Grav CMS 1.7.44 Server-Side Template Injection

Ruby-SAML / GitLab Authentication Bypass

iTunes For Windows 12.13.2.3 Local Privilege Escalation

ABB Cylon Aspect 3.08.00 syslogSwitch.php Remote Code Execution

ABB Cylon Aspect 3.08.01 caldavUtil.php Remote Code Execution

Ubuntu Security Notice 5382-1 - Albin Eldstål-Ahrens and Lukas Lamster discovered libinput did not properly handle input devices with specially crafted names. A local attacker with physical access could use this to cause libinput to crash or expose sensitive information.

Headline

Ubuntu Security Notice USN-5382-1

Packet Storm: Latest News