USN-5891-1: curl vulnerabilities

Read Time:39 Second

Harry Sintonen discovered that curl incorrectly handled HSTS support
when multiple URLs are requested serially. A remote attacker could possibly
use this issue to cause curl to use unencrypted connections. This issue
only affected Ubuntu 22.04 LTS, and Ubuntu 22.10. (CVE-2023-23914)

Harry Sintonen discovered that curl incorrectly handled HSTS support
when multiple URLs are requested in parallel. A remote attacker could
possibly use this issue to cause curl to use unencrypted connections. This
issue only affected Ubuntu 22.04 LTS, and Ubuntu 22.10. (CVE-2023-23915)

Patrick Monnerat discovered that curl incorrectly handled memory when
processing requests with multi-header compression. A remote attacker could
possibly use this issue to cause curl to consume resources, leading to a
denial of service. (CVE-2023-23916)

People Know Their Data Rights, and They’re Here to Play Ball

Ten Million Brits Hit By Fraud in Just Three Years

ISACA: European Security Teams Are Understaffed and Underfunded

Crooked Cops, Stolen Laptops & the Ghost of UGNazi

NVIDIA Container Toolkit Vulnerability Exposes AI Systems to Risk

Critical RCE Vulnerabilities Found in Common Unix Printing System

US State CISOs Struggling with Insufficient Cybersecurity Funding

British man used genealogy websites to fuel alleged hacking and insider trading scheme

AI and the 2024 US Elections

USN-7015-3: Python vulnerability

SEC Consult SA-20240930-0 :: Local Privilege Escalation via MSI Installer in Nitro PDF Pro (CVE-2024-35288)

USN-7046-1: Flatpak and Bubblewrap vulnerability

crosswords-0.3.13.3-4.fc41

perl-App-cpanminus-1.7047-2.fc39

perl-App-cpanminus-1.7047-4.fc40