USN-5970-1: Linux kernel vulnerabilities
It was discovered that the KVM VMX implementation in the Linux kernel did not properly handle indirect branch prediction isolation between L1 and L2 VMs....
USN-5969-1: gif2apng vulnerabilities
It was discovered that gif2apng contained multiple heap-base overflows. An attacker could potentially exploit this to cause a denial of service (system crash). (CVE-2021-45909, CVE-2021-45910,...
Cross Site Scripting vulnerabilty found in IXPManager v.5.6.0 allows attackers to excute arbitrary code via the looking glass component. Read More
FEDORA-2023-587d6a00c3 Packages in this update: dino-0.3.2-1.fc36 Update description: Maintenance release with fix for CVE-2023-28686 and bug fixes. Read More
FEDORA-2023-ea6b94395f Packages in this update: dino-0.4.2-1.fc38 Update description: Maintenance release with fix for CVE-2023-28686 and bug fixes. Read More
FEDORA-2023-f003d8e633 Packages in this update: dino-0.3.2-1.fc37 Update description: Maintenance release with fix for CVE-2023-28686 and bug fixes. Read More
Russian hacktivists deploy new AresLoader malware via decoy installers
Security researchers have started seeing attack campaigns that use a relatively new malware-as-a-service (MaaS) tool called AresLoader. The malicious program appears to be developed and...
File upload vulnerability in CSKaza CSZ CMS v.1.2.2 fixed in v1.2.4 allows attacker to execute aritrary commands and code via crafted PHP file. Read More
Danger USB! Journalists sent exploding flash drives
If you were sent a USB stick anonymously through the post, would you plug it into your computer? Perhaps you'll think twice when you hear...
China-Aligned “Operation Tainted Love” Targets Middle East Telecom Providers
The deployment of custom credential theft malware is the main novelty of the new campaign Read More