Kaspersky reported an average of 411,000 malicious files deployed every day in 2023, according to its Security Bulletin: Statistics of the Year Report
Yearly Archives: 2023
slurm-22.05.11-2.fc38
FEDORA-2023-540de58d84
Packages in this update:
slurm-22.05.11-2.fc38
Update description:
Update to 22.05.11
Closes CVE-2023-49933 through CVE-2023-49938
slurm-22.05.11-2.fc39
FEDORA-2023-9a74d212f8
Packages in this update:
slurm-22.05.11-2.fc39
Update description:
Update to 22.05.11
Closes CVE-2023-49933 through CVE-2023-49938
Ransomware Leak Site Victims Reached Record-High in November
The number of victims listed on ransomware leak sites is up 110% year-on-year in November, according to Corvus Insurance
DSA-5588-1 putty – security update
Fabian Baeumer, Marcus Brinkmann and Joerg Schwenk discovered that the
SSH protocol is prone to a prefix truncation attack, known as the
“Terrapin attack”. This attack allows a MITM attacker to effect a
limited break of the integrity of the early encrypted SSH transport
protocol by sending extra messages prior to the commencement of
encryption, and deleting an equal number of consecutive messages
immediately after encryption starts.
Details can be found at https://terrapin-attack.com/
chromium-120.0.6099.129-1.el8
FEDORA-EPEL-2023-f6ff23a804
Packages in this update:
chromium-120.0.6099.129-1.el8
Update description:
update to 120.0.6099.129
High CVE-2023-7024: Heap buffer overflow in WebRTC
libssh-0.10.6-2.fc38
FEDORA-2023-55800423a8
Packages in this update:
libssh-0.10.6-2.fc38
Update description:
Fix regression in IPv6 hosntames parsing
New upstream release fixing (CVE-2023-48795, CVE-2023-6004, CVE-2023-6918)
chromium-120.0.6099.129-1.el7
FEDORA-EPEL-2023-46203ab7be
Packages in this update:
chromium-120.0.6099.129-1.el7
Update description:
update to 120.0.6099.129
High CVE-2023-7024: Heap buffer overflow in WebRTC
DSA-5587-1 curl – security update
Two security issues were discovered in Curl: Cookies were incorrectly
validated against the public suffix list of domains and in same cases
HSTS data could fail to save to disk.