ZDI-24-208: Microsoft Azure MCR VSTS CLI vstscli Uncontrolled Search Path Element Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of MCR VSTS CLI for Microsoft Azure. Authentication is not required to exploit...
ZDI-24-207: Apple macOS VideoToolbox Out-Of-Bounds Write Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. User interaction is required to exploit this vulnerability in that...
ZDI-24-206: Apple macOS ImageIO MPO Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. Interaction with the ImageIO library is required to exploit this...
USN-6654-1: Roundcube Webmail vulnerability
It was discovered that Roundcube Webmail incorrectly sanitized characters in the linkrefs text messages. An attacker could possibly use this issue to execute a cross-site...
GLSA 202402-31: GNU Aspell: Heap Buffer Overflow
Post Content Read More
GLSA 202402-30: Glances: Arbitrary Code Execution
Post Content Read More
GLSA 202402-32: btrbk: Remote Code Execution
Post Content Read More
GLSA 202402-33: PyYAML: Arbitrary Code Execution
Post Content Read More
DSA-5632-1 composer – security update
It was discovered that composer, a dependency manager for the PHP language, processed files in the local working directory. This could lead to local privilege...
DSA-5631-1 iwd – security update
It was discovered that iwd, the iNet Wireless Daemon, does not properly handle messages in the 4-way handshake used when connecting to a protected WiFi...