Tag: security updates
-
The Register: Don’t panic, but it’s only a matter of time before critical ‘CitrixBleed 2’ is under attack
Source URL: https://www.theregister.com/2025/06/24/critical_citrix_bug_citrixbleed/ Source: The Register Title: Don’t panic, but it’s only a matter of time before critical ‘CitrixBleed 2’ is under attack Feedly Summary: Why are you even reading this story? Patch now! Citrix patched a critical vulnerability in its NetScaler ADC and NetScaler Gateway products that is already being compared to the infamous…
-
The Register: Apple tries to contain itself with lightweight Linux VMs for macOS
Source URL: https://www.theregister.com/2025/06/10/apple_tries_to_contain_itself/ Source: The Register Title: Apple tries to contain itself with lightweight Linux VMs for macOS Feedly Summary: Swift-based containerization framework aims to improve performance and security Apple on Monday unveiled an open source containerization framework for creating and running Linux container images on the Mac.… AI Summary and Description: Yes Summary: Apple’s…
-
Slashdot: New Moderate Linux Flaw Allows Password Hash Theft Via Core Dumps in Ubuntu, RHEL, Fedora
Source URL: https://it.slashdot.org/story/25/06/02/0140228/new-moderate-linux-flaw-allows-password-hash-theft-via-core-dumps-in-ubuntu-rhel-fedora?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: New Moderate Linux Flaw Allows Password Hash Theft Via Core Dumps in Ubuntu, RHEL, Fedora Feedly Summary: AI Summary and Description: Yes Summary: The report discusses two vulnerabilities (CVE-2025-5054 and CVE-2025-4598) in Linux core dump handlers such as Apport and systemd-coredump, which may allow local attackers to access sensitive…
-
The Register: Commvault fixes critical Command Center issue after flaw finder alert
Source URL: https://www.theregister.com/2025/05/13/patch_commvault_cvss_10/ Source: The Register Title: Commvault fixes critical Command Center issue after flaw finder alert Feedly Summary: Pay-to-play security on CVSS 10 issue is now fixed An update that fixed a critical flaw in data protection biz Commvault’s Command Center was initially not available to a significant user subset – those testing out…
-
Microsoft Security Blog: Marbled Dust leverages zero-day in Output Messenger for regional espionage
Source URL: https://www.microsoft.com/en-us/security/blog/2025/05/12/marbled-dust-leverages-zero-day-in-output-messenger-for-regional-espionage/ Source: Microsoft Security Blog Title: Marbled Dust leverages zero-day in Output Messenger for regional espionage Feedly Summary: Since April 2024, the threat actor that Microsoft Threat Intelligence tracks as Marbled Dust has been observed exploiting user accounts that have not applied fixes to a zero-day vulnerability (CVE-2025-27920) in the messaging app Output…
-
Slashdot: Chrome To Patch Decades-Old ‘Browser History Sniffing’ Flaw That Let Sites Peek At Your History
Source URL: https://yro.slashdot.org/story/25/04/12/2054251/chrome-to-patch-decades-old-browser-history-sniffing-flaw-that-let-sites-peek-at-your-history?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Chrome To Patch Decades-Old ‘Browser History Sniffing’ Flaw That Let Sites Peek At Your History Feedly Summary: AI Summary and Description: Yes Summary: The article discusses a significant update in the Chrome browser that aims to mitigate a long-standing privacy attack known as “browser history sniffing.” This side-channel attack…