Category: Advisories

It was discovered that a late privilege drop in the "REFRESH MATERIALIZED VIEW CONCURRENTLY" command could allow an attacker to trick a user with higher...

FEDORA-2024-c967c7d287 Packages in this update: unbound-1.19.1-1.fc38 Update description: Fix CVE-2023-50387, DNSSEC verification complexity can be exploited to exhaust CPU resources and stall DNS resolvers. Fix...

FEDORA-2024-e24211eff0 Packages in this update: dnsmasq-2.90-1.fc39 Update description: https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2024q1/017430.html Read More

FEDORA-2024-e00eceb11c Packages in this update: dnsmasq-2.90-1.fc38 Update description: https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2024q1/017430.html Read More

Brennan Conroy discovered that .NET with SignalR did not properly handle malicious clients. An attacker could possibly use this issue to cause a denial of...

Multiple vulnerabilities have been discovered in Adobe products, the most severe of which could allow for arbitrary code execution for the following: Adobe Commerce is...

Multiple vulnerabilities have been discovered in Microsoft products, the most severe of which could allow for remote code execution in the context of the logged...

Shoham Danino, Anat Bremler-Barr, Yehuda Afek, and Yuval Shavitt discovered that Bind incorrectly handled parsing large DNS messages. A remote attacker could possibly use this...

David Benjamin discovered that OpenSSL incorrectly handled excessively long X9.42 DH keys. A remote attacker could possibly use this issue to cause OpenSSL to consume...

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Audition. User interaction is required to exploit this vulnerability in that...