Read Time:28 Second

FEDORA-2023-7c6c696102

Packages in this update:

unrealircd-6.1.4-1.fc39

Update description:

UnrealIRCd 6.1.4

This release fixes a crash issue with websockets in UnrealIRCd 6.1.0 – 6.1.3.

The full advisory with all details is available at: https://forums.unrealircd.org/viewtopic.php?t=9340

Fixes

Crash that can be triggered by users when Websockets are in use (a listen block with listen::options::websocket). This was assigned CVE-2023-50784.
In 6.1.3, Websockets were not working with Chrome and possibly other browsers.

stb-0^20241002git31707d1-4.fc40

FEDORA-2025-49e8952aab Packages in this update: stb-0^20241002git31707d1-4.fc40 Update description: Add another patch for the root cause of CVE-2021-45340. We already have...

January 10, 2025

Ivanti Connect Secure Zero-Day Vulnerability

What are the Vulnerabilities?Ivanti disclosed two vulnerabilities, CVE-2025-0282 and CVE-2025-0283, impacting Ivanti Connect Secure (“ICS”) VPN appliances. CVE-2025-0282 is an...

January 10, 2025

USN-7198-1: rlottie vulnerabilities

Paolo Giai discovered a series of stack-based overflow vulnerabilities in the blit and gray_render_cubic functions of a custom fork of...

January 10, 2025

stb-0^20241002git31707d1-5.fc41

FEDORA-2025-6a64d3b2fc Packages in this update: stb-0^20241002git31707d1-5.fc41 Update description: Add another patch for the root cause of CVE-2021-45340. We already have...

January 10, 2025

Multiple vulnerabilities in SonicWall SonicOS could allow a remote attacker to bypass authentication.

Multiple vulnerabilities have been discovered in SonicWall SonicOS that could allow for authentication bypass. SonicOS is SonicWall’s operating system designed...

January 9, 2025

xen-4.19.1-3.fc41

FEDORA-2025-933a9a977e Packages in this update: xen-4.19.1-3.fc41 Update description: work around debugedit bug to fix aarch64 builds xen-hypervisor %post doesn't load...

January 9, 2025

Apps That Are Spying on Your Location

Cybercriminals Use Fake CrowdStrike Job Offers to Distribute Cryptominer

Slovakia Hit by Historic Cyber-Attack on Land Registry

Canadian man loses a cryptocurrency fortune to scammers – here’s how you can stop it happening to you

Medusind Breach Exposes Sensitive Patient Data

Fake PoC Exploit Targets Security Researchers with Infostealer

Smashing Security podcast #399: Honey in hot water, and reset your devices

Space Bears ransomware: what you need to know

Zero-Day Vulnerability in Ivanti VPN

unrealircd-6.1.4-1.fc39

FEDORA-2023-7c6c696102

Packages in this update:

Update description:

UnrealIRCd 6.1.4

Fixes

stb-0^20241002git31707d1-4.fc40

Ivanti Connect Secure Zero-Day Vulnerability

USN-7198-1: rlottie vulnerabilities

stb-0^20241002git31707d1-5.fc41

Multiple vulnerabilities in SonicWall SonicOS could allow a remote attacker to bypass authentication.

xen-4.19.1-3.fc41