cognitive cybersecurity intelligence

News and Analysis

Search

GNOME Linux systems exposed to RCE attacks via file downloads

A memory corruption vulnerability in the open-source libcue library can allow attackers to execute arbitrary code on Linux systems running the GNOME desktop environment. The libcue library is part of the Tracker Miners file metadata indexer, included in the latest GNOME versions. Attackers can exploit the flaw by enticing a user to download a malicious .CUE file. The memory corruption flaw is activated when the malicious file is automatically parsed by the Tracker Miners metadata indexer. Users are advised to update systems to mitigate risks.

Source: www.bleepingcomputer.com –

Subscribe to newsletter

Subscribe to HEAL Security Dispatch for the latest healthcare cybersecurity news and analysis.

More Posts