New BEC Tactics Enable Fake Asset Purchases
FBI warns of scammers using Net-30 and Net-60 terms Read More
Latitude Financial Admits Breach Impacted Millions
Over 14 million records stolen from consumer lender Read More
Align to a Framework: Plan a Cybersecurity Roadmap’s Route
Once you have an idea of where you are, you can decide where you want to go. A security framework is invaluable for this type...
USN-5972-1: Thunderbird vulnerabilities
Multiple security issues were discovered in Thunderbird. If a user were tricked into opening a specially crafted website in a browsing context, an attacker could...
CVE-2018-25083
The pullit package before 1.4.0 for Node.js allows OS Command Injection because eval is used on an attacker-supplied Git branch name. Read More
USN-5954-2: Firefox regressions
USN-5954-1 fixed vulnerabilities in Firefox. The update introduced several minor regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Multiple...
DSA-5379 dino-im – security update
Kim Alvefur discovered that insufficient message sender validation in dino-im, a modern XMPP/Jabber client, may result in manipulation of entries in the personal bookmark store...
jpegoptim-1.5.3-1.fc38
FEDORA-2023-ee0bc9afb6 Packages in this update: jpegoptim-1.5.3-1.fc38 Update description: v1.5.3 - fix potential heap-buffer-overflow (read) when using stdin/stdout and processing corrupt JPEG Read More
jpegoptim-1.5.3-1.el9
FEDORA-EPEL-2023-9391e7aeda Packages in this update: jpegoptim-1.5.3-1.el9 Update description: v1.5.3 - fix potential heap-buffer-overflow (read) when using stdin/stdout and processing corrupt JPEG Read More
qemu-7.0.0-15.fc37
FEDORA-2023-371519fd09 Packages in this update: qemu-7.0.0-15.fc37 Update description: qga/win32: Fix local privilege escalation issue (CVE-2023-0664) (rhbz#2175700) Read More