USN-7210-1: .NET vulnerabilities

Read Time:39 Second

It was discovered that .NET did not properly handle input provided to its
Convert.TryToHexString method. An attacker could possibly use this issue
to execute arbitrary code. (CVE-2025-21171)

It was discovered that .NET did not properly handle an integer overflow
when processing certain specially crafted files. An attacker could
possibly use this issue to execute arbitrary code. (CVE-2025-21172)

Daniel Plaisted and Noah Gilson discovered that .NET insecurely handled
temporary file usage which could result in malicious package dependency
injection. An attacker could possibly use this issue to elevate privileges.
(CVE-2025-21173)

It was discovered that .NET did not properly perform input data validation
when processing certain specially crafted files. An attacker could
possibly use this issue to execute arbitrary code. (CVE-2025-21176)

Middle Eastern Real Estate Fraud Grows with Online Listings

Trump’s Truth Social Users Targeted by Rampant Scams Online

Biden Tightens Software Supply Chain Security Requirements Ahead of Trump Takeover

DORA Compliance Costs Soar Past €1m for Many UK and EU Businesses

New Hacking Group Leaks Configuration of 15,000 Fortinet Firewalls

GoDaddy Accused of Serious Security Failings by FTC

FBI Deletes PlugX Malware from Thousands of Computers

Hackers Use Image-Based Malware and GenAI to Evade Email Security

EU To Launch New Support Centre by 2026 to Boost Healthcare Cybersecurity

USN-7215-1: libxml2 vulnerability

USN-7214-1: HarfBuzz vulnerability

rsync-3.4.1-1.fc41

rsync-3.4.1-1.fc40

USN-7213-1: poppler vulnerability

USN-7212-1: Python 2.7 vulnerabilities