack Clash

Security researchers at Qualys recently disclosed new techniques to exploit stack allocations on several operating systems, even in the face of a number of security measures. Qualys was able to find numerous local-root exploits — exploits which allow local users of a system to gain root privileges — by applying stack allocation techniques against various pieces of userspace software.

Docker just released docker 1.12.6 with a fix for a vulnerability in RunC (CVE-2016-9962). The security advisory states:

The Alternative Chains Certificate Forgery vulnerability in OpenSSL, as reported in

The glibc vulnerability, CVE-2015-0235, known as “GHOST”, has been patched on CoreOS. If automatic updates are enabled (default configuration), your server should already be patched.

If automatic updates are disabled, you can force an update by running update_engine_client -check_for_update.

Subscribe to CVE