Outer Web | Explore

Explore >> Select a destination

You are here		blog.siguza.net Siguza's Blog \| Siguza's Blog
\|	\|	www.sonarsource.com Parallel Code Security: The Challenge of Concurrency \| Sonar	16.7 parsecs away Travel
\|	\|	Parallelism has been around for decades, but it is still a source of critical vulnerabilities nowadays. This blog post details a severe vulnerability in the remote desktop gateway Apache Guacamole, highlighting the security risks of parallelism.	16.7 parsecs away Travel
\|	\|	blog.trailofbits.com A deep dive into Linux's new mseal syscall \| Trail of Bits Blog	16.2 parsecs away Travel
\|	\|	By Alan Cao If you love exploit mitigations, you may have heard of a new system call named mseal landing into the Linux kernel's 6.10 release, providing a protection called "memory sealing." Beyond notes from the authors, very little information about this mitigation exists. In this blog post, we'll explain what this syscall is, including...	16.2 parsecs away Travel
\|	\|	github.blog Corrupting memory without memory corruption - The GitHub Blog	16.3 parsecs away Travel
\|	\|	In this post Ill exploit CVE-2022-20186, a vulnerability in the Arm Mali GPU kernel driver and use it to gain arbitrary kernel memory access from an untrusted app on a Pixel 6. This then allows me to gain root and disable SELinux. This vulnerability highlights the strong primitives that an attacker may gain by exploiting errors in the memory management code of GPU drivers.	16.3 parsecs away Travel
\|	\|	www.cybereason.com CVE-2025-32433: Unauthenticated RCE Vulnerability in Erlang/OTP's SSH Implementation	71.4 parsecs away Travel
\|		A critical, unauthenticated remote code execution vulnerability, tracked as CVE-2025-32433, have been discovered in Erlang/OTP's SSH implementation.	71.4 parsecs away Travel