Monthly Patches are out for MediaTek. New Alerts for Lexmark and Linux. Tomorrow is Patch Day for Mobile.
Lexmark
Lexmark firmware is read-only, and normally if a device is compromised a reboot should clear the issue. There is a vulnerability that allows an attacker that has already compromised the device to make their compromise persistent, meaning after a device is rebooted, it will remain compromised. CVSSv3 score of 9.8
More info.
MediaTek has published their Monthly Patches, which includes 7 vulerabilities rated High and 20 rated Medium. The High vulnerabilities include several that allow RCE.
More info.
Oracle Linux has updated the kernel. More info.
Debian has updated the kernel. More info.
Ubuntu has updated the kernel. More info.
Comments