Read Time:21 Second

FEDORA-EPEL-2023-788f9bbb3f

Packages in this update:

chromium-116.0.5845.187-1.el9

Update description:

update to 116.0.5845.187. Fixes following security issue: CVE-2023-4863

update to 116.0.5845.179. Fixes following security issues:
CVE-2023-4427 CVE-2023-4428 CVE-2023-4429 CVE-2023-4430 CVE-2023-4431 CVE-2023-4572 CVE-2023-4761 CVE-2023-4762 CVE-2023-4763 CVE-2023-4764

vaultwarden-1.32.7-1.fc41

FEDORA-2025-0abee701c3 Packages in this update: vaultwarden-1.32.7-1.fc41 Update description: update to 1.32.7 Read More

January 15, 2025

freeipa-4.12.2-3.fc40

FEDORA-2025-6baf694c75 Packages in this update: freeipa-4.12.2-3.fc40 Update description: CVE-2024-11029 Release note: https://www.freeipa.org/release-notes/4-12-3.html Read More

January 15, 2025

freeipa-4.12.2-7.fc41

FEDORA-2025-b21777d1b5 Packages in this update: freeipa-4.12.2-7.fc41 Update description: CVE-2024-11029 Release note: https://www.freeipa.org/release-notes/4-12-3.html Read More

January 15, 2025

ZDI-25-030: Microsoft Office Word DOCX File Parsing Uninitialized Pointer Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Office Word. User interaction is required...

January 15, 2025

ZDI-25-029: Microsoft Windows Installer Service Link Following Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the...

January 15, 2025

ZDI-25-028: Microsoft Office Word RTF File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Office Word. User interaction is required...

January 15, 2025

Multi-Cloud Adoption Surges Amid Rising Security Concerns

Chinese PlugX Malware Deleted in Global Law Enforcement Operation

Illicit Crypto-Inflows Set to Top $51bn in a Year

Phishing False Alarm

Fortinet Confirms Critical Zero-Day Vulnerability in Firewalls

Secureworks Exposes North Korean Links to Fraudulent Crowdfunding

Microsoft Patches Eight Zero-Days to Start the Year

Microsoft: Happy 2025. Here’s 161 Security Updates

Upcoming Speaking Engagements

chromium-116.0.5845.187-1.el9

FEDORA-EPEL-2023-788f9bbb3f

Packages in this update:

Update description:

vaultwarden-1.32.7-1.fc41

freeipa-4.12.2-3.fc40

freeipa-4.12.2-7.fc41

ZDI-25-030: Microsoft Office Word DOCX File Parsing Uninitialized Pointer Remote Code Execution Vulnerability

ZDI-25-029: Microsoft Windows Installer Service Link Following Local Privilege Escalation Vulnerability

ZDI-25-028: Microsoft Office Word RTF File Parsing Memory Corruption Remote Code Execution Vulnerability