Read Time:27 Second

FEDORA-2025-e385cbedb5

Packages in this update:

rust-openssl-0.10.72-1.fc43
rust-openssl-sys-0.9.107-1.fc43

Update description:

Update the openssl crate to version 0.10.72.
Update the openssl-sys crate to version 0.9.107.

This update addresses CVE-2025-3416 / RUSTSEC-2025-0022 (a possible use-after-free issue in two public functions). A survey of dependent packages in Fedora shows that none of them use the affected API, or do not use them in a way that triggers this issue.

HNS-2025-10 – HN Security Advisory – Local privilege escalation in Zyxel uOS

Posted by Marco Ivaldi on Apr 23 Hi, Please find attached a security advisory that describes some vulnerabilities we discovered...

April 24, 2025

APPLE-SA-04-16-2025-4 visionOS 2.4.1

Posted by Apple Product Security via Fulldisclosure on Apr 23 APPLE-SA-04-16-2025-4 visionOS 2.4.1 visionOS 2.4.1 addresses the following issues. Information...

April 24, 2025

APPLE-SA-04-16-2025-3 tvOS 18.4.1

Posted by Apple Product Security via Fulldisclosure on Apr 23 APPLE-SA-04-16-2025-3 tvOS 18.4.1 tvOS 18.4.1 addresses the following issues. Information...

April 24, 2025

APPLE-SA-04-16-2025-2 macOS Sequoia 15.4.1

Posted by Apple Product Security via Fulldisclosure on Apr 23 APPLE-SA-04-16-2025-2 macOS Sequoia 15.4.1 macOS Sequoia 15.4.1 addresses the following...

April 24, 2025

APPLE-SA-04-16-2025-1 iOS 18.4.1 and iPadOS 18.4.1

Posted by Apple Product Security via Fulldisclosure on Apr 23 APPLE-SA-04-16-2025-1 iOS 18.4.1 and iPadOS 18.4.1 iOS 18.4.1 and iPadOS...

April 24, 2025

Business Logic Flaw: Price Manipulation – AlegroCartv1.2.9

Posted by Andrey Stoykov on Apr 23 # Exploit Title: Business Logic Flaw: Price Manipulation - alegrocartv1.2.9 # Date: 04/2025...

April 24, 2025

Smashing Security podcast #414: Zoom.. just one click and your data goes boom!

DOGE Worker’s Code Supports NLRB Whistleblower

Regulating AI Behavior with a Hypervisor

Verizon’s DBIR Reveals 34% Jump in Vulnerability Exploitation

FBI Reveals “Staggering” $16.6bn Lost to Cybercrime in 2024

Vulnerability Exploitation and Credential Theft Now Top Initial Access Vectors

US Data Breach Victim Count Surges 26% Annually

M&S Grapples with Cyber Incident Affecting In-Store Services

Dutch Warn of “Whole of Society” Russian Cyber-Threat

rust-openssl-0.10.72-1.fc43 rust-openssl-sys-0.9.107-1.fc43

FEDORA-2025-e385cbedb5

Packages in this update:

Update description:

HNS-2025-10 – HN Security Advisory – Local privilege escalation in Zyxel uOS

APPLE-SA-04-16-2025-4 visionOS 2.4.1

APPLE-SA-04-16-2025-3 tvOS 18.4.1

APPLE-SA-04-16-2025-2 macOS Sequoia 15.4.1

APPLE-SA-04-16-2025-1 iOS 18.4.1 and iPadOS 18.4.1

Business Logic Flaw: Price Manipulation – AlegroCartv1.2.9