Ubuntu 23.04 & 22.04.3 Installs Haven’t Been Following Their Own Security Best Practices It turns out that Ubuntu Linux installations of Ubuntu 23.04, 22.04.3 LTS, and installs done since April 2023 that accepted the Snap version update haven't been following Ubuntu's own recommended security best practices for their security pocket configuration for packages.…
APT36 Using Customized Malware to Attack Indian Government Linux and Windows Servers APT36 is a highly sophisticated APT (Advanced Persistent Threat) group known for conducting targeted espionage in South Asia and is strongly linked to Pakistan.…
Debian LTS: DLA-3568-1: firefox-esr security update A buffer overflow in parsing WebP images may result in the execution of arbitrary code. For Debian 10 buster, this problem has been fixed in version…
Debian LTS: DLA-3568-1: firefox-esr security update A buffer overflow in parsing WebP images may result in the execution of arbitrary code. For Debian 10 buster, this problem has been fixed in version…
SUSE: 2023:2977-1 bci/dotnet-aspnet Security Update The container bci/dotnet-aspnet was updated. The following patches have been included in this update:…
SUSE: 2023:2977-1 bci/dotnet-aspnet Security Update The container bci/dotnet-aspnet was updated. The following patches have been included in this update:…
Fedora 37: redis 2023-0e9e7544df **Redis 7.0.13** Released Wed 06 Sep 2023 15:00:00 IDT Upgrade urgency SECURITY: See security fixes below. Security Fixes * (**CVE-2023-41053**) Redis does not correctly identify keys accessed by SORT_RO and as a result may grant users executing this command access…
Fedora 38: redis 2023-03422cb8de **Redis 7.0.13** Released Wed 06 Sep 2023 15:00:00 IDT Upgrade urgency SECURITY: See security fixes below. Security Fixes * (**CVE-2023-41053**) Redis does not correctly identify keys accessed by SORT_RO and as a result may grant users executing this command access…
Slackware: 2023-258-01: python3 Security Update New python3 packages are available for Slackware 15.0 and -current to fix a security issue.…
Fedora 39: open-vm-tools 2023-20b6ac4b6c Package new upstream version of open-vm-tools-12.3.0-22234872. Security fix for CVE-2023-20900, CVE-2023-20867…
Fedora 39: chromium 2023-d79ff22c5b update to 116.0.5845.179. Fixes following security issues: CVE-2023-4427 CVE-2023-4428 CVE-2023-4429 CVE-2023-4430 CVE-2023-4431 CVE-2023-4572 CVE-2023-4761 CVE-2023-4762 CVE-2023-4763 CVE-2023-4764…
Fedora 39: redis 2023-5a7cc198c2 **Redis 7.2.1** Released Wed 06 Sep 2023 15:00:00 IDT Upgrade urgency SECURITY: See security fixes below. Security Fixes * (**CVE-2023-41053**) Redis does not correctly identify keys accessed by SORT_RO and, as a result, may grant users executing this command access…
Fedora 39: borgbackup 2023-467632ecbe fix for CVE-2023-36811: spoofed archive leads to data loss Please note that starting with borgbackup 1.2.5 all borg repos must use TAM authentication: https://github.com/borgbackup/borg/blob/1.2.6/docs/changes.rst#pre-125-archives- spoofing-vulnerability-cve-2023-36811…
Fedora 39: xrdp 2023-5134642a68 Release notes for xrdp v0.9.23 (2023/08/31) General announcements - Running xrdp and xrdp-sesman on separate hosts is still supported by this release, but is now deprecated. This is not secure. A future v1.0 release will replace the TCP socket used…
Debian: DSA-5498-1: thunderbird security update A buffer overflow in parsing WebP images may result in the execution of arbitrary code. For the oldstable distribution (bullseye), this problem has been fixed…