#linux

Debian Security Advisory 5612-1

Debian Linux Security Advisory 5612-1 - Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.

11 months ago

Packet Storm

Open in Source

#linux #debian #dos #js #git #chrome

Red Hat Security Advisory 2024-0647-03

Red Hat Security Advisory 2024-0647-03 - An update for rpm is now available for Red Hat Enterprise Linux 8.

11 months ago

Packet Storm

Open in Source

#vulnerability #linux #red_hat #js #rpm

Grocy 4.0.2 Cross Site Request Forgery

Grocy versions 4.0.2 and below suffer from a cross site request forgery vulnerabilities.

11 months ago

Packet Storm

Open in Source

#xss #csrf #vulnerability #web #linux #js #git #auth

November 2023 – January 2024: New Vulristics Features, 3 Months of Microsoft Patch Tuesdays and Linux Patch Wednesdays, Year 2023 in Review

Hello everyone! It has been 3 months since the last episode. I spent most of this time improving my Vulristics project. So in this episode, let’s take a look at what’s been done. Alternative video link (for Russia): https://vk.com/video-149273431_456239139 Also, let’s take a look at the Microsoft Patch Tuesdays vulnerabilities, Linux Patch Wednesdays vulnerabilities and […]

11 months ago

Alexander V. Leonov

Open in Source

#sql #xss #vulnerability #web #windows #google #microsoft #ubuntu #linux #debian #dos #apache #js #git #wordpress #rce #perl #buffer_overflow #auth #chrome #firefox #ssl #blog

FritzFrog Returns with Log4Shell and PwnKit, Spreading Malware Inside Your Network

The threat actor behind a peer-to-peer (P2P) botnet known as FritzFrog has made a return with a new variant that leverages the Log4Shell vulnerability to propagate internally within an already compromised network. "The vulnerability is exploited in a brute-force manner that attempts to target as many vulnerable Java applications as possible," web infrastructure and security

11 months ago

The Hacker News

Open in Source

#vulnerability #web #mac #linux #ddos #dos #java #botnet #ssh #The Hacker News

Ubuntu Security Notice USN-6587-4

Ubuntu Security Notice 6587-4 - USN-6587-1 fixed vulnerabilities in X.Org X Server. The fix was incomplete resulting in a possible regression. This update fixes the problem. Jan-Niklas Sohn discovered that the X.Org X Server incorrectly handled memory when processing the DeviceFocusEvent and ProcXIQueryPointer APIs. An attacker could possibly use this issue to cause the X Server to crash, obtain sensitive information, or execute arbitrary code.

11 months ago

Packet Storm

Open in Source

#vulnerability #ubuntu #linux #dos

Apache Tomcat 8.5.63 / 9.0.43 HTTP Response Smuggling

Apache Tomcat suffers from a client-side de-sync vulnerability via HTTP request smuggling. Apache Tomcat versions 8.5.7 through 8.5.63 and 9.0.0-M11 through 9.0.43 are vulnerable.

11 months ago

Packet Storm

Open in Source

#vulnerability #web #windows #apple #linux #apache #wordpress #auth #chrome #webkit

Red Hat Security Advisory 2024-0629-03

Red Hat Security Advisory 2024-0629-03 - An update for tigervnc is now available for Red Hat Enterprise Linux 7. Issues addressed include a buffer overflow vulnerability.

11 months ago

Packet Storm

Open in Source

#vulnerability #mac #linux #red_hat #js #buffer_overflow

Red Hat Security Advisory 2024-0628-03

Red Hat Security Advisory 2024-0628-03 - An update for libssh is now available for Red Hat Enterprise Linux 8.

11 months ago

Packet Storm

Open in Source

#vulnerability #linux #red_hat #js #ssh

Red Hat Security Advisory 2024-0627-03

Red Hat Security Advisory 2024-0627-03 - An update for gnutls is now available for Red Hat Enterprise Linux 8.