December 11, 2023 - Cyber Security News

USN-6548-1: Linux kernel vulnerabilities

It was discovered that Spectre-BHB mitigations were missing for Ampere processors. A local attacker could potentially use this to expose sensitive information. (CVE-2023-3006) It was...

December 11, 2023

Advisories

USN-6549-1: Linux kernel vulnerabilities

It was discovered that the USB subsystem in the Linux kernel contained a race condition while handling device descriptors in certain situations, leading to a...

December 11, 2023

Advisories

kernel-6.6.6-100.fc38

FEDORA-2023-a8afe852a3 Packages in this update: kernel-6.6.6-100.fc38 Update description: The 6.6.6 stable kernel update reverts the problematic cfg80211 patch that was brought into the 6.6.5 kernel...

December 11, 2023

Advisories

kernel-6.6.6-200.fc39

FEDORA-2023-4df366ee80 Packages in this update: kernel-6.6.6-200.fc39 Update description: The 6.6.6 stable kernel update reverts the problematic cfg80211 patch that was brought into the 6.6.5 kernel...

December 11, 2023

Advisories

USN-6547-1: Python vulnerability

it was discovered that Python incorrectly handled null bytes when normalizing pathnames. An attacker could possibly use this issue to bypass certain filename checks. Read...

December 11, 2023

News

Lazarus Group Targets Log4Shell Flaw Via Telegram Bots

Cisco Talos said Operation Blacksmith leveraged the flaw in publicly facing VMWare Horizon servers Read More

December 11, 2023

News

Europol Raises Alarm on Criminal Misuse of Bluetooth Trackers

The majority of reported cases involved cocaine smuggling Read More

December 11, 2023

Advisories

Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution

Multiple vulnerabilities have been discovered in Google Chrome, the most severe of which could allow for arbitrary code execution. Successful exploitation of these vulnerabilities could...

December 11, 2023

Advisories

A Vulnerability in Apache Struts 2 Could Allow for Remote Code Execution

A vulnerability has been discovered in Apache Struts 2, which could allow for remote code execution. Apache Struts 2 is an open-source web application framework...

December 11, 2023

News

RABET-V: A New Approach to Testing Election Technology

The traditional testing approach for non-voting technology constrains election security. Learn how RABET-V does things differently. Read More

December 11, 2023

Smashing Security podcast #393: Who needs a laptop to hack when you have a Firestick?

Hive0145 Targets Europe with Advanced Strela Stealer Campaigns

AI Threat to Escalate in 2025, Google Cloud Warns

Lazarus Group Uses Extended Attributes for Code Smuggling in macOS

Mapping License Plate Scanners in the US

Amazon MOVEit Leaker Claims to Be Ethical Hacker

Microsoft Fixes Four More Zero-Days in November Patch Tuesday

Fake Job Ads and Fake Identities: How North Korea Gets Its Hands on Our Data

Microsoft Patch Tuesday, November 2024 Edition

Day: December 11, 2023

USN-6548-1: Linux kernel vulnerabilities

USN-6549-1: Linux kernel vulnerabilities

kernel-6.6.6-100.fc38

kernel-6.6.6-200.fc39

USN-6547-1: Python vulnerability

Lazarus Group Targets Log4Shell Flaw Via Telegram Bots

Europol Raises Alarm on Criminal Misuse of Bluetooth Trackers

Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution

A Vulnerability in Apache Struts 2 Could Allow for Remote Code Execution

RABET-V: A New Approach to Testing Election Technology