Advisories

firefox-111.0-1.fc37

FEDORA-2023-24b2b22eca Packages in this update: firefox-111.0-1.fc37 Update description: Update to latest upstream (111.0) Read More
Read More
firefox-111.0-1.fc38

FEDORA-2023-ed41d3a922 Packages in this update: firefox-111.0-1.fc38 Update description: Update to latest upstream (111.0) Read More
Read More
redis-7.0.10-1.fc37

FEDORA-2023-86068d1187 Packages in this update: redis-7.0.10-1.fc37 Update description: Redis 7.0.10 Released Mon Mar 20 16:00:00 IST 2023 Upgrade urgency: SECURITY, contains fixes to security issues. Security Fixes: (CVE-2023-28425) Specially crafted MSETNX command can lead to assertion and denial-of-service Bug Fixes Large blocks of replica client output buffer may lead to psync loops and unnecessary memory […]
Read More
redis-7.0.10-1.fc38

FEDORA-2023-e3e1f9dd4d Packages in this update: redis-7.0.10-1.fc38 Update description: Redis 7.0.10 Released Mon Mar 20 16:00:00 IST 2023 Upgrade urgency: SECURITY, contains fixes to security issues. Security Fixes: (CVE-2023-28425) Specially crafted MSETNX command can lead to assertion and denial-of-service Bug Fixes Large blocks of replica client output buffer may lead to psync loops and unnecessary memory […]
Read More
USN-5965-1: TigerVNC vulnerability

It was discovered that TigerVNC mishandled TLS certificate exceptions. An attacker could use this vulnerability to impersonate any server after a client had added an exception and obtain sensitive information. Read More
Read More
CVE-2012-10009

A vulnerability was found in 404like Plugin up to 1.0.2. It has been classified as critical. Affected is the function checkPage of the file 404Like.php. The manipulation of the argument searchWord leads to sql injection. It is possible to launch the attack remotely. Upgrading to version 1.0.2 is able to address this issue. The name […]
Read More
AndroxGh0st Malware Actively Used in the Wild

FortiGuard Labs is aware that AndroxGh0st malware is actively used in the field to primarily target .env files that contain confidential information such as credentials for various high profile applications such as – AWS, O365, SendGrid, and Twilio from the Laravel web application framework.Why is this Significant?This is significant as AndroxGh0st malware is actively used […]
Read More
#StopRansomware: LockBit 3.0 (AA23-075A)

On March 16th, 2023, CISA, FBI and MS-ISAC released a joint advisory on LockBit 3.0 ransomware as part of #StopRansomware effort. LockBit 3.0, also known as LockBit Black, operates a Ransomware-as-a-Service (RaaS) service and employs a double-extortion tactic to get victims to pay ransom.Why is this Significant?This is significant because organizations hit by ransomware are […]
Read More
stellarium-1.2-9.fc37

FEDORA-2023-2cf272ad72 Packages in this update: stellarium-1.2-9.fc37 Update description: Patches for CVE-2023-28371 Read More
Read More
stellarium-1.2-9.fc38

FEDORA-2023-57f5e7c000 Packages in this update: stellarium-1.2-9.fc38 Update description: Patches for CVE-2023-28371 Read More
Read More

Cyber Security News

ForgeRock, Double Secret Octopus offer passwordless authentication for enterprises

ForgeRock, Secret Double Octopus offer passwordless authentication for enterprises

Mispadu Trojan Steals 90,000+ Banking Credentials From Latin American Victims

KillNet Group Uses DDoS Attacks Against Azure-Based Healthcare Apps

BreachForums Admin Arrested in New York

CISA kicks off ransomware vulnerability pilot to help spot ransomware-exploitable flaws

Why You Should Opt Out of Sharing Data With Your Mobile Provider

BianLian ransomware group shifts focus to extortion

Know Your Needs: Get Packing for Your Cybersecurity Roadmap

firefox-111.0-1.fc37

firefox-111.0-1.fc38

redis-7.0.10-1.fc37

redis-7.0.10-1.fc38

USN-5965-1: TigerVNC vulnerability

CVE-2012-10009

AndroxGh0st Malware Actively Used in the Wild

#StopRansomware: LockBit 3.0 (AA23-075A)

stellarium-1.2-9.fc37

stellarium-1.2-9.fc38