Invitation to the World Cryptologic Competition 2023
Posted by Competition Administrator on Mar 21 The WCC 2023 is a fully-online and open competition using GitHub. The language of the competition is English....
Insecure python cgi documentation and tutorials are vulnerable to XSS.
Posted by Georgi Guninski on Mar 21 Is there low hanging fruit for the following observation? The documentation of the python cgi module is vulnerable...
Re: Microsoft PlayReady security research
Posted by Adam Gowdiak on Mar 21 Hello, I feel obliged to provide additional comments to this paragraph as I start to believe that CANAL+...
Re: Defense in depth — the Microsoft way (part 83): instead to fix even their most stupid mistaskes, they spill barrels of snakeoil to cover them (or just leave them as-is)
Posted by Arik Seils on Mar 21 Hi there, One can use the Metasploit Framework Module post/windows/local/bypassua _fodhelper to achieve this. Greetings from Germany, A.Seils...
xen-4.16.3-4.fc37
FEDORA-2023-da8315e641 Packages in this update: xen-4.16.3-4.fc37 Update description: 3 security issues (#2180425) x86 shadow plus log-dirty mode use-after-free [XSA-427, CVE-2022-42332] x86/HVM pinned cache attributes mis-handling...
xen-4.16.3-4.fc36
FEDORA-2023-04b5338dd0 Packages in this update: xen-4.16.3-4.fc36 Update description: 3 security issues (#2180425) x86 shadow plus log-dirty mode use-after-free [XSA-427, CVE-2022-42332] x86/HVM pinned cache attributes mis-handling...
USN-5967-1: object-path vulnerabilities
It was discovered that the set() method in object-path could be corrupted as a result of prototype pollution by sending a message to the parent...
Ping Identity debuts decentralized access management system in early access
Ping Identity, a Colorado-based IAM software vendor, is making a new product, PingOne Neo, available in a limited early access program. PingOne Neo is designed...
As critical Microsoft vulnerabilities drop, attackers may adopt new techniques
While the total number of recorded Microsoft vulnerabilities was higher in 2022 than ever before, the number of critical vulnerabilities declined to its lowest point,...
reposurgeon-4.35-1.fc38
FEDORA-2023-76d18cf2fa Packages in this update: reposurgeon-4.35-1.fc38 Update description: 4.35: 2023-03-21 Document an importand gotcha about working with CVS. Clean up some annoyances in the build...