CI/CD at Risk as Exploits Released For Critical Jenkins Bug
Customers are urged to patch now after exploits are released for critical vulnerability in Jenkins Read More
Top 3 Cybersecurity Trends for SME Business Leaders
Graham Cluley Security News is sponsored this week by the folks at Cynet. Thanks to the team there for their support. As Cynet’s COO, my...
DSA-5610-1 redis – security update
Multiple security issues were discovered in Redis, a persistent key-value database, which could result in the execution of arbitrary code or ACL bypass. https://security-tracker.debian.org/tracker/DSA-5610-1 Read...
DSA-5609-1 slurm-wlm – security update
Several vulnerabilities were discovered in the Slurm Workload Manager, a cluster resource management and job scheduling system, which may result in privilege escalation, denial of...
Re: Buffer Overflow in graphviz via via a crafted config6a file
Posted by Matthew Fernandez on Jan 27 More specifically, this issue is an out-of-bounds read. AFAICT the issue was actually introduced in Graphviz 2.36. It...
CVEs based on commit messages
Posted by Mark Esler on Jan 27 Dear Meng Rujie, In regards to your recent FD posts, are you requesting CVEs based on the presence...
Re: null pointer deference in nano via read_the_list()
Posted by Mark Esler on Jan 27 Hi Meng, In your recent mass posts to FD, are you reporting vulnerabilities or bug reports which have...
Re: NULL pointer dereference in freedesktop Mesa via check_xshm()
Posted by Dan Cross on Jan 27 I find it very difficult to believe that every NULL pointer error in existence is a security vulnerability....
Re: Null pointer dereference in Xedit
Posted by Alan Coopersmith on Jan 27 I will be asking that this CVE be withdrawn on behalf of the X.Org security team. While it...
mingw-python-pygments-2.15.1-1.fc38
FEDORA-2024-db87ce2a47 Packages in this update: mingw-python-pygments-2.15.1-1.fc38 Update description: Update to 2.15.1. Read More