Read Time:9 Second
Multiple vulnerabilities have been discovered in the Xen hypervisor,
which could result in privilege escalation, denial of service or
information leaks.
DSA-5837-1 fastnetmon – security update
Read Time:9 Second
Two security issues have been discovered in FastNetMon, a fast DDoS
analyzer: Malformed Netflow/sFlow traffic could result in denial of
service.
DSA-5835-1 webkit2gtk – security update
Read Time:29 Second
The following vulnerabilities have been discovered in the WebKitGTK
web engine:
CVE-2024-54479
Seunghyun Lee discovered that processing maliciously crafted web
content may lead to an unexpected process crash.
CVE-2024-54502
Brendon Tiszka discovered that processing maliciously crafted web
content may lead to an unexpected process crash.
CVE-2024-54505
Gary Kwong discovered that processing maliciously crafted web
content may lead to memory corruption.
CVE-2024-54508
linjy, chluo and Xiangwei Zhang discovered that processing
maliciously crafted web content may lead to an unexpected process
crash.
openjpeg2-2.5.3-1.fc40
Read Time:8 Second
FEDORA-2024-272544ceb9
Packages in this update:
openjpeg2-2.5.3-1.fc40
Update description:
Update to openjpeg-2.5.3
Fix 2 heap-buffer-overflow
The AI Fix #30: ChatGPT reveals the devastating truth about Santa (Merry Christmas!)
Read Time:34 Second
In episode 30 of The AI Fix, AIs are caught lying to avoid being turned off, Apple’s AI flubs a headline, ChatGPT is available to people who haven’t left the 1970s, our hosts regret to inform you that an AI artist now has a personality, and ant-like robots join forces to lob each other over things.
Graham discovers that Google Gemini is checking its homework by asking unskilled humans to simply take a punt at the right answer, and Mark uses an AI to reveal the devastating truth about Santa.
All this and much more is discussed in the latest edition of “The AI Fix” podcast by Graham Cluley and Mark Stockley.
US and Japan Blame North Korea for $308m Crypto Heist
Read Time:7 Second
A joint US-Japan alert attributed North Korean hackers with a May 2024 crypto heist worth $308m from Japan-based company DMM
Spyware Maker NSO Group Found Liable for Hacking WhatsApp
Spyware Maker NSO Group Liable for WhatsApp User Hacks
Read Time:6 Second
A US judge has ruled in favor of WhatsApp in a long-running case against commercial spyware-maker NSO Group
Major Biometric Data Farming Operation Uncovered
Read Time:6 Second
Researchers at iProov have discovered a dark web group compiling identity documents and biometric data to bypass KYC checks
libxml2-2.12.9-1.fc40
Read Time:7 Second
FEDORA-2024-9f3765a04b
Packages in this update:
libxml2-2.12.9-1.fc40
Update description:
Update to 2.12.9
Fixes CVE-2024-40896