python3.10-3.10.16-5.fc43
Automatic update for python3.10-3.10.16-5.fc43.
* Mon Feb 10 2025 Charalampos Stratakis <cstratak@redhat.com> – 3.10.16-5
– Security fix for CVE-2025-0938
– Fixes: rhbz#2343276
python3.11-3.11.11-5.fc42
Automatic update for python3.11-3.11.11-5.fc42.
* Mon Feb 10 2025 Charalampos Stratakis <cstratak@redhat.com> – 3.11.11-5
– Security fix for CVE-2025-0938
– Fixes: rhbz#2343272
python3.9-3.9.21-4.fc43
Automatic update for python3.9-3.9.21-4.fc43.
* Mon Feb 10 2025 Charalampos Stratakis <cstratak@redhat.com> – 3.9.21-4
– Security fix for CVE-2025-0938
– Fixes: rhbz#2343278
python3.9-3.9.21-4.fc42
Automatic update for python3.9-3.9.21-4.fc42.
* Mon Feb 10 2025 Charalampos Stratakis <cstratak@redhat.com> – 3.9.21-4
– Security fix for CVE-2025-0938
– Fixes: rhbz#2343278
An Alabama man has admitted hacking into the US Security and Exchange Commission’s X account using SIM swap fraud to gain access
Chinese hackers are infiltrating the networks of suppliers of “sensitive” manufacturers, according to a Check Point report to be published in the coming weeks
It was discovered that OpenSSL clients incorrectly handled authenticating
servers using RFC7250 Raw Public Keys. In certain cases, the connection
will not abort as expected, possibly causing the communication to be
intercepted. (CVE-2024-12797)
George Pantelakis and Alicja Kario discovered that OpenSSL had a timing
side-channel when performing ECDSA signature computations. A remote
attacker could possibly use this issue to recover private data.
(CVE-2024-13176)
It was discovered that OpenSSL incorrectly handled certain memory
operations when using low-level GF(2^m) elliptic curve APIs with untrusted
explicit values for the field polynomial. When being used in this uncommon
fashion, a remote attacker could use this issue to cause OpenSSL to crash,
resulting in a denial of service, or possibly execute arbitrary code.
(CVE-2024-9143)
rpm-ostree-2025.5-2.fc41
Merge branch ‘f42’ into f41
Merge branch ‘rawhide’ into f41
Fix merge conflict
In episode 37 of “The AI Fix”, Google Gemini gets the munchies, the wettest country in the world can’t find any water, an escalator tries to eat Graham, o3-mini can’t rub two sticks together, and OpenAI invents an AI that can do “a single-digit percentage of all economically valuable tasks in the world” but nobody notices.
Graham wonders why his childhood was full of Triffids and quicksand, and discovers a way to trap overstepping AI crawlers in an endless maze, while Mark investigates the appalling state of DeepSeek security.
All this and much more is discussed in the latest edition of “The AI Fix” podcast by Graham Cluley and Mark Stockley.
Gcore reported a 56% year-over-year rise in DDoS attacks in H2 2024, highlighting a steep long-term growth tend for the attack technique
