Hacktivists claim DDoS attacks against Israeli websites as cybersecurity experts urge caution in believing these cyber-criminals’ claims
Yearly Archives: 2023
Israelis told to secure their home security cameras against hackers
The Government of Israel has told the owners of private home security cameras to urgently secure them against being hacked, in the wake of a dramatic heightening of the conflict between Israel and Hamas.
Signal Disputes Alleged Zero-Day Flaw
Reports emerged over the weekend regarding a zero-day exploit in the messaging app
Signal debunks online rumours of zero-day security vulnerability
Over the weekend rumours circulated on social networks of an unpatched security hole in the Signal messaging app that could allow a remote hacker to seize control of your smartphone.
But were they true?
Read more in my article on the Hot for Security blog.
USN-6431-1: iperf3 vulnerabilities
It was discovered that iperf3 did not properly manage certain inputs,
which could lead to a crash. A remote attacker could possibly use this
issue to cause a denial of service. (CVE-2023-38403)
Jorge Sancho Larraz discovered that iperf3 did not properly manage certain
inputs, which could cause the server process to stop responding, waiting
for input on the control connection. A remote attacker could possibly use
this issue to cause a denial of service. (LP: #2038654)
Healthcare Sector Warned About New Ransomware Group NoEscape
The US government highlighted the operations of the NoEscape group, which is believed to be a rebrand of Russian threat actor Avaddon
roundcubemail-1.5.5-1.el9
FEDORA-EPEL-2023-919f644f04
Packages in this update:
roundcubemail-1.5.5-1.el9
Update description:
Version 1.5.5
Fix cross-site scripting (XSS) vulnerability in handling of SVG in HTML messages (#9168)
roundcubemail-1.6.4-1.fc38
FEDORA-2023-955e390a13
Packages in this update:
roundcubemail-1.6.4-1.fc38
Update description:
Version 1.6.4
Fix PHP8 warnings (#9142, #9160)
Fix default ‘mime.types’ path on Windows (#9113)
Managesieve: Fix javascript error when relational or spamtest extension is not enabled (#9139)
Fix cross-site scripting (XSS) vulnerability in handling of SVG in HTML messages (#9168)
roundcubemail-1.6.4-1.fc39
FEDORA-2023-735ee6d4e1
Packages in this update:
roundcubemail-1.6.4-1.fc39
Update description:
Version 1.6.4
Fix PHP8 warnings (#9142, #9160)
Fix default ‘mime.types’ path on Windows (#9113)
Managesieve: Fix javascript error when relational or spamtest extension is not enabled (#9139)
Fix cross-site scripting (XSS) vulnerability in handling of SVG in HTML messages (#9168)
roundcubemail-1.6.4-1.fc37
FEDORA-2023-562e77957f
Packages in this update:
roundcubemail-1.6.4-1.fc37
Update description:
Version 1.6.4
Fix PHP8 warnings (#9142, #9160)
Fix default ‘mime.types’ path on Windows (#9113)
Managesieve: Fix javascript error when relational or spamtest extension is not enabled (#9139)
Fix cross-site scripting (XSS) vulnerability in handling of SVG in HTML messages (#9168)