USN-6440-2: Linux kernel (Azure) vulnerabilities
Seth Jenkins discovered that the Linux kernel did not properly perform address randomization for a per-cpu memory management structure. A local attacker could use this...
golang-1.20.10-2.fc38
FEDORA-2023-fe53e13b5b Packages in this update: golang-1.20.10-2.fc38 Update description: This update includes a security fix to the net/http package. Read More
golang-1.21.3-1.fc39
FEDORA-2023-822aab0a5a Packages in this update: golang-1.21.3-1.fc39 Update description: This update includes a security fix to the net/http package. Read More
golang-1.20.10-3.fc37
FEDORA-2023-4bf641255e Packages in this update: golang-1.20.10-3.fc37 Update description: This update includes a security fix to the net/http package. Read More
ENISA Warns of Rising AI Manipulation Ahead of Upcoming European Elections
Top threats targeting the EU are increasingly motivated by a combination of intentions such as financial gain, disruption, espionage, destruction or ideology Read More
llhttp-9.1.3-1.fc40 python-aiohttp-3.8.6-1.fc40
FEDORA-2023-f2bb9ee617 Packages in this update: llhttp-9.1.3-1.fc40 python-aiohttp-3.8.6-1.fc40 Update description: python-aiohttp 3.8.6 (2023-10-07) https://github.com/aio-libs/aiohttp/blob/v3.8.6/CHANGES.rst#386-2023-10-07 Security bugfixes Upgraded llhttp to v9.1.3: https://github.com/aio-libs/aiohttp/security/advisories/GHSA-pjjw-qhg8-p2p9 Updated Python parser to comply...
AI and US Election Rules
If an AI breaks the rules for you, does that count as breaking the rules? This is the essential question being taken up by the...
DarkGate Malware Campaigns Linked to Vietnam-Based Cybercriminals
WithSecure has found strong indicators that DarkGate attacks are being perpetrated by attackers also using the Ducktail infostealer Read More
CVE-2021-4334
The Fancy Product Designer plugin for WordPress is vulnerable to unauthorized modification of site options due to a missing capability check on the fpd_update_options function...
CVE-2020-36759
The Woody code snippets plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.3.9. This is due to missing...