New Patent Application for Car-to-Car Surveillance
Ford has a new patent application for a system where cars monitor each other’s speeds, and then report then to some central authority. Slashdot thread....
White House and EC-Council Launch $15m Cybersecurity Scholarship Program
The White House and EC-Council scholarship program aims to train over 50,000 students in critical cybersecurity skills Read More
US Sues TikTok For Children’s Law Violations
The US government is taking TikTok to court for alleged violations of the COPPA regulation Read More
vim-9.1.660-1.fc39
FEDORA-2024-5e87ad4678 Packages in this update: vim-9.1.660-1.fc39 Update description: The newest upstream commit Security fixes for CVE-2024-41957, CVE-2024-41965 Read More
vim-9.1.660-1.fc40
FEDORA-2024-fe5420ed3f Packages in this update: vim-9.1.660-1.fc40 Update description: The newest upstream commit Security fixes for CVE-2024-41965, CVE-2024-41957 Read More
APT Group StormBamboo Attacks ISP Customers Via DNS Poisoning
Volexity claims the StormBamboo group compromised an ISP to push malicious software updates to customers Read More
roundcubemail-1.6.8-1.fc40
FEDORA-2024-2e908e829a Packages in this update: roundcubemail-1.6.8-1.fc40 Update description: Version 1.6.8 Managesieve: Protect special scripts in managesieve_kolab_master mode Fix newmail_notifier notification focus in Chrome (#9467) Fix...
roundcubemail-1.6.8-1.fc39
FEDORA-2024-b60eb661a4 Packages in this update: roundcubemail-1.6.8-1.fc39 Update description: Version 1.6.8 Managesieve: Protect special scripts in managesieve_kolab_master mode Fix newmail_notifier notification focus in Chrome (#9467) Fix...
roundcubemail-1.5.8-1.el9
FEDORA-EPEL-2024-1b8e0ad5c2 Packages in this update: roundcubemail-1.5.8-1.el9 Update description: Version 1.5.8 Fix XSS vulnerability in post-processing of sanitized HTML content CVE-2024-42009 Fix XSS vulnerability in serving...
ZDI-24-1077: (0Day) (Pwn2Own) oFono QMI SMS Handling Out-Of-Bounds Read Information Disclosure Vulnerability
This vulnerability allows local attackers to disclose sensitive information on affected installations of oFono. Authentication is not required to exploit this vulnerability. The ZDI has...