Category: Advisories

Posted by Pawel Karwowski via Fulldisclosure on Apr 19 Resending! Thank you for your efforts. GitHub - pawlokk/mindmanager-poc: public disclosure<https://github.com/pawlokk/mindmanager-poc> Affected application: MindManager23_setup.exe Platform: Windows...

Daniele Antonioli discovered that the Secure Simple Pairing and Secure Connections pairing in the Bluetooth protocol could allow an unauthenticated user to complete authentication without...

Wei Chen discovered that a race condition existed in the TIPC protocol implementation in the Linux kernel, leading to a null pointer dereference vulnerability. A...

It was discovered that a race condition existed in the instruction emulator of the Linux kernel on Arm 64-bit systems. A local attacker could use...

FEDORA-2024-c8d21fe399 Packages in this update: flatpak-1.15.8-1.fc39 Update description: Update to 1.15.8 Fix CVE-2024-32462 Read More

FEDORA-2024-43ea98691e Packages in this update: flatpak-1.15.8-1.fc40 Update description: Update to 1.15.8 Fixes CVE-2024-32462 Read More

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but...

Gergo Koteles discovered that sandbox restrictions in Flatpak, an application deployment framework for desktop apps, could by bypassed in combination with xdg-desktop-portal. https://security-tracker.debian.org/tracker/DSA-5666-1 Read More

Several security vulnerabilities have been discovered in the Tomcat servlet and JSP engine. CVE-2023-46589 Tomcat 9 did not correctly parse HTTP trailer headers. A trailer...

FEDORA-2024-5d8f4f86b0 Packages in this update: chromium-124.0.6367.60-1.fc38 Update description: update to 124.0.6367.60 High CVE-2024-3832: Object corruption in V8 High CVE-2024-3833: Object corruption in WebAssembly High CVE-2024-3914:...