CVE-2021-0735 (android)
In PackageManager, there is a possible way to get information about installed packages ignoring limitations introduced in Android 11 due to a missing permission check....
CVE-2021-0975 (android)
In USB Manager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This...
CVE-2021-22289 (studio)
Improper Input Validation vulnerability in the project upload mechanism in B&R Automation Studio version >=4.0 may allow an unauthenticated network attacker to execute code. Read...
DSA-5205 samba – security update
Several vulnerabilities have been discovered in Samba, a SMB/CIFS file, print, and login server for Unix. Read More
CVE-2021-33643 (libtar, openeuler)
An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for...
CVE-2021-33644 (libtar, openeuler)
An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for...
CVE-2021-33645 (libtar, openeuler)
The th_read() function doesn’t free a variable t->th_buf.gnu_longlink after allocating memory, which may cause a memory leak. Read More
Microsoft Patch Tuesday Fixed 0-day Arbitrary Code Execution Vulnerability (CVE-2022-34713)
Microsoft has released 141 security fixes for this month's August 2022 release. Besides the usual security fixes, there was a zero-day of note:CVE-2022-34713: This is...
New Ransomware “Roadsweep” Used Against Albania
FortiGuard Labs is aware of a report that Roadsweep ransomware was used against the Albanian government. Other malware Chimneysweep backdoor and ZeroCleare wiper malware were...
Critical Patches Issued for Microsoft Products, August 09, 2022
Multiple vulnerabilities have been discovered in Microsoft products, the most severe of which could allow for remote code execution in the context of the logged...