Linux kernel patches “performance can be harmful” bug in video driver
Credit to Author: Paul Ducklin| Date: Tue, 01 Feb 2022 19:59:08 +0000
This bug is fiendishly hard to exploit – but if you patch, it won’t be there to exploit at all.
Read morevulnerability
Apple fixes Safari data leak (and patches a zero-day!) – update now
Credit to Author: Paul Ducklin| Date: Thu, 27 Jan 2022 21:09:53 +0000
That infamous “supercookie” bug in Safari has now been fixed. Oh, and there was a zero-day kernel hole as well.
Read more“PwnKit” security bug gets you root on most Linux distros – what to do
Credit to Author: Paul Ducklin| Date: Wed, 26 Jan 2022 19:58:32 +0000
An elevation of privilege bug that could let a “mostly harmless” user give themselves a instant root shell
Read moreSlack fixes account-stealing bug
Credit to Author: Danny Bradbury| Date: Tue, 17 Mar 2020 12:33:43 +0000
Slack has fixed a bug that allowed attackers to hijack user accounts by tampering with their HTTP sessions.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/i-F9hS91EoQ” height=”1″ width=”1″ alt=””/>
Read moreTor browser fixes bug that allows JavaScript to run when disabled
Credit to Author: John E Dunn| Date: Tue, 17 Mar 2020 12:16:27 +0000
The Tor browser has a bug that could allow JavaScript to execute on websites even when users think they’ve disabled it for maximum anonymity.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/es39u8LUhmk” height=”1″ width=”1″ alt=””/>
Read moreWordPress to get automatic updates for plugins and themes
Credit to Author: John E Dunn| Date: Tue, 17 Mar 2020 12:10:14 +0000
Good news for website admins: the ability to automatically update plugins and themes is being beta-tested for WordPress 5.5, due in August.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/25i98IfHHJE” height=”1″ width=”1″ alt=””/>
Read moreMicrosoft patches wormable Windows 10 ‘SMBGhost’ flaw
Credit to Author: John E Dunn| Date: Mon, 16 Mar 2020 11:58:56 +0000
What’s the difference between a scheduled security update and one that’s out-of-band? In this case, it’s two days.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/OqgpMudTrew” height=”1″ width=”1″ alt=””/>
Read moreOpen source bugs have soared in the past year
Credit to Author: Danny Bradbury| Date: Mon, 16 Mar 2020 10:55:41 +0000
Open source bugs have skyrocketed, according to a report from WhiteSource, with XSS flaws account for a quarter of those bugs.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/ex96Deh5Pk4″ height=”1″ width=”1″ alt=””/>
Read moreNvidia patches severe flaws affecting GeForce, Quadro NVS and Tesla
Credit to Author: John E Dunn| Date: Tue, 03 Mar 2020 11:09:05 +0000
In all, the update covers five Windows and Linux desktop CVE vulnerabilities, including one rated as critical.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/YitOMgSO498″ height=”1″ width=”1″ alt=””/>
Read moreXSS plugin vulnerabilities plague WordPress users
Credit to Author: Danny Bradbury| Date: Tue, 03 Mar 2020 10:44:44 +0000
Thousands of active WordPress plugins have been hit with a swathe of XSS vulnerabilities that could give attackers complete control of the site.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/Bjh4-1ye-9E” height=”1″ width=”1″ alt=””/>
Read more