USN-6972-2: Linux kernel (AWS) vulnerabilities
Yuxuan Hu discovered that the Bluetooth RFCOMM protocol driver in the Linux Kernel contained a race condition, leading to a NULL pointer dereference. An attacker...
USN-6979-1: Linux kernel (Raspberry Pi) vulnerabilities
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the...
Hacker leaks upcoming episodes of Netflix shows online following security breach
A production partner of Netflix has suffered a serious security breach which has resulted in yet-to-be-released episodes of popular shows to be leaked online. Read...
Over 100,000 Oregon Zoo visitors warned that their payment card details were stolen in security breach
Cybercriminals have succeeded in stealing the payment card information from over 110,000 animal lovers over several months after meddling with Oregon Zoo's online ticket payment...
Security Flaws in UK Political Party Donation Platforms Exposed
The donation websites of the UK’s seven major political parties are missing critical security features to protect the accounts of donors, according to DataDome Read...
Novel Android Malware Steals Card NFC Data For ATM Withdrawals
ESET claims new NGate Android malware relays NFC data to steal card details for ATM cash-out Read More
Backdoor in Mifare Smart Cards Could Open Doors Around the World
Quarklabs researchers claim millions of contactless key cards could be cloned via a backdoor Read More
ZDI-24-1161: Linux Kernel vmwgfx Driver Out-Of-Bounds Read Information Disclosure Vulnerability
This vulnerability allows local attackers to disclose sensitive information on affected installations of Linux Kernel. An attacker must first obtain the ability to execute high-privileged...
ZDI-24-1162: Allegra renderFieldMatch Deserialization of Untrusted Data Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is required to exploit this vulnerability. The ZDI has assigned...
ZDI-24-1163: Allegra loadFieldMatch Deserialization of Untrusted Data Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is required to exploit this vulnerability. The ZDI has assigned...