USN-7201-1: WebKitGTK vulnerabilities

Read Time:15 Second

Several security issues were discovered in the WebKitGTK Web and JavaScript
engines. If a user were tricked into viewing a malicious website, a remote
attacker could exploit a variety of issues related to web browser security,
including cross-site scripting attacks, denial of service attacks, and
arbitrary code execution.

USN-7202-1: HPLIP vulnerability

Kevin Backhouse discovered that HPLIP incorrectly handled certain MDNS responses. A remote attacker could use this issue to cause HPLIP...

January 13, 2025

USN-7200-1: Roundcube vulnerability

It was discovered that Roundcube incorrectly handled certain file-based attachment plugins. An attacker could exploit this to gain unauthorized access...

January 13, 2025

USN-6940-2: snapd vulnerabilities

USN-6940-1 fixed vulnerabilities in snapd. This update provides the corresponding updates for Ubuntu 18.04 LTS and Ubuntu 16.04 LTS. Original...

January 13, 2025

USN-7199-1: xmltok library vulnerabilities

It was discovered that Expat, contained within the xmltok library, incorrectly handled malformed XML data. If a user or application...

January 13, 2025

ZDI-25-027: (Pwn2Own) Google Chrome VideoFrame Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Google Chrome. User interaction is required to...

January 12, 2025

stb-0-0.50.20241002git31707d1.el8

FEDORA-EPEL-2025-f5725d94b3 Packages in this update: stb-0-0.50.20241002git31707d1.el8 Update description: Add another patch for the root cause of CVE-2021-45340. We already have...

January 11, 2025

UK Registry Nominet Breached Via Ivanti Zero-Day

Critical Infrastructure Urged to Scrutinize Product Security During Procurement

Pastor’s “dream” crypto scheme alleged to be a multi-million dollar scam

Russian Malware Campaign Hits Central Asian Diplomatic Files

How Hackers Steal Your Password

Microsoft 365 MFA Outage Fixed

New Ransomware Group Uses AI to Develop Nefarious Tools

Microsoft Takes Legal Action Against AI “Hacking as a Service” Scheme

WEF Warns of Growing Cyber Inequity Amid Escalating Complexities in Cyberspace

USN-7201-1: WebKitGTK vulnerabilities

USN-7202-1: HPLIP vulnerability

USN-7200-1: Roundcube vulnerability

USN-6940-2: snapd vulnerabilities

USN-7199-1: xmltok library vulnerabilities

ZDI-25-027: (Pwn2Own) Google Chrome VideoFrame Use-After-Free Remote Code Execution Vulnerability

stb-0-0.50.20241002git31707d1.el8