ZDI-24-495: (Pwn2Own) Microsoft Windows CLFS Integer Underflow Local Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code...
NextGen Healthcare Mirth Connect RCE (CVE-2023-43208, CVE-2023-37679)
What is the vulnerability?NextGen Healthcare Mirth Connect is vulnerable to unauthenticated remote code execution (CVE-2023-43208) caused due to an incomplete patch of a Command Injection...
DSA-5695-1 webkit2gtk – security update
The following vulnerabilities have been discovered in the WebKitGTK web engine: CVE-2024-27834 Manfred Paul discovered that an attacker with arbitrary read and write capability may...
DSA-5696-1 chromium – security update
Security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure. https://security-tracker.debian.org/tracker/DSA-5696-1 Read More
USN-6775-2: Linux kernel vulnerabilities
Zheng Wang discovered that the Broadcom FullMAC WLAN driver in the Linux kernel contained a race condition during device removal, leading to a use- after-free...
USN-6777-3: Linux kernel (GCP) vulnerabilities
Zheng Wang discovered that the Broadcom FullMAC WLAN driver in the Linux kernel contained a race condition during device removal, leading to a use- after-free...
mingw-python-requests-2.32.0-1.fc39
FEDORA-2024-7e4f058c2f Packages in this update: mingw-python-requests-2.32.0-1.fc39 Update description: Update to requests-2.32.0, fixes CVE-2024-35195. Read More
mingw-python-requests-2.32.0-1.fc40
FEDORA-2024-efc4802051 Packages in this update: mingw-python-requests-2.32.0-1.fc40 Update description: Update to requests-2.32.0, fixes CVE-2024-35195. Read More
oci-cli-3.41.0-1.fc41 python-oci-2.126.4-1.fc41
FEDORA-2024-ee636be6ff Packages in this update: oci-cli-3.41.0-1.fc41 python-oci-2.126.4-1.fc41 Update description: oci-cli 3.41.0 Read More
USN-6780-1: idna vulnerability
Guido Vranken discovered that idna did not properly manage certain inputs, which could lead to significant resource consumption. An attacker could possibly use this issue...