Critical Patches Issued for Microsoft Products, April 11, 2023
Multiple vulnerabilities have been discovered in Microsoft products, the most severe of which could allow for remote code execution in the context of the logged...
Multiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution
Multiple vulnerabilities have been discovered in Mozilla products, the most severe of which could allow for arbitrary code execution. Mozilla Firefox is a web browser...
Microsoft (& Apple) Patch Tuesday, April 2023 Edition
Microsoft today released software updates to plug 100 security holes in its Windows operating systems and other software, including a zero-day vulnerability that is already...
DSA-5385 firefox-esr – security update
Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code or spoofing. Read...
DSA-5386 chromium – security update
Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure. Read More
thunderbird-102.10.0-1.fc37
FEDORA-2023-d365f19e05 Packages in this update: thunderbird-102.10.0-1.fc37 Update description: Update to 102.10.0 ; https://www.mozilla.org/en-US/security/advisories/mfsa2023-15/ ; https://www.thunderbird.net/en-US/thunderbird/102.10.0/releasenotes/ Read More
thunderbird-102.10.0-1.fc38
FEDORA-2023-a2a92ab69a Packages in this update: thunderbird-102.10.0-1.fc38 Update description: Update to 102.10.0 ; https://www.mozilla.org/en-US/security/advisories/mfsa2023-15/ ; https://www.thunderbird.net/en-US/thunderbird/102.10.0/releasenotes/ Read More
USN-6009-1: Linux kernel (GCP) vulnerabilities
It was discovered that the System V IPC implementation in the Linux kernel did not properly handle large shared memory counts. A local attacker could...
USN-6007-1: Linux kernel (GCP) vulnerabilities
It was discovered that the Upper Level Protocol (ULP) subsystem in the Linux kernel did not properly handle sockets entering the LISTEN state in certain...
CVE-2020-9009
The ShipStation.com plugin 1.1 and earlier for CS-Cart allows remote attackers to insert arbitrary information into the database (via action=shipnotify) because access to this endpoint...