flatpak-runtime-f37-3720230309184551.1 flatpak-sdk-f37-3720230309184551.1
FEDORA-FLATPAK-2023-8bb9e1a778 Packages in this update: flatpak-runtime-f37-3720230309184551.1 flatpak-sdk-f37-3720230309184551.1 Update description: Updated flatpak runtime and SDK, including latest Fedora 37 security and bug-fix errata. Read More
thunderbird-102.9.0-1.fc36
FEDORA-2023-dbfb637c38 Packages in this update: thunderbird-102.9.0-1.fc36 Update description: Update to 102.9.0 ; https://www.mozilla.org/en-US/security/advisories/mfsa2023-11/ ; https://www.thunderbird.net/en-US/thunderbird/102.9.0/releasenotes/ Read More
thunderbird-102.9.0-1.fc37
FEDORA-2023-222495c87a Packages in this update: thunderbird-102.9.0-1.fc37 Update description: Update to 102.9.0 ; https://www.mozilla.org/en-US/security/advisories/mfsa2023-11/ ; https://www.thunderbird.net/en-US/thunderbird/102.9.0/releasenotes/ Read More
thunderbird-102.9.0-1.fc38
FEDORA-2023-f36ef5ab9e Packages in this update: thunderbird-102.9.0-1.fc38 Update description: Update to 102.9.0 ; https://www.mozilla.org/en-US/security/advisories/mfsa2023-11/ ; https://www.thunderbird.net/en-US/thunderbird/102.9.0/releasenotes/ Read More
Critical Adobe ColdFusion Vulnerability (CVE-2023-26360) Exploited as a Zero-day
FortiGuard Labs is aware of a report that an improper access control vulnerability in Adobe ColdFusion (CVE-2023-26360) was observed to have been exploited in the...
Multiple Progress Telerik UI Vulnerabilities Exploited in the Wild
FortiGuard Labs recently observed that multiple vulnerabilities (CVE-2019-18935, CVE-2017-11317 and CVE-2017-11357) in Progress Telerik UI (User Interface) are being exploited in chain to achieve arbitrary...
Microsoft March Patch Tuesday Release Contains Two New Zero Days and 80 Security Updates
Today - March 14, 2023, Microsoft released 80 security updates for this month's Patch Tuesday release. Two of the releases address known Zero Days in...
USN-5959-1: Kerberos vulnerabilities
It was discovered that Kerberos incorrectly handled memory when processing KDC data, which could lead to a NULL pointer dereference. An attacker could possibly use...
ZDI-23-265: Adobe Substance 3D Stager SVG File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Substance 3D Stager. User interaction is required to exploit this vulnerability...
ZDI-23-264: Adobe Substance 3D Stager SVG File Parsing Use-After-Free Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Substance 3D Stager. User interaction is required to exploit this vulnerability...