Read Time:21 Second

FEDORA-EPEL-2023-284c34a6cc

Packages in this update:

caddy-1.0.5-1.el7

Update description:

This updates takes the package from version 1.0.3 to 1.0.5, the most recent version in the v1 branch. It provides fixes for two CVEs:

CVE-2022-3064, resolved by updating the bundled gopkg.in/yaml.v2 to 2.2.4
CVE-2022-41717, resolved by building with golang 1.19.10

xen-4.19.0-4.fc41

FEDORA-2024-60809cb44e Packages in this update: xen-4.19.0-4.fc41 Update description: x86: Deadlock in vlapic_error() [XSA-462, CVE-2024-45817] Read More

September 24, 2024

USN-7031-1: Puma vulnerability

It was discovered that Puma incorrectly handled parsing certain headers. A remote attacker could possibly use this issue to overwrite...

September 24, 2024

USN-7030-1: py7zr vulnerability

It was discovered that py7zr was vulnerable to path traversal attacks. If a user or automated system were tricked into...

September 24, 2024

CyberDanube Security Research 20240919-0 | Multiple Vulnerabilities in Netman204

Posted by Thomas Weber via Fulldisclosure on Sep 23 CyberDanube Security Research 20240919-0 ------------------------------------------------------------------------------- title| Multiple Vulnerabilities product| Netman 204...

September 24, 2024

Submit Exploit CVE-2024-42831

Posted by arfaoui haythem on Sep 23 # Exploit Title: Reflected XSS in Elaine's Realtime CRM Automation v6.18.17 # Date:...

September 24, 2024

GLSA 202409-24: Tor: Multiple Vulnerabilities

Post Content Read More

September 24, 2024

Threat Actors Shift to JavaScript-Based Phishing Attacks

Cybersecurity Incident Affects Arkansas City Water Treatment Facility

Warnings after new Valencia ransomware group strikes businesses and leaks data

New Octo2 Malware Variant Threatens Mobile Banking Security

The AI Fix #17: Why AI is an AWFUL writer and LinkedIn’s outrageous land grab

14 Million Patients Impacted by US Healthcare Data Breaches in 2024

#GartnerSEC: Zero Failure Tolerance, A Cybersecurity Myth Holding Back Organizations

Citing security fears, Ukraine bans Telegram on government and military devices

Israel’s Pager Attacks and Supply Chain Vulnerabilities

caddy-1.0.5-1.el7

FEDORA-EPEL-2023-284c34a6cc

Packages in this update:

Update description:

xen-4.19.0-4.fc41

USN-7031-1: Puma vulnerability

USN-7030-1: py7zr vulnerability

CyberDanube Security Research 20240919-0 | Multiple Vulnerabilities in Netman204

Submit Exploit CVE-2024-42831

GLSA 202409-24: Tor: Multiple Vulnerabilities