ZDI-22-514: (Pwn2Own) Canon imageCLASS MF644Cdw CADM Heap-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Canon imageCLASS MF644Cdw printers. Authentication is not required to exploit this vulnerability....
ZDI-22-515: (Pwn2Own) Canon imageCLASS MF644Cdw SLP Stack-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Canon imageCLASS MF644Cdw printers. Authentication is not required to exploit this vulnerability....
ZDI-22-516: (Pwn2Own) Canon imageCLASS MF644Cdw privet Stack-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Canon imageCLASS MF644Cdw printers. Authentication is not required to exploit this vulnerability....
LokiLocker Ransomware with Built-in Wiper Functionality
FortiGuard Labs is aware of a report that LokiLocker ransomware is equipped with built-in wiper functionality. The ransomware targets the Windows OS and is capable...
DSA-5104 chromium – security update
Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure. Read More
DSA-5105 bind9 – security update
Two vulnerabilities were found in the BIND DNS server, which could result in denial of service or cache poisoning. Read More
Pro-Ukraine ‘Protestware’ Pushes Antiwar Ads, Geo-Targeted Malware
Researchers are tracking a number of open-source “protestware” projects on GitHub that have recently altered their code to display “Stand with Ukraine” messages for users,...
openvpn-2.5.6-1.el9
FEDORA-EPEL-2022-7a48f758c5 Packages in this update: openvpn-2.5.6-1.el9 Update description: This is a maintenance release of OpenVPN 2.5 with a security fix when used in server mode...
Fortress creates center for security information on energy suppliers
A new library designed to be a centralized source of security information and communication for energy company suppliers was announced Tuesday by Fortress Information Security....
openvpn-2.4.12-1.el8
FEDORA-EPEL-2022-883139a5ce Packages in this update: openvpn-2.4.12-1.el8 Update description: This is a security and bugfix release of OpenVPN 2.4 with a security fix when used in...