DSA-5785-1 mediawiki – security update
Dom Walden discovered that the AbuseFilter extension in MediaWiki, a website engine for collaborative work, performed incomplete authorisation checks. https://security-tracker.debian.org/tracker/DSA-5785-1 Read More
DSA-5786-1 libgsf – security update
Integer overflows flaws were discovered in the Compound Document Binary File format parser of libgsf, the GNOME Project G Structured File Library, which could result...
firefox-131.0-2.fc39
FEDORA-2024-86edbf4d85 Packages in this update: firefox-131.0-2.fc39 Update description: New upstream version (131.0) Read More
chromium-129.0.6668.89-1.fc39
FEDORA-2024-7aba3c1531 Packages in this update: chromium-129.0.6668.89-1.fc39 Update description: update to 129.0.6668.89 High CVE-2024-7025: Integer overflow in Layout High CVE-2024-9369: Insufficient data validation in Mojo High...
chromium-129.0.6668.89-1.fc40
FEDORA-2024-452b60addf Packages in this update: chromium-129.0.6668.89-1.fc40 Update description: update to 129.0.6668.89 High CVE-2024-7025: Integer overflow in Layout High CVE-2024-9369: Insufficient data validation in Mojo High...
Some SIM / USIM card security (and ecosystem) info
Posted by Security Explorations on Oct 04 Hello All, Those interested in SIM / USIM card security might find some information at our spin-off project...
chromium-129.0.6668.89-1.el8
FEDORA-EPEL-2024-a3d9061962 Packages in this update: chromium-129.0.6668.89-1.el8 Update description: update to 129.0.6668.89 * High CVE-2024-7025: Integer overflow in Layout * High CVE-2024-9369: Insufficient data validation in...
chromium-129.0.6668.89-1.el9
FEDORA-EPEL-2024-ae299cc269 Packages in this update: chromium-129.0.6668.89-1.el9 Update description: update to 129.0.6668.89 * High CVE-2024-7025: Integer overflow in Layout * High CVE-2024-9369: Insufficient data validation in...
apache-commons-io-2.11.0-5.fc39
FEDORA-2024-5d581b2365 Packages in this update: apache-commons-io-2.11.0-5.fc39 Update description: Fixes possible denial of service attack on untrusted input Read More
Synacor Zimbra Collaboration Command Execution Vulnerability (CVE-2024-45519)
What is the Vulnerability?Attackers are actively exploiting CVE-2024-45519, a critical Zimbra vulnerability that allows attackers to execute arbitrary commands on vulnerable systems. CVE-2024-45519 is a...