USN-7105-1: .NET vulnerabilities
It was discovered that the NrbfDecoder component in .NET did not properly handle an instance of a type confusion vulnerability. An authenticated attacker could possibly...
Microsoft Patch Tuesday, November 2024 Edition
Microsoft today released updates to plug at least 89 security holes in its Windows operating systems and other software. November’s patch batch includes fixes for...
The AI Fix #24: Where are the alien AIs, and are we being softened up for superintelligence?
In episode 24 of The AI Fix, Mark makes an unforgivable error about the Terminator franchise, our hosts wonder if a "seductive" government chatbot will...
ghostscript-10.02.1-13.fc40
FEDORA-2024-b1877232ce Packages in this update: ghostscript-10.02.1-13.fc40 Update description: CVE-2024-46951 ghostscript: Arbitrary Code Execution in Artifex Ghostscript Pattern Color Space (fedora#2325237) 2325240 - CVE-2024-46952 CVE-2024-46953 CVE-2024-46954...
TA455’s Iranian Dream Job Campaign Targets Aerospace with Malware
The TA455 phishing campaign used fake job offers on LinkedIn to deploy malware Read More
ghostscript-10.03.1-4.fc41
FEDORA-2024-69af78a508 Packages in this update: ghostscript-10.03.1-4.fc41 Update description: CVE-2024-46951 ghostscript: Arbitrary Code Execution in Artifex Ghostscript Pattern Color Space (fedora#2325238) 2325241 - CVE-2024-46952 CVE-2024-46953 CVE-2024-46954...
USN-7103-1: Ghostscript vulnerabilities
It was discovered that Ghostscript incorrectly handled parsing certain PS files. An attacker could use this issue to cause Ghostscript to crash, resulting in a...
Phishing Tool GoIssue Targets Developers on GitHub
New phishing tool GoIssue targets GitHub, enabling mass phishing, and has been linked to the GitLoker extortion campaign Read More
CISOs Turn to Indemnity Insurance as Breach Pressure Mounts
Panaseer claims 72% of security leaders are taking out personal indemnity insurance as board scrutiny increases Read More
USN-7100-2: Linux kernel vulnerabilities
Supraja Sridhara, Benedict Schlüter, Mark Kuhne, Andrin Bertschi, and Shweta Shinde discovered that the Confidential Computing framework in the Linux kernel for x86 platforms did...