Patchwork

Patchwork is a cyber espionage group that was first observed in December 2015. While the group has not been definitively attributed, circumstantial evidence suggests the group may be a pro-Indian or Indian entity. Patchwork has been seen targeting industries related to diplomatic and government agencies. Much of the code used by this group was copied and pasted from online forums. Patchwork was also seen operating spearphishing campaigns targeting U.S. think tank groups in March and April of 2018.

This Cyber News was published on attack.mitre.org. Publication date: Thu, 07 Dec 2023 22:12:07 +0000


Cyber News related to Patchwork

Patchwork - Patchwork is a cyber espionage group that was first observed in December 2015. While the group has not been definitively attributed, circumstantial evidence suggests the group may be a pro-Indian or Indian entity. Patchwork has been seen targeting ...
1 year ago Attack.mitre.org Patchwork
CVE-2019-13122 - A Cross Site Scripting (XSS) vulnerability exists in the template tag used to render message ids in Patchwork v1.1 through v2.1.x. This allows an attacker to insert JavaScript or HTML into the patch detail page via an email sent to a mailing list ...
5 years ago Patchwork
CVE-2023-52586 - In the Linux kernel, the following vulnerability has been resolved: ...
1 year ago Patchwork
CVE-2024-26667 - In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: check for valid hw_pp in dpu_encoder_helper_phys_cleanup The commit 8b45a26f2ba9 ("drm/msm/dpu: reserve cdm blocks for writeback in case of YUV output") introduced a ...
11 months ago Tenable.com Patchwork
CVE-2024-38622 - In the Linux kernel, the following vulnerability has been resolved: ...
9 months ago Patchwork
CVE-2024-45015 - In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: move dpu_encoder's connector assignment to atomic_enable() For cases where the crtc's connectors_changed was set without enable/active getting toggled , there is an ...
6 months ago Tenable.com Patchwork
CVE-2024-44982 - In the Linux kernel, the following vulnerability has been resolved: ...
5 months ago Patchwork
CVE-2022-49693 - In the Linux kernel, the following vulnerability has been resolved: drm/msm/mdp4: Fix refcount leak in mdp4_modeset_init_intf of_graph_get_remote_node() returns remote device node pointer with refcount incremented, we should use of_node_put() on it ...
1 month ago Tenable.com Patchwork
CVE-2022-49495 - In the Linux kernel, the following vulnerability has been resolved: drm/msm/hdmi: check return value after calling platform_get_resource_byname() It will cause null-ptr-deref if platform_get_resource_byname() returns NULL, we need check the return ...
1 month ago Tenable.com Patchwork
CVE-2022-49488 - In the Linux kernel, the following vulnerability has been resolved: drm/msm/mdp5: Return error code in mdp5_mixer_release when deadlock is detected There is a possibility for mdp5_get_global_state to return -EDEADLK when acquiring the modeset lock, ...
1 month ago Tenable.com Patchwork
Whose Data Is It Anyway? Equitable Access in Cybersecurity - COMMENTARY. In an era of enormous data volumes and proliferated sources, cybersecurity has become a data management problem. As we prepare for surmounting challenges ahead, it has become clear: Equitable access to our log data is not just a ...
10 months ago Darkreading.com Patchwork
CVE-2024-38390 - In the Linux kernel, the following vulnerability has been resolved: ...
9 months ago Patchwork
Is Your Cloud Security a Mess? Five Problems CNAPP Can Cure - The rush to adopt cloud technologies can sometimes feel like sprinting towards a cliff's edge. Data breaches, compliance violations, overwhelmed teams - these troubling trends have become far too commonplace these days - especially when you consider ...
8 months ago Securityboulevard.com Patchwork
CVE-2024-52559 - In the Linux kernel, the following vulnerability has been resolved: ...
1 month ago Patchwork
CVE-2022-48888 - In the Linux kernel, the following vulnerability has been resolved: ...
3 months ago Patchwork
CVE-2024-49901 - In the Linux kernel, the following vulnerability has been resolved: drm/msm/adreno: Assign msm_gpu->pdev earlier to avoid nullptrs There are some cases, such as the one uncovered by Commit 46d4efcccc68 ("drm/msm/a6xx: Avoid a nullptr dereference when ...
5 months ago Tenable.com Patchwork
CVE-2024-50156 - In the Linux kernel, the following vulnerability has been resolved: drm/msm: Avoid NULL dereference in msm_disp_state_print_regs() If the allocation in msm_disp_state_dump_regs() failed then `block->state` can be NULL. The msm_disp_state_print_regs() ...
4 months ago Tenable.com Patchwork
CVE-2022-49490 - In the Linux kernel, the following vulnerability has been resolved: drm/msm/mdp5: Return error code in mdp5_pipe_release when deadlock is detected mdp5_get_global_state runs the risk of hitting a -EDEADLK when acquiring the modeset lock, but ...
1 month ago Tenable.com Patchwork
CVE-2022-49489 - In the Linux kernel, the following vulnerability has been resolved: drm/msm/disp/dpu1: set vbif hw config to NULL to avoid use after memory free during pm runtime resume BUG: Unable to handle kernel paging request at virtual address 006b6b6b6b6b6be3 ...
1 month ago Tenable.com Patchwork
CVE-2022-49483 - In the Linux kernel, the following vulnerability has been resolved: drm/msm/disp/dpu1: avoid clearing hw interrupts if hw_intr is null during drm uninit If edp modeset init is failed due to panel being not ready and probe defers during drm bind, ...
1 month ago Tenable.com Patchwork
CVE-2024-58073 - In the Linux kernel, the following vulnerability has been resolved: ...
3 weeks ago Patchwork
CVE-2022-49458 - In the Linux kernel, the following vulnerability has been resolved: drm/msm: don't free the IRQ if it was not requested As msm_drm_uninit() is called from the msm_drm_init() error path, additional care should be necessary as not to call the ...
1 month ago Tenable.com Patchwork
CVE-2022-48898 - In the Linux kernel, the following vulnerability has been resolved: ...
3 months ago Patchwork
Privileged Access Management for DevOps - Recently, KuppingerCole released the first edition of its Leadership Compass for Privileged Access Management for DevOps. The KuppingerCole report recognizes the unique and complex challenges that exist in DevOps and other dynamic environments. The ...
2 years ago Beyondtrust.com Patchwork
Thought GDPR Compliance Was Hard? Buckle Up - COMMENTARY. Five years since the European Union's General Data Protection Regulation took effect, its fingerprints are everywhere: from proliferating privacy laws worldwide to the now-ubiquitous consent banners seen across websites of every kind. For ...
1 year ago Darkreading.com Patchwork

Latest Cyber News


Cyber Trends (last 7 days)