$0.99 Kindle Books Security Vulnerabilities

Advisory ROSA-SA-2021-1884

Software: libpng 1.5.13 OS: Cobalt 7.9 CVE-ID: CVE-2013-7353 CVE-Crit: HIGH CVE-DESC: Integer overflow in png_set_unknown_chunks function in libpng / pngset.c in libpng before 1.5.14beta08 allows context-sensitive attackers to cause a denial of service (segmentation error and crash) via a crafted.....

Advisory ROSA-SA-2021-1864

Software: libcaca 0.99 OS: Cobalt 7.9 CVE-ID: CVE-2018-20544 CVE-Crit: MEDIUM CVE-DESC: floating-point exception in caca / dither.c (function caca_dither_bitmap) in libcaca 0.99.beta19. CVE-STATUS: default CVE-REV: default CVE-ID: CVE-2018-20545 CVE-Crit: HIGH CVE-DESC: There is an invalid WRITE...

Bots can frontrun market maker orders and cancel orders.

Handle tensors Vulnerability details Impact Market makers will not be able to have competitive spreads or cancel their orders to update their strategies. It will be difficult for them to provide liquidity on the platform, which will hurt the platform overall. Proof of Concept In traditional...

openSUSE: Security Advisory for MozillaThunderbird (openSUSE-SU-2021:0910-1)

The remote host is missing an update for...

Security update for MozillaThunderbird (important)

An update that fixes two vulnerabilities is now available. Description: This update for MozillaThunderbird fixes the following issues: Mozilla Thunderbird 78.11 (bsc#1186696) Security issues fixed: CVE-2021-29964: Out of bounds-read when parsing a WM_COPYDATA message CVE-2021-29967: Memory safety.....

Pandemic-Bored Attackers Pummeled Gaming Industry

Attacks on the gaming industry skyrocketed during the year of the pandemic, with attacks on web applications shooting up 340 percent in 2020. According to Akamai Technologies’ latest State of the Internet and Security report, Gaming in a Pandemic (PDF), cyberattack traffic targeting the video game....

Online Library Management System 1.0 - Arbitrary File Upload Remote Code Execution Exploit

...

Online Library Management System 1.0 Shell Upload

...

Online Library Management System 1.0 - Arbitrary File Upload Remote Code Execution (Unauthenticated)

...

BCS BatchLine Book Importer < 1.5.8 - Unauthenticated Product Import

The plugin did not correctly check for permission in its wc/v3/bcsbertlinebookimport REST route, allowing unauthenticated to import arbitrary products or update existing...

Unchecked ERC20 transfers can cause lock up

Handle axic Vulnerability details Impact Some major tokens went live before ERC20 was finalised, resulting in a discrepancy whether the transfer functions a) should return a boolean or b) revert/fail on error. The current best practice is that they should revert, but return “true” on success....

How a Resident Evil image leaked in a ransomware attack ended up in the middle of $12m copyright claim

Back in November, gaming giant Capcom suffered a ransomware attack. In its press notification, it mentioned the various types of data potentially grabbed by their attackers. Things took an ominous turn when they refused to pay the ransom, and the group behind the attack said that was the wrong...

SUSE: Security Advisory (SUSE-SU-2019:0770-1)

The remote host is missing an update for...

Vulnerabilities in Weapons Systems

"If you think any of these systems are going to work as expected in wartime, you're fooling yourself." That was Bruce's response at a conference hosted by US Transportation Command in 2017, after learning that their computerized logistical systems were mostly unclassified and on the Internet. That....

(RHSA-2021:2184) Moderate: perl security update

Perl is a high-level programming language that is commonly used for system administration utilities and web programming. Security Fix(es): perl: corruption of intermediate language state of compiled regular expression due to recursive S_study_chunk() calls leads to DoS (CVE-2020-12723) For more...

RHEL 8 : perl (RHSA-2021:2184)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:2184 advisory. perl: corruption of intermediate language state of compiled regular expression due to recursive S_study_chunk() calls leads to DoS...

CVE-2021-30499

A flaw was found in libcaca. A buffer overflow of export.c in function export_troff might lead to memory corruption and other potential...

CVE-2021-30499

A flaw was found in libcaca. A buffer overflow of export.c in function export_troff might lead to memory corruption and other potential consequences. Bugs https://github.com/cacalabs/libcaca/issues/54...

CVE-2021-30498

A flaw was found in libcaca. A heap buffer overflow in export.c in function export_tga might lead to memory corruption and other potential...

CVE-2021-30498

A flaw was found in libcaca. A heap buffer overflow in export.c in function export_tga might lead to memory corruption and other potential...

CVE-2021-30498

A flaw was found in libcaca. A heap buffer overflow in export.c in function export_tga might lead to memory corruption and other potential...

Heap overflow

A flaw was found in libcaca. A heap buffer overflow in export.c in function export_tga might lead to memory corruption and other potential...

Oracle Linux 8 : perl (ELSA-2021-1678)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-1678 advisory. Perl before 5.30.3 on 32-bit platforms allows a heap-based buffer overflow because nested regular expression quantifiers have an integer overflow....

CVE-2021-30498

A flaw was found in libcaca. A heap buffer overflow in export.c in function export_tga might lead to memory corruption and other potential consequences. Bugs https://github.com/cacalabs/libcaca/issues/53...

perl security and bug fix update

[4:5.26.3-419] - Fix CVE-2020-10543 (bug #1839273) - Fix CVE-2020-10878 (bug #1839276) - Fix a file mode of a perl-example.stp example (bug #1913693) [4:5.26.3-418] - Fix CVE-2020-12723 (bug...

Nette Framework RCE Vulnerability (CVE-2020-15227)

The Nette Framework is prone to a remote code execution (RCE) ...

Nette Framework - Remote Code Execution

Nette Framework versions before 2.0.19, 2.1.13, 2.2.10, 2.3.14, 2.4.16, and 3.0.6 are vulnerable to a code injection attack via specially formed parameters being passed to a URL. Nette is a PHP/Composer MVC...

CentOS 8 : perl (CESA-2021:1678)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2021:1678 advisory. perl: heap-based buffer overflow in regular expression compiler leads to DoS (CVE-2020-10543) perl: corruption of intermediate language state of...

RHEL 8 : perl (RHSA-2021:1678)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:1678 advisory. Perl is a high-level programming language that is commonly used for system administration utilities and web programming. Security...

(RHSA-2021:1678) Moderate: perl security and bug fix update

Perl is a high-level programming language that is commonly used for system administration utilities and web programming. Security Fix(es): perl: heap-based buffer overflow in regular expression compiler leads to DoS (CVE-2020-10543) perl: corruption of intermediate language state of compiled...

perl security and bug fix update

An update is available for perl. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Perl is a high-level programming language that is commonly used for system...

Moderate: perl security and bug fix update

Perl is a high-level programming language that is commonly used for system administration utilities and web programming. Security Fix(es): perl: heap-based buffer overflow in regular expression compiler leads to DoS (CVE-2020-10543) perl: corruption of intermediate language state of compiled...

EFB Tampering 3. Take-off pt1

Take-off Performance Part 1: Introduction, Thrust & Speeds TL;DR Take-off performance applications perform calculations to provide critical take-off performance data to pilots (e.g. thrust/trim/flap setting for take-off) Modifying any one of these could have severe consequences. For example, an...

Book Sale: Beyond Fear

I have 80 copies of my 2000 book Beyond Fear available at the very cheap price of $5 plus shipping. Note that there is a 20% chance that your book will have a "BT Counterpane" sticker on the front cover. Order your signed copy...

Fake Chrome App Anchors Rapidly Worming 'Smish' Cyberattack

A new Android malware that impersonates the Google Chrome app has spread to hundreds of thousands of people in the last few weeks, according to researchers. The fake app is being used as part of a sophisticated hybrid cyberattack campaign that also uses mobile phishing to steal credentials. Join...

Google to start automatically enrolling users in two-step verification “soon”

If you use a Google account, it may soon be mandatory to sign up to Google's two-step verification program. As recently as 2017, a tiny amount of GMail users made use of its two-step options. Maybe the uptake is still slow, and Google has decided enough is enough. With so much valuable data...

CVE-2021-31873

An issue was discovered in klibc before 2.0.9. Additions in the malloc() function may result in an integer overflow and a subsequent heap buffer...

Second Click Here to Kill Everybody Sale

For a limited time, I am selling signed copies of Click Here to Kill Everybody in hardcover for just $6, plus shipping. I have 600 copies of the book available. When they're gone, the sale is over and the price will revert to normal. Order here. Please be patient on delivery. It's a lot of work to....

Apple AirDrop Bug Could Leak Your Personal Info to Anyone Nearby

New research has uncovered privacy weaknesses in Apple's wireless file-sharing protocol that could result in the exposure of a user's contact information such as email addresses and phone numbers. "As an attacker, it is possible to learn the phone numbers and email addresses of AirDrop users –...

Ubuntu: Security Advisory (USN-4921-1)

The remote host is missing an update for...

Interview with a bug bounty hunter: Youssef Sammouda

Behind the scenes there are many people working in cyber-security that make the internet a safer place. Youssef Sammouda is one of these people. He has submitted at least a hundred reports to Facebook which have been resolved, making Facebook a safer platform along the way. Generally speaking,...

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : libcaca vulnerability (USN-4921-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 20.10 host has packages installed that are affected by a vulnerability as referenced in the USN-4921-1 advisory. A flaw was found in libcaca v0.99.beta19. A buffer overflow issue in caca_resize function in libcaca/caca/canvas.c may lead to...

libcaca vulnerability

Releases Ubuntu 20.10 Ubuntu 20.04 LTS Ubuntu 18.04 ESM Ubuntu 16.04 ESM Ubuntu 14.04 ESM Packages libcaca - None Details It was discovered that libcaca incorrectly handled certain images. An attacker could possibly use this issue to execute arbitrary...

SUSE: Security Advisory (SUSE-SU-2019:2745-2)

The remote host is missing an update for...

SUSE: Security Advisory (SUSE-SU-2019:2745-1)

The remote host is missing an update for...

Adobe Patches Slew of Critical Security Bugs in Bridge, Photoshop

Adobe has released security patches tackling four critical vulnerabilities in Adobe Bridge, along with other critical and important-rated updates for bugs in Adobe Digital Editions, Adobe Photoshop and RoboHelp. In all, Adobe fixed 10 security holes in its products during its scheduled April...

New Book! The Best of TaoSecurity Blog, Volume 4

I've completed the TaoSecurity Blog book series. The new book is The Best of TaoSecurity Blog, Volume 4: Beyond the Blog with Articles, Testimony, and Scholarship. It's available now for Kindle, and I'm working on the print edition. I'm running a 50% off promo on Volumes 1-3 on Kindle through...

Denial Of Service (DoS)

clamav is vulnerable to denial of service. An unauthenticated remote attacker is able to cause a denial of service condition in the application via a malicious Excel file due to improper error handling that may result in an infinite...

Denial Of Service (DoS)

Clam AntiVirus (ClamAV) Software is vulnera ble to denial of service. The vulnerability is due to improper variable initialization that may result in an NULL pointer read. An attacker could exploit this vulnerability by sending a crafted email to an affected device, causing the ClamAV scanning...

Denial Of Service (DoS)

clamav is vulnerable to denial of service. An unauthenticated remote attacker is able to cause a denial of service condition in the application via a malicious PDF file due to improper error handling that may result in an infinite...