CVE-2023-4458 - Sensitive Data Disclosure in Linux KSMBD Module Due to Flawed Attribute Parsing
Linux is one of the most widely used operating systems across the globe, known for its stability and robust security practices. However, even mature software
CVE-2022-31670 - Breaking Harbor’s Boundaries with Tag Retention Policy Escalation
When we protect our container images, tools like Harbor are critical in keeping our images organized, up-to-date, and safe from accidental deletion. Harbor lets teams
CVE-2024-3447 - Heap-Based Buffer Overflow in QEMU SDHCI Device Emulation Explained
In June 2024, a critical vulnerability was found in the QEMU emulator, specifically in the SDHCI device emulation code. Identified as CVE-2024-3447, this bug allows
CVE-2022-31671 - How Harbor’s Weak Log Permissions Expose Your Job Logs
In today’s world, container registries like VMware Harbor are the backbone of cloud-native development. Harbor is valued for its security features, but even the
CVE-2022-31669 - How Harbor’s Tag Immutability Policy Update Bug Can Let Attackers Alter Other Projects
When it comes to securing container images, Harbor is an open-source registry many organizations depend on for its advanced features, including tag immutability policies—rules
Episode
00:00:00
00:00:00