LAN 276: Linux Action News 276¶
- Air Date: 2023-01-19
- Duration: 16 mins 44 secs
About this episode¶
A high-profile Linux kernel network flaw, we put JFS on a death watch, and break down the controversial Firefox update this week.
Your hosts¶
Sponsored by¶
- Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
- Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.
Episode links¶
- A new privilege escalation vulnerability in the Linux kernel — The vulnerability consists of a stack buffer overflow due to an integer underflow vulnerability inside the nft_payload_copy_vlan function, which is invoked with nft_payload expressions as long as a VLAN tag is present in the current skb.
- netfilter: nft_payload: add C-VLAN support · torvalds/linux@f6ae9f1
- CVE-2023-0179
- CVE-2023-0179- Red Hat Customer Portal
- [net,3/3] netfilter: nft_payload: incorrect arithmetics when fetching VLAN header bits - Patchwork
- oss-sec: Re: CVE-2023-0179: Linux kernel stack buffer overflow in nftables: PoC and writeup
- libvirt 9.0 Released For Latest Linux Virtualization API — Libvirt 9.0 adds support for external snapshot deletion with QEMU using its existing API, libvirt 9.0 with QEMU now supports PASST as "Plug A Simple Socket Transport" for connecting an emulated network device to the host's network, QEMU external back-end support for SWTPM as a software Trusted Platform Module (TPM), support for passing file descriptors rather than passing files for the QEMU disk, and other additions.
- JFS Filesystem’s Days are Numbered — IBM developed the JFS file-system originally in the 90's for AIX and the second-generation implementation then ported to Linux after it was made open-source.
- Firefox 109.0 Ships Manifest Version 3 — Manifest Version 3 (MV3) extension support is now enabled by default (MV2 remains enabled/supported). This major update also ushers an exciting user interface change in the form of the new extensions button.
- Here’s what’s going on in the world of extensions
- Manage your extensions using the extensions button in the toolbar
- Manifest v3 signing available November 21 on Firefox Nightly
- Google delays start of Manifest V2 Chrome extension deprecation — The original plan called for Chrome Beta, Dev, and Canary builds to start experiments that turned off Manifest V2 extension support. Additionally, Manifest V3 would be required to get the “Featured” badge in the Chrome Web Store.
- Firefox 109 Adds New Extensions Button, Manifest V3 Support — The biggest new feature is the new Unified Extensions button in the toolbar.
- Chrome’s “Manifest V3” plan to limit ad-blocking extensions is delayed
- Chrome Users Beware: Manifest V3 is Deceitful and Threatening — Manifest V3, or Mv3 for short, is outright harmful to privacy efforts. It will restrict the capabilities of web extensions
Tags¶
adblock plus, adblocking, auditing, browser extensions, buffer overflow, c, christoph hellwig, cve-2023-0179, daniel berrange, declarativenetrequest, emulated network, firefox, firefox 109, go, iptables, jfs, journaling filesystems, kernel, libvirt, libvirt 9.0, linux, linux 6.2, linux action news, linux news podcast, macos, manifest v3, mozilla, netfilter, networking, nft_payload, nftables, oss-sec, packet filtering, passt, perl, privilege escalation, python, qemu, qumranet, red hat, reiserfs, responsible disclosure, security, snapshots, stack overflow, sysctl, ublock origin, unprivileged user namespaces, virtualization, vlan, webrequest api, windows