Security Pop Quiz! q234.mp3

News

Packet Storm Security

Security Affairs Looking Glass Cyber
    securingtomorrow.mcafee.com
      Quick Heal Threat Post Naked Security
        ESET CIS
        • CIS Benchmarks April 2024 Update Mon, 15 Apr 2024 18:23:00 Z
          Here is an overview of the CIS Benchmarks that the Center for Internet Security updated or released for April 2024.
        Malware Patrol SecList MySonicWall

        Critical Infrastructure

        Case Studies

        Tools

        Exploits

        Last 20 Website Defacements - Zone-h

          Press Play to hear the answer!

          Advisories

          • Debian Security Advisory 5665-1 Thu, 18 Apr 2024 15:54:17 GMT
            Debian Linux Security Advisory 5665-1 - Several security vulnerabilities have been discovered in the Tomcat servlet and JSP engine.
          • Debian Security Advisory 5664-1 Thu, 18 Apr 2024 15:54:04 GMT
            Debian Linux Security Advisory 5664-1 - Jetty 9 is a Java based web server and servlet engine. It was discovered that remote attackers may leave many HTTP/2 connections in ESTABLISHED state (not closed), TCP congested and idle. Eventually the server will stop accepting new connections from valid clients which can cause a denial of service.
          • Ubuntu Security Notice USN-6737-1 Thu, 18 Apr 2024 15:29:05 GMT
            Ubuntu Security Notice 6737-1 - Charles Fol discovered that the GNU C Library iconv feature incorrectly handled certain input sequences. An attacker could use this issue to cause the GNU C Library to crash, resulting in a denial of service, or possibly execute arbitrary code.
          • Ubuntu Security Notice USN-6729-2 Thu, 18 Apr 2024 15:28:17 GMT
            Ubuntu Security Notice 6729-2 - USN-6729-1 fixed several vulnerabilities in Apache. This update provides the corresponding update for Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. Orange Tsai discovered that the Apache HTTP Server incorrectly handled validating certain input. A remote attacker could possibly use this issue to perform HTTP request splitting attacks.
          • Red Hat Security Advisory 2024-1904-03 Thu, 18 Apr 2024 15:23:26 GMT
            Red Hat Security Advisory 2024-1904-03 - An update for firefox is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions. Issues addressed include a use-after-free vulnerability.
          • Red Hat Security Advisory 2024-1901-03 Thu, 18 Apr 2024 15:23:11 GMT
            Red Hat Security Advisory 2024-1901-03 - OpenShift container images for the Red Hat Service Interconnect 1.5 release.
          • Red Hat Security Advisory 2024-1883-03 Thu, 18 Apr 2024 15:22:59 GMT
            Red Hat Security Advisory 2024-1883-03 - An update for shim is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Issues addressed include buffer overflow, bypass, integer overflow, and out of bounds read vulnerabilities.
          • Red Hat Security Advisory 2024-1882-03 Thu, 18 Apr 2024 15:22:39 GMT
            Red Hat Security Advisory 2024-1882-03 - An update for kernel-rt is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Issues addressed include a use-after-free vulnerability.
          • Red Hat Security Advisory 2024-1881-03 Thu, 18 Apr 2024 15:22:25 GMT
            Red Hat Security Advisory 2024-1881-03 - An update for kernel is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Issues addressed include null pointer and use-after-free vulnerabilities.
          • Red Hat Security Advisory 2024-1880-03 Thu, 18 Apr 2024 15:21:31 GMT
            Red Hat Security Advisory 2024-1880-03 - An update for the nodejs:18 module is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Issues addressed include denial of service and privilege escalation vulnerabilities.
          • Red Hat Security Advisory 2024-1879-03 Thu, 18 Apr 2024 15:21:11 GMT
            Red Hat Security Advisory 2024-1879-03 - An update for gnutls is now available for Red Hat Enterprise Linux 9. Issues addressed include an information leakage vulnerability.
          • Red Hat Security Advisory 2024-1878-03 Thu, 18 Apr 2024 15:20:59 GMT
            Red Hat Security Advisory 2024-1878-03 - An updated version of Red Hat Update Infrastructure is now available. RHUI 4.8 fixes several security an operational bugs, adds some new features and upgrades the underlying Pulp to a newer version. Issues addressed include HTTP request smuggling, crlf injection, denial of service, and traversal vulnerabilities.
          • Red Hat Security Advisory 2024-1877-03 Thu, 18 Apr 2024 15:20:46 GMT
            Red Hat Security Advisory 2024-1877-03 - An update for kernel is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Issues addressed include denial of service, information leakage, null pointer, and use-after-free vulnerabilities.
          • Red Hat Security Advisory 2024-1876-03 Thu, 18 Apr 2024 15:20:37 GMT
            Red Hat Security Advisory 2024-1876-03 - An update for shim is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Issues addressed include buffer overflow, bypass, integer overflow, and out of bounds read vulnerabilities.
          • Red Hat Security Advisory 2024-1875-03 Thu, 18 Apr 2024 15:20:30 GMT
            Red Hat Security Advisory 2024-1875-03 - An update for less is now available for Red Hat Enterprise Linux 8.8 Extended Update Support.
          • Red Hat Security Advisory 2024-1874-03 Thu, 18 Apr 2024 15:20:14 GMT
            Red Hat Security Advisory 2024-1874-03 - An update for rhc-worker-script is now available for Red Hat Enterprise Linux 7.
          • Red Hat Security Advisory 2024-1873-03 Thu, 18 Apr 2024 15:20:04 GMT
            Red Hat Security Advisory 2024-1873-03 - An update for shim is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, E4S Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.4 Telecommunications Update Service. Issues addressed include buffer overflow, bypass, integer overflow, and out of bounds read vulnerabilities.
          • Red Hat Security Advisory 2024-1872-03 Thu, 18 Apr 2024 15:19:53 GMT
            Red Hat Security Advisory 2024-1872-03 - An update for mod_http2 is now available for Red Hat Enterprise Linux 9. Issues addressed include a denial of service vulnerability.
          • Red Hat Security Advisory 2024-1867-03 Thu, 18 Apr 2024 15:19:42 GMT
            Red Hat Security Advisory 2024-1867-03 - A bug update is now available for Red Hat build of Keycloak 22.0.10 images running on OpenShift Container Platform. This is an enhancement and security update with Moderate impact rating. Issues addressed include bypass, cross site scripting, denial of service, and traversal vulnerabilities.
          • Red Hat Security Advisory 2024-1866-03 Thu, 18 Apr 2024 15:19:34 GMT
            Red Hat Security Advisory 2024-1866-03 - A security update is now available for Red Hat Single Sign-On 7.6 from the Customer Portal. Issues addressed include bypass and denial of service vulnerabilities.
          • Red Hat Security Advisory 2024-1864-03 Thu, 18 Apr 2024 15:19:26 GMT
            Red Hat Security Advisory 2024-1864-03 - A new image is available for Red Hat Single Sign-On 7.6.8, running on OpenShift Container Platform 3.10 and 3.11, and 4.3. Issues addressed include bypass and denial of service vulnerabilities.
          • Red Hat Security Advisory 2024-1862-03 Thu, 18 Apr 2024 15:19:18 GMT
            Red Hat Security Advisory 2024-1862-03 - New Red Hat Single Sign-On 7.6.8 deliverables are now available for Red Hat Enterprise Linux 9. Issues addressed include bypass and denial of service vulnerabilities.
          • Red Hat Security Advisory 2024-1861-03 Thu, 18 Apr 2024 15:19:08 GMT
            Red Hat Security Advisory 2024-1861-03 - New Red Hat Single Sign-On 7.6.8 deliverables are now available for Red Hat Enterprise Linux 8. Issues addressed include bypass and denial of service vulnerabilities.
          • Red Hat Security Advisory 2024-1860-03 Thu, 18 Apr 2024 15:18:57 GMT
            Red Hat Security Advisory 2024-1860-03 - New Red Hat Single Sign-On 7.6.8 deliverables are now available for Red Hat Enterprise Linux 7. Issues addressed include bypass and denial of service vulnerabilities.
          • Red Hat Security Advisory 2024-1827-03 Thu, 18 Apr 2024 15:18:45 GMT
            Red Hat Security Advisory 2024-1827-03 - An update is now available for OpenJDK. Issues addressed include an integer overflow vulnerability.