USN-5885-1: APR vulnerability

Read Time:11 Second

Ronald Crane discovered integer overflow vulnerabilities in the Apache
Portable Runtime (APR) that could potentially result in memory corruption.
A remote attacker could possibly use these issues to cause a denial of
service or execute arbitary code.

SEC Consult SA-20240930-0 :: Local Privilege Escalation via MSI Installer in Nitro PDF Pro (CVE-2024-35288)

Posted by SEC Consult Vulnerability Lab via Fulldisclosure on Sep 30 <<< application/pkcs7-signature; name="smime.p7s": Unrecognized >>> Read More

October 1, 2024

USN-7046-1: Flatpak and Bubblewrap vulnerability

It was discovered that Flatpak incorrectly handled certain persisted directories. An attacker could possibly use this issue to read and...

September 30, 2024

crosswords-0.3.13.3-4.fc41

FEDORA-2024-851219f5e3 Packages in this update: crosswords-0.3.13.3-4.fc41 Update description: Update to 0.3.13.3 and fix gresource generation Read More

September 30, 2024

perl-App-cpanminus-1.7047-2.fc39

FEDORA-2024-78e43b4de6 Packages in this update: perl-App-cpanminus-1.7047-2.fc39 Update description: Patch the code to use https instead of http (CVE-2024-45321) Read More

September 30, 2024

perl-App-cpanminus-1.7047-4.fc40

FEDORA-2024-aaa468ae4f Packages in this update: perl-App-cpanminus-1.7047-4.fc40 Update description: Patch the code to use https instead of http (CVE-2024-45321) Read More

September 30, 2024

perl-App-cpanminus-1.7047-5.fc41

FEDORA-2024-ef9db8b16d Packages in this update: perl-App-cpanminus-1.7047-5.fc41 Update description: Patch the code to use https instead of http (CVE-2024-45321) Read More

September 30, 2024

ISACA: European Security Teams Are Understaffed and Underfunded

Crooked Cops, Stolen Laptops & the Ghost of UGNazi

NVIDIA Container Toolkit Vulnerability Exposes AI Systems to Risk

Critical RCE Vulnerabilities Found in Common Unix Printing System

US State CISOs Struggling with Insufficient Cybersecurity Funding

British man used genealogy websites to fuel alleged hacking and insider trading scheme

AI and the 2024 US Elections

Cyber-Attacks Hit Over a Third of English Schools

PwC Urges Boards to Give CISOs a Seat at the Table

SEC Consult SA-20240930-0 :: Local Privilege Escalation via MSI Installer in Nitro PDF Pro (CVE-2024-35288)

USN-7046-1: Flatpak and Bubblewrap vulnerability

crosswords-0.3.13.3-4.fc41

perl-App-cpanminus-1.7047-2.fc39

perl-App-cpanminus-1.7047-4.fc40

perl-App-cpanminus-1.7047-5.fc41