Lifeboat Foundation: Safeguarding Humanity
Toggle light / dark theme

Blog – Page 4612

Twelve new security flaws impacting various chipsets were disclosed in this month’s security advisory for Qualcomm’s devices, two of which have been given a critical severity rating. Two significant flaws in Qualcomm chipsets have been identified that might allow malicious payloads to installed remotely on the Android devices.

The first vulnerability, identified as CVE-2022–25748 (CVSS score 9.8), affects Qualcomm’s WLAN component and is described as a “Integer Overflow to Buffer Overflow during parsing GTK frames”. If exploited, this issue might result in memory corruption and remote code execution. This vulnerability impact all smart devices that use the Qualcomm Snapdragon APQ, CSRA, IPQ, MDM, MSM, QCA, WSA, WCN, WCD, SW, SM, SDX, SD, SA, QRB, QCS, QCN, and more series.

The second vulnerability, identified as CVE-2022–25718 (CVSS score 9.1), also affects Qualcomm’s WLAN component and is described as a “Cryptographic issue in WLAN due to improper check on return value while authentication handshake”. If exploited, this issue might result in memory corruption and remote code execution. This vulnerability impact all smart devices that use the Qualcomm Snapdragon APQ, CSRA, IPQ, MDM, MSM, QCA, WSA, WCN, WCD, SW, SM, SDX, SD, SA, QRB, QCS, QCN, and more series.

Read more | >

A security investigator has discovered three new code execution flaws in the Linux kernel that might be exploited by a local or external adversary to take control of the vulnerable computers and run arbitrary code. The roccat_report_event function in drivers/hid/hid-roccat.c has a use-after-free vulnerability identified as CVE-2022–41850 (CVSS score: 8.4). A local attacker might exploit this flaw to run malicious script on the system by submitting a report while copying a report->value. Patch has be released to addresses the Linux Kernel 5.19.12 vulnerability CVE-2022–41850.

The second flaw tracked as CVE-2022–41848 (CVSS score: 6.8), is also a use-after-free flaw due to a race condition between mgslpc_ioctl and mgslpc_detach in drivers/char/pcmcia/synclink_cs.c. By removing a PCMCIA device while calling ioctl, an attacker could exploit this vulnerability to execute arbitrary code on the system. The bug affects Linux Kernel 5.19.12 and was fixed via this patch.

Due to a compatibility issues between mgslpc ioctl and mgslpc detach in drivers/char/pcmcia/synclink cs.c, the second vulnerability, tagged as CVE-2022–41848 (CVSS score: 6.8), is likewise a use-after-free vulnerability. An adversary might use this flaw to run malicious script on the computer by deleting a PCMCIA device while executing ioctl. There is a patch that corrects this flaw that was present in the Linux Kernel 5.19.12.

Read more | >

Summary: A newly discovered second stem cell population in the mouse brain is responsible for the production of new neurons in the olfactory bulb of adult mice.

Source: Heidelburg University.

In the brain of adult mammals, neural stem cells ensure that new nerve cells, i.e. neurons, are constantly formed. This process, known as adult neurogenesis, helps mice maintain their sense of smell.

Read more | >

Summary: Boosting omega-3 fatty acid intake helps to preserve brain health and improve cognition in middle age, a new study reports. For those with the Alzheimer’s associated APOE4 gene, omega-3 fatty acid intake was associated with greater hippocampal volume and less small vessel disease.

Source: UT San Antonio.

Eating cold-water fish and other sources of omega-3 fatty acids may preserve brain health and enhance cognition in middle age, new evidence indicates.

Read more | >

A multidisciplinary team from two Johns Hopkins University institutions, including neurotoxicologists and virologists from the Bloomberg School of Public Health and infectious disease specialists from the school of medicine, has found that organoids (tiny tissue cultures made from human cells that simulate whole organs) known as “mini-brains” can be infected by the SARS-CoV-2 virus that causes COVID-19.

The results, which suggest that the virus can infect human cells, were published online June 26, 2020, in the journal ALTEX: Alternatives to Animal Experimentation.

Early reports from Wuhan, China, the origin of the COVID-19 pandemic, have suggested that 36% of patients with the disease show , but it has been unclear whether or not the virus infects human brain cells. In their study, the Johns Hopkins researchers demonstrated that certain human neurons express a receptor, ACE2, which is the same one that the SARS-CoV-2 virus uses to enter the lungs. Therefore, they surmised, ACE2 also might provide access to the brain.

Read more | >