dotnet8.0-8.0.102-1.fc39
FEDORA-2024-a2b7ec0ba4 Packages in this update: dotnet8.0-8.0.102-1.fc39 Update description: This is the February 2024 update for .NET 8. Release Notes: - Runtime: https://github.com/dotnet/core/blob/main/release-notes/8.0/8.0.2/8.0.2.md - SDK: https://github.com/dotnet/core/blob/main/release-notes/8.0/8.0.2/8.0.102.md...
USN-6647-1: Linux kernel vulnerabilities
It was discovered that a race condition existed in the ATM (Asynchronous Transfer Mode) subsystem of the Linux kernel, leading to a use-after-free vulnerability. A...
USN-6584-2: Libspf2 vulnerabilities
USN-6584-1 fixed several vulnerabilities in Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. This update provides the corresponding updates for CVE-2021-33912 and CVE-2021-33913 in Ubuntu 16.04...
SEC Consult SA-20240220-0 :: Multiple Stored Cross-Site Scripting Vulnerabilities in OpenOLAT (Frentix GmbH)
Posted by SEC Consult Vulnerability Lab, Research via Fulldisclosure on Feb 20 SEC Consult Vulnerability Lab Security Advisory < 20240220-0 > ======================================================================= title: Multiple Stored...
Re: Buffer Overflow in graphviz via via a crafted config6a file
Posted by Matthew Fernandez on Feb 20 The fix for this ended up landing in Graphviz 10.0.1, available at https://graphviz.org/download/. Details of this CVE (CVE-2023-46045)...
CVE-2024-24681: Insecure AES key in Yealink Configuration Encrypt Tool
Posted by Jeroen J.A.W. Hermans via Fulldisclosure on Feb 20 CloudAware Security Advisory CVE-2024-24681: Insecure AES key in Yealink Configuration Encrypt Tool ======================================================================== Summary ========================================================================...
Microsoft Windows Defender / Backdoor:JS/Relvelshe.A / Detection Mitigation Bypass
Posted by hyp3rlinx on Feb 20 [+] Credits: John Page (aka hyp3rlinx) [+] Website: hyp3rlinx.altervista.org [+] Source: https://hyp3rlinx.altervista.org/advisories/Windows_Defender_Backdoor_JS.Relvelshe.A_Detection_Mitigation_Bypass.txt [+] twitter.com/hyp3rlinx [+] ISR: ApparitionSec [Vendor] www.microsoft.com...
Microsoft Windows Defender / VBScript Detection Bypass
Posted by hyp3rlinx on Feb 20 [+] Credits: John Page (aka hyp3rlinx) [+] Website: hyp3rlinx.altervista.org [+] Source: https://hyp3rlinx.altervista.org/advisories/MICROSOFT_WINDOWS_DEFENDER_VBSCRIPT_TROJAN_MITIGATION_BYPASS.txt [+] twitter.com/hyp3rlinx [+] ISR: ApparitionSec [Vendor] www.microsoft.com...
Microsoft Windows Defender / Trojan.Win32/Powessere.G / Detection Mitigation Bypass Part 3
Posted by hyp3rlinx on Feb 20 [+] Credits: John Page (aka hyp3rlinx) [+] Website: hyp3rlinx.altervista.org [+] Source: https://hyp3rlinx.altervista.org/advisories/MICROSOFT_WINDOWS_DEFENDER_TROJAN.WIN32.POWESSERE.G_MITIGATION_BYPASS_PART_3.txt [+] twitter.com/hyp3rlinx [+] ISR: ApparitionSec [Vendor] www.microsoft.com...
ZDI-24-183: Apache OFBiz createRegister Error Message Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apache OFBiz. Authentication is not required to exploit this vulnerability. The ZDI...