Published By
Created On
2 Nov 2022 22:00:47 UTC
Transaction ID
Cost
Safe for Work
Free
Yes
Over-Hyped OpenSSL Vulnerability November 2022
There was an announcement that OpenSSL 3.0.7 was due to be released on 1st November 2022 and that it would contain a security-fix rated at Critical.
This was subsequently over-hyped by the Infosec community, and the vulnerability was downgraded to High prior to the patch release.
Users of OpenSSL 3.0.0 to 3.0.6 should apply updates at your convenience.
The vulnerability does not affect older releases of OpenSSL.
Vulnerabilities Patched:
X.509 Email Address 4-byte Buffer Overflow (CVE-2022-3602)
X.509 Email Address Variable Length Buffer Overflow (CVE-2022-3786)
Sources:
https://mta.openssl.org/pipermail/openssl-announce/2022-October/000238.html
https://www.cisa.gov/uscert/ncas/alerts/TA14-098A
https://www.globalsign.com/en/blog/urgent-patch-openssl-november-1-avoid-critical-security-vulnerability
https://techcommunity.microsoft.com/t5/microsoft-defender-for-cloud/new-openssl-v3-vulnerability-prepare-with-microsoft-defender-for/ba-p/3666487
https://isc.sans.edu/forums/diary/Upcoming+Critical+OpenSSL+Vulnerability+What+will+be+Affected/29192
https://www.openssl.org/news/secadv/20221101.txt
https://www.openssl.org/blog/blog/2022/11/01/email-address-overflows/
Like my channel? Please help support it:
Paypal: https://www.paypal.me/quidsup
Follow me on Social Media
Twitter: https://twitter.com/quidsup
MeWe: https://mewe.com/i/quidsup
Minds: https://minds.com/quidsup
#OpenSSL
#CyberSecurity
#OverHyped
#QuidsupLinux
...
https://www.youtube.com/watch?v=kEkRyf8447o
This was subsequently over-hyped by the Infosec community, and the vulnerability was downgraded to High prior to the patch release.
Users of OpenSSL 3.0.0 to 3.0.6 should apply updates at your convenience.
The vulnerability does not affect older releases of OpenSSL.
Vulnerabilities Patched:
X.509 Email Address 4-byte Buffer Overflow (CVE-2022-3602)
X.509 Email Address Variable Length Buffer Overflow (CVE-2022-3786)
Sources:
https://mta.openssl.org/pipermail/openssl-announce/2022-October/000238.html
https://www.cisa.gov/uscert/ncas/alerts/TA14-098A
https://www.globalsign.com/en/blog/urgent-patch-openssl-november-1-avoid-critical-security-vulnerability
https://techcommunity.microsoft.com/t5/microsoft-defender-for-cloud/new-openssl-v3-vulnerability-prepare-with-microsoft-defender-for/ba-p/3666487
https://isc.sans.edu/forums/diary/Upcoming+Critical+OpenSSL+Vulnerability+What+will+be+Affected/29192
https://www.openssl.org/news/secadv/20221101.txt
https://www.openssl.org/blog/blog/2022/11/01/email-address-overflows/
Like my channel? Please help support it:
Paypal: https://www.paypal.me/quidsup
Follow me on Social Media
Twitter: https://twitter.com/quidsup
MeWe: https://mewe.com/i/quidsup
Minds: https://minds.com/quidsup
#OpenSSL
#CyberSecurity
#OverHyped
#QuidsupLinux
...
https://www.youtube.com/watch?v=kEkRyf8447o
Author
Content Type
Unspecified
video/mp4
Language
English
More from the publisher
Controlling
VIDEO
HOW T
how-to-use-breeze-oxygen-cursors-in
How to Install and Use the KDE Breeze and Oxygen Mouse Cursors in Ubuntu
Instructions:
$ sudo apt install breeze-cursor-theme oxygen-cursor-theme oxygen-cursor-theme-extra unity-tweek-tool
Open Unity Tweek Tool and Choose a Cursor, remember to take note of its name
$ sudo update-alternatives --config x-cursor-theme
Choose your cursor theme
$ compiz --replace
(Or log out and log back in)
...
https://www.youtube.com/watch?v=zSpEoHKyTJg
Transaction
Created
1 month ago
Content Type
Language
video/mp4
English
Controlling
VIDEO
LINUX
linux-terminal-basics-get-list-of-all
How to get a list of all files on your Linux System or NAS Device. Very useful if you have acquired a large quantity of videos, images, or music
Command:
ls -shR1 /mnt/folder
Background from Charlie Henson:
Vector City Celestrial - https://www.opendesktop.org/p/1239688/
Like my channel? Please help support it:
Patreon: https://www.patreon.com/quidsup
Paypal: https://www.paypal.me/quidsup
Follow me on Social Media
Google+ https://google.com/+quidsup
Twitter: https://twitter.com/quidsup
Minds: https://minds.com/quidsup
...
https://www.youtube.com/watch?v=VDlH_4OfwzQ
Transaction
Created
1 month ago
Content Type
Language
video/mp4
English
Controlling
VIDEO
MELTD
meltdown-spectre-vulnerabilities-what
What you need to know about #Meltdown and #Spectre computer vulnerabilities which affects all computers and all CPU’s.
Discussing the affects against Windows, Linux, MacOS. As well as browsers: Chrome, Chromium, Firefox, Internet Explorer, Edge, and Opera.
Sources used:
https://newsroom.intel.com/news/intel-responds-to-security-research-findings/
https://www.amd.com/en/corporate/speculative-execution
https://developer.arm.com/support/security-update
https://security.googleblog.com/2018/01/todays-cpu-vulnerability-what-you-need.html
https://support.google.com/faqs/answer/7622138#chrome
https://www.mozilla.org/en-US/security/advisories/mfsa2018-01/
https://blogs.windows.com/msedgedev/2018/01/03/speculative-execution-mitigations-microsoft-edge-internet-explorer/
https://blogs.opera.com/security/2018/01/opera-mitigates-critical-cpu-vulnerabilities/
http://news.softpedia.com/news/linux-kernels-4-14-11-4-9-74-4-4-109-3-16-52-and-3-2-97-patch-meltdown-flaw-519215.shtml
https://insights.ubuntu.com/2018/01/04/ubuntu-updates-for-the-meltdown-spectre-vulnerabilities/
https://www.raspberrypi.org/blog/why-raspberry-pi-isnt-vulnerable-to-spectre-or-meltdown/
https://www.theregister.co.uk/2018/01/04/microsoft_windows_patch_meltdown/
https://www.catalog.update.microsoft.com/Search.aspx?q=KB4056897
https://www.catalog.update.microsoft.com/Search.aspx?q=KB4056898
https://support.apple.com/en-us/HT208394
Like my channel? Please help support it:
Patreon: https://www.patreon.com/quidsup
Paypal: https://www.paypal.me/quidsup
Follow me on Social Media
Google+ https://google.com/+quidsup
Twitter: https://twitter.com/quidsup
Minds: https://minds.com/quidsup
...
https://www.youtube.com/watch?v=STQukPXWkTI
Transaction
Created
1 month ago
Content Type
Language
video/mp4
English
Controlling
VIDEO
75% B
75-businesses-were-targetted-by-email
Either I deal with a disproportionate amount of email fraud or most businesses have no idea.
I show a few of the phishing attempts that I have dealt with in the past couple of weeks.
Article: https://www.scmagazineuk.com/three-quarters-of-businesses-targetted-at-least-once-by-email-fraud/article/752778/
Like my channel? Please help support it:
Patreon: https://www.patreon.com/quidsup
Paypal: https://www.paypal.me/quidsup
Follow me on Social Media
Google+ https://google.com/+quidsup
Twitter: https://twitter.com/quidsup
Minds: https://minds.com/quidsup
...
https://www.youtube.com/watch?v=MdSAgBi7URc
Transaction
Created
1 month ago
Content Type
Language
video/mp4
English
Controlling
VIDEO
DESKT
desktop-december-lumina-desktop
Lumina desktop environment started life in BSD, but has been ported to Linux, and is available through the standard repositories in most Linux distributions.
Lumina uses the Qt5 framework and Fluxbox window manager. In a way its a lightweight version of the KDE desktop.
I have been unable to find Lumina pre-installed on any Linux distro, the only system I can find it on is FreeBSD’s TrueOS.
Website: https://lumina-desktop.org
Wallpaper: https://quidsup.net?i=Ball%20balls.jpg
Please donate and help support my work:
Patreon: https://www.patreon.com/quidsup
Paypal: https://www.paypal.me/quidsup
Google+ https://google.com/+quidsup
Twitter: https://twitter.com/quidsup
...
https://www.youtube.com/watch?v=biTbgNi3azo
Transaction
Created
1 month ago
Content Type
Language
video/mp4
English
Controlling
VIDEO
LINUX
linux-desktop-share-at-3
Looking at the 2017 statistics from a NSFW website which show Linux Desktop share dropped slightly in 2017, but remains at about 3%
Like my channel? Please help support it:
Patreon: https://www.patreon.com/quidsup
Paypal: https://www.paypal.me/quidsup
Follow me on Social Media
Google+ https://google.com/+quidsup
Twitter: https://twitter.com/quidsup
Minds: https://minds.com/quidsup
...
https://www.youtube.com/watch?v=EX3vjDCM_Dc
Transaction
Created
1 month ago
Content Type
Language
video/mp4
English
Controlling
VIDEO
A WEE
a-week-of-linux-news-30-october-2016
Run down of Linux news for the week ending 30 October 2016, some surprising news for this week...
Dirty CoW Exploit on Android: http://arstechnica.co.uk/security/2016/10/android-dirty-cow-escalation-vulnerability/
Ubuntu vs Linux Mint: http://www.linuxandubuntu.com/home/ubuntu-vs-linux-mint-which-is-better-in-2016
Lenovo now allowing Linux on Yoga 900 laptops: http://www.theregister.co.uk/2016/10/28/lenovo_downward_dogs_with_yoga_bios_update_supporting_linux_installs/
Topless in-car selfie attempt results in rear-end cop bonking: http://www.theregister.co.uk/2016/10/28/topless_selfie_attempt_finishes_with_rearend_cop_bonking/
Distros:
Primtux: http://primtux.fr/
Sabayon: https://www.sabayon.org/
Maui Linux: https://mauilinux.org/
Netrunner: http://www.netrunner.com/
Bodhi: http://www.bodhilinux.com/
Clonezilla: http://www.clonezilla.org/
...
https://www.youtube.com/watch?v=YaPc78r3RFU
Transaction
Created
1 month ago
Content Type
Language
video/mp4
English
Controlling
VIDEO
HOW T
how-to-install-opensuse-to-dual-boot
How to dualboot OpenSUSE with Windows or another Linux Distribution.
In this video I go through step-by-step how to install OpenSUSE, and how to use their manual partitioning tool.
At the end of the video I also show how to correct the Network connection issue that affected my system with OpenSUSE 13.1.
OpenSUSE: http://www.opensuse.org
Unetbootin: http://unetbootin.sourceforge.net/
Wallpaper: http://quidsup.net/?i=cubes_1080
...
https://www.youtube.com/watch?v=Md6LZ7EWYUE
Transaction
Created
1 month ago
Content Type
Language
video/mp4
English
Controlling
VIDEO
EVERY
everything-new-with-ubuntu-17.04
Ubuntu 17.04 is scheduled for release on 13 April 2017. Looking at some of the new features we can expect to see, including Driverless Printing support for IPP and Apple AirPrint, no more swap partition, newer kernel
...
https://www.youtube.com/watch?v=_fK1IU24s1Y
Transaction
Created
1 month ago
Content Type
Language
video/mp4
English