DSA-5138 waitress – security update
It was discovered that the Waitress WSGI server was susceptible to HTTP request smuggling in some scenarios when used behind a proxy. Read More
DSA-5139 openssl – security update
Elison Niven discovered that the c_rehash script included in OpenSSL did not sanitise shell meta characters which could result in the execution of arbitrary commands....
DSA-5137 needrestart – security update
Jakub Wilk discovered a local privilege escalation in needrestart, a utility to check which daemons need to be restarted after library upgrades. Regular expressions to...
Can Parental Controls Can Help You Create Good Habits?
Molding and shaping our kids while we can is every parent’s dream. When kids are young – and sweet! – they are far more inclined...
USN-5311-2: containerd regression
USN-5311-1 released updates for contained. Unfortunately, a subsequent update reverted the fix for this CVE by mistake. This update corrects the problem. We apologize for...
PCI DSS explained: Requirements, fines, and steps to compliance
PCI DSS meaning PCI DSS is a cybersecurity standard backed by all the major credit card and payment processing companies that aims to keep credit...
CVE-2021-27444
The Weintek cMT product line is vulnerable to various improper access controls, which may allow an unauthenticated attacker to remotely access and download sensitive information...
CVE-2021-27442
The Weintek cMT product line is vulnerable to a cross-site scripting vulnerability, which could allow an unauthenticated remote attacker to inject malicious JavaScript code. Read...
CVE-2021-23267
Improper Control of Dynamically-Managed Code Resources vulnerability in Crafter Studio of Crafter CMS allows authenticated developers to execute OS commands via FreeMarker static methods. Read...
CVE-2021-23266
An anonymous user can craft a URL with text that ends up in the log viewer as is. The text can then include textual messages...