CVE-2021-0734 (android)
In Settings, there is a possible way to determine whether an app is installed without query permissions, due to side channel information disclosure. This could...
CVE-2021-0735 (android)
In PackageManager, there is a possible way to get information about installed packages ignoring limitations introduced in Android 11 due to a missing permission check....
CVE-2021-0975 (android)
In USB Manager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This...
CVE-2021-22289 (studio)
Improper Input Validation vulnerability in the project upload mechanism in B&R Automation Studio version >=4.0 may allow an unauthenticated network attacker to execute code. Read...
DSA-5205 samba – security update
Several vulnerabilities have been discovered in Samba, a SMB/CIFS file, print, and login server for Unix. Read More
CVE-2021-33643 (libtar, openeuler)
An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for...
CVE-2021-33644 (libtar, openeuler)
An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for...
CVE-2021-33645 (libtar, openeuler)
The th_read() function doesn’t free a variable t->th_buf.gnu_longlink after allocating memory, which may cause a memory leak. Read More
Microsoft Patch Tuesday Fixed 0-day Arbitrary Code Execution Vulnerability (CVE-2022-34713)
Microsoft has released 141 security fixes for this month's August 2022 release. Besides the usual security fixes, there was a zero-day of note:CVE-2022-34713: This is...
New Ransomware “Roadsweep” Used Against Albania
FortiGuard Labs is aware of a report that Roadsweep ransomware was used against the Albanian government. Other malware Chimneysweep backdoor and ZeroCleare wiper malware were...