USN-5838-1: AdvanceCOMP vulnerabilities

Read Time:35 Second

It was discovered that AdvanceCOMP did not properly manage memory while
performing read operations on MNG file. If a user were tricked into opening
a specially crafted MNG file, a remote attacker could possibly use this
issue to cause AdvanceCOMP to crash, resulting in a denial of service.
(CVE-2022-35014, CVE-2022-35017, CVE-2022-35018, CVE-2022-35019,
CVE-2022-35020)

It was discovered that AdvanceCOMP did not properly manage memory while
performing read operations on ZIP file. If a user were tricked into opening
a specially crafted ZIP file, a remote attacker could possibly use this
issue to cause AdvanceCOMP to crash, resulting in a denial of service.
(CVE-2022-35015, CVE-2022-35016)

Major Online Platform for Child Exploitation Dismantled

CrushFTP Vulnerability Exploited Following Disclosure Issues

HellCat ransomware: what you need to know

Amateur Hacker Leverages Russian Bulletproof Hosting Server to Spread Malware

Web 3.0 Requires Data Integrity

Sensitive Data Breached in Highline Schools Ransomware Incident

Over Half of Attacks on Electricity and Water Firms Are Destructive

Nearly 600 Phishing Domains Emerge Following Bybit Heist

CISO: Chief Cybersecurity Warrior Leader

USN-5838-1: AdvanceCOMP vulnerabilities

xz-5.8.1-1.fc40

xz-5.8.1-1.fc41

xz-5.8.1-1.fc42

USN-7414-1: XZ Utils vulnerability

chromium-135.0.7049.52-2.fc40

chromium-135.0.7049.52-1.fc41