Read Time:6 Second
FEDORA-2023-7a4026e363
Packages in this update:
firefox-118.0-1.fc37
Update description:
Updated to latest upstream (118.0)
Daily Archives: September 27, 2023
firefox-118.0-1.fc39
Read Time:6 Second
FEDORA-2023-a0ac4fe21c
Packages in this update:
firefox-118.0-1.fc39
Update description:
Updated to latest upstream (118.0)
Regulator Warns Breaches Can Cost Lives
USN-6398-1: ReadyMedia vulnerabilities
Read Time:27 Second
It was discovered that ReadyMedia was vulnerable to DNS rebinding attacks.
A remote attacker could possibly use this issue to trick the local DLNA
server to leak information. This issue only affected Ubuntu 16.04 LTS,
Ubuntu 18.04 LTS, Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. (CVE-2022-26505)
It was discovered that ReadyMedia incorrectly handled certain HTTP requests
using chunked transport encoding. A remote attacker could possibly use this
issue to cause buffer overflows, resulting in out-of-bounds reads and writes.
(CVE-2023-33476)
Attacks on European Financial Services Double in a Year
NCSC Launches Cyber Incident Exercise Scheme
gdb-13.2-3.fc37
Read Time:9 Second
FEDORA-2023-8d0913f986
Packages in this update:
gdb-13.2-3.fc37
Update description:
Security fix for CVE-2022-48064, Backport upstream commit 8f2c64de86b which fixes RHBZ 2233961,
ZDI-23-1468: (0Day) Exim NTLM Challenge Out-Of-Bounds Read Information Disclosure Vulnerability
Read Time:7 Second
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Exim. Authentication is not required to exploit this vulnerability.
ZDI-23-1469: (0Day) Exim AUTH Out-Of-Bounds Write Remote Code Execution Vulnerability
Read Time:7 Second
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Exim. Authentication is not required to exploit this vulnerability.
ZDI-23-1470: (0Day) Exim SMTP Challenge Stack-based Buffer Overflow Remote Code Execution Vulnerability
Read Time:7 Second
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Exim. Authentication is not required to exploit this vulnerability.