Software Supply Chain Attack Hits Thousands of Apps
Researchers discover malicious npm packages Read More
subversion-1.14.2-5.fc36
FEDORA-2022-2af658b090 Packages in this update: subversion-1.14.2-5.fc36 Update description: This update includes the latest stable release of Apache Subversion, version 1.14.2. This update addresses two security...
subversion-1.14.2-5.fc35
FEDORA-2022-13cc09ecf2 Packages in this update: subversion-1.14.2-5.fc35 Update description: This update includes the latest stable release of Apache Subversion, version 1.14.2. This update addresses two security...
php-8.1.8-1.fc36
FEDORA-2022-ec0491574d Packages in this update: php-8.1.8-1.fc36 Update description: PHP version 8.1.8 (07 Jul 2022) Core: Fixed bug GH-8338 (Intel CET is disabled unintentionally). (Chen, Hu)...
ZDI-22-949: (0Day) xhyve e1000 Stack-based Buffer Overflow Local Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on affected installations of xhyve. An attacker must first obtain the ability to execute high-privileged code on...
DSA-5178 intel-microcode – security update
This update ships updated CPU microcode for some types of Intel CPUs and provides mitigations for security vulnerabilities. Read More
webkit2gtk3-2.36.4-1.fc36
FEDORA-2022-fdb75e7766 Packages in this update: webkit2gtk3-2.36.4-1.fc36 Update description: Fix the new ATSPI accessibility implementation to add the missing Collection interface for the loaded document. Fix...
webkit2gtk3-2.36.4-1.fc35
FEDORA-2022-6b749525f3 Packages in this update: webkit2gtk3-2.36.4-1.fc35 Update description: Fix the new ATSPI accessibility implementation to add the missing Collection interface for the loaded document. Fix...
Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution
Multiple vulnerabilities have been discovered in Google Chrome, the most severe of which could allow for arbitrary code execution. Google Chrome is a web browser...
APT campaign targeting SOHO routers highlights risks to remote workers
A targeted attack campaign has been compromising home and small-business routers since late 2020 with the goal of hijacking network communications and infecting local computers...