Read Time:8 Second
watchTowr has found a flaw in Citrix’s Session Recording Manager that can be exploited to enable unauthenticated RCE against Citrix Virtual Apps and Desktops
Daily Archives: November 12, 2024
libsoup3-3.4.4-3.fc39
Read Time:15 Second
FEDORA-2024-a059ea1dfc
Packages in this update:
libsoup3-3.4.4-3.fc39
Update description:
Add patches to fix:
CVE-2024-52530 libsoup3: HTTP request smuggling via stripping null bytes from the ends of header names (bug #2325358)
CVE-2024-52532 libsoup3: infinite loop while reading websocket data (bug #2325356)
libsoup3-3.4.4-5.fc40
Read Time:15 Second
FEDORA-2024-bd09057dd2
Packages in this update:
libsoup3-3.4.4-5.fc40
Update description:
Add patches to fix:
CVE-2024-52530 libsoup3: HTTP request smuggling via stripping null bytes from the ends of header names (bug #2325358)
CVE-2024-52532 libsoup3: infinite loop while reading websocket data (bug #2325356)
North Korea Hackers Leverage Flutter to Deliver macOS Malware
Read Time:7 Second
Jamf observed North Korean attackers embedding malware within Flutter applications to target macOS devices, potentially to test a new way of weaponizing malware
USN-7102-1: MySQL vulnerabilities
Read Time:27 Second
Multiple security issues were discovered in MySQL and this update includes
new upstream MySQL versions to fix these issues.
MySQL has been updated to 8.0.40 in Ubuntu 20.04 LTS, Ubuntu 22.04 LTS,
Ubuntu 24.04 LTS, and Ubuntu 24.10.
In addition to security fixes, the updated packages contain bug fixes, new
features, and possibly incompatible changes.
Please see the following for more information:
https://dev.mysql.com/doc/relnotes/mysql/8.0/en/news-8-0-40.html
https://www.oracle.com/security-alerts/cpuoct2024.html
Criminals Exploiting FBI Emergency Data Requests
Read Time:43 Second
I’ve been writing about the problem with lawful-access backdoors in encryption for decades now: that as soon as you create a mechanism for law enforcement to bypass encryption, the bad guys will use it too.
Turns out the same thing is true for non-technical backdoors:
The advisory said that the cybercriminals were successful in masquerading as law enforcement by using compromised police accounts to send emails to companies requesting user data. In some cases, the requests cited false threats, like claims of human trafficking and, in one case, that an individual would “suffer greatly or die” unless the company in question returns the requested information.
The FBI said the compromised access to law enforcement accounts allowed the hackers to generate legitimate-looking subpoenas that resulted in companies turning over usernames, emails, phone numbers, and other private information about their users.
USN-7101-1: Pydantic vulnerability
Read Time:8 Second
It was discovered that Pydantic icorrectly handled certain regular
expressions. A remote attacker could use this issue to cause denial of
service via a crafted email string.
microcode_ctl-2.1-66.fc41
Read Time:12 Second
FEDORA-2024-8b65ec8c46
Packages in this update:
microcode_ctl-2.1-66.fc41
Update description:
Update to upstream 2.1-46. 20241029
Update of 06-b7-01/0x32 (RPL-S B0) microcode from revision 0x129 up
to 0x12b.
Winter Fuel Payment scam targets UK citizens via SMS
Read Time:13 Second
Scammers have leapt at the opportunity to exploit vulnerable UK residents by sending bogus messages telling them they need to take action to receive help with their winter heating bills.
Read more in my article on the Tripwire State of Security blog.
Energy Giant Halliburton Reveals $35m Ransomware Loss
Read Time:4 Second
Halliburton has reported a $35m loss associated with an August ransomware breach