USN-6527-1: OpenJDK vulnerabilities

Read Time:27 Second

Carter Kozak discovered that OpenJDK, when compiling with AVX-512
instruction support enabled, could produce code that resulted in memory
corruption in certain situations. An attacker targeting applications built
in this way could possibly use this to cause a denial of service or execute
arbitrary code. In Ubuntu, OpenJDK defaults to not using AVX-512
instructions. (CVE-2023-22025)

It was discovered that OpenJDK did not properly perform PKIX certification
path validation in certain situations. An attacker could use this to cause
a denial of service. (CVE-2023-22081)

Live Video of Promachoteuthis Squid

YubiKey Side-Channel Attack

Spyware Vendors’ Nebulous Ecosystem Helps Them Evade Sanctions

US and Allies Accuse Russian Military of Destructive Cyber-Attacks

PyPI Revival Hijack Puts Thousands of Applications at Risk

Security Budgets Come Under Pressure as “Hypergrowth” Ends

Cicada ransomware – what you need to know

UK Signs Council of Europe AI Convention

Cisco Warns of Critical Vulnerabilities in Smart Licensing Utility

USN-6527-1: OpenJDK vulnerabilities

libcoap-4.3.5-6.fc41

chromium-128.0.6613.119-1.fc39

chromium-128.0.6613.119-1.el8

chromium-128.0.6613.119-1.el9

chromium-128.0.6613.119-1.fc41

chromium-128.0.6613.119-1.fc40