The vulnerability of the distribution and transaction performance-enhancement software in the Apache Seata microservice architecture arises from incorrect processing of highly compressed input data. This allows attackers to cause service failures.

The vulnerability of distribution software and the inability to improve transaction performance in the Apache Seata microservices architecture is related to incorrect processing of highly compressed input data. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

PrivacyXray: Detecting Privacy Breaches in LLMs through Semantic Consistency and Probability Certainty

Large Language Models LLMs are widely used in sensitive domains, including healthcare, finance, and legal services, raising concerns about potential private information leaks during inference. Privacy extraction attacks, such as jailbreaking, expose vulnerabilities in LLMs by crafting inputs that...

openSUSE Security Advisory (SUSE-SU-2025:02066-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2025:02066-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

An ETSI GS QKD Compliant TLS Implementation

A modification of the TLS protocol is presented, using our implementation of the Quantum Key Distribution QKD standard ETSI GS QKD 014 v1.1.1. We rely on the Rustls library for this. The TLS protocol is modified while maintaining backward compatibility on the client and server side. We thus wish ...

Security update for distribution

This update for distribution fixes the following issues: The package is rebuild with more recent go go1.24, fixing respective security issues bsc1244471 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

SUSE-SU-2025:02066-1 Security update for distribution

This update for distribution fixes the following issues: The package is rebuild with more recent go go1.24, fixing respective security issues bsc1244471...

Vulnerability of the sun8i_ss_prng_generate() function in the drivers/crypto/allwinner/sun8i-ss/sun8i-ss-prng.c module – a driver for the Linux operating system’s cryptographic acceleration engine, allowing a hacker to cause a service failure.

Vulnerability of the sun8issprngGenerate function in the drivers/crypto/allwinner/sun8i-ss/sun8i-ss-prng.c module – The driver for the Linux operating system’s cryptographic acceleration engine is vulnerable due to the absence of restrictions and controls on resource distribution. Exploiting this...

OSI Stack Redesign for Quantum Networks: Requirements, Technologies, Challenges, and Future Directions

Quantum communication is poised to become a foundational element of next-generation networking, offering transformative capabilities in security, entanglement-based connectivity, and computational offloading. However, the classical OSI model-designed for deterministic and error-tolerant...

CWGAN-GP Augmented CAE for Jamming Detection in 5G-NR in Non-IID Datasets

In the ever-expanding domain of 5G-NR wireless cellular networks, over-the-air jamming attacks are prevalent as security attacks, compromising the quality of the received signal. We simulate a jamming environment by incorporating additive white Gaussian noise AWGN into the real-world In-phase and...

Enclosing Prototypical Variational Autoencoder for Explainable Out-of-Distribution Detection

Understanding the decision-making and trusting the reliability of Deep Machine Learning Models is crucial for adopting such methods to safety-relevant applications. We extend self-explainable Prototypical Variational models with autoencoder-based out-of-distribution OOD detection: A Variational...

A Dual-Layer Image Encryption Framework Using Chaotic AES with Dynamic S-Boxes and Steganographic QR Codes

This paper presents a robust image encryption and key distribution framework that integrates an enhanced AES-128 algorithm with chaos theory and advanced steganographic techniques for dual-layer security. The encryption engine features a dynamic ShiftRows operation controlled by a logistic map,...

Time-Bin Encoded Quantum Key Distribution over 120 Km with a Telecom Quantum Dot Source

Quantum key distribution QKD with deterministic single photon sources has been demonstrated over intercity fiber and free-space channels. The previous implementations relied mainly on polarization encoding schemes, which are susceptible to birefringence, polarization-mode dispersion and...

CVE-2025-2443

An issue has been discovered in GitLab EE that allows for cross-site-scripting attack and content security policy bypass in a user's browser under specific conditions, affecting all versions from 16.6 before 17.9.7, 17.10 before 17.10.5, and 17.11 before 17.11.1...

com.powsybl:powsybl-distribution-core (>=6.0.0 <=6.7.1), com.powsybl:powsybl-psse-converter (>=6.0.0 <=6.7.1) +2 more potentially affected by CVE-2025-48058 via com.powsybl:powsybl-psse-model (>=6.0.0-RC1 <=6.7.1)

com.powsybl:powsybl-psse-model MAVEN version =6.0.0-RC1, =6.0.0, =6.0.0, =2023.3.0, =1.1.0, =1.11.1 Source cves: CVE-2025-48058 Source advisory: SNYK:JAVA-COMPOWSYBL-10442145...

com.powsybl:powsybl-distribution-core (>=6.0.0 <=6.7.1) potentially affected by CVE-2025-48058 via com.powsybl:powsybl-iidm-tck (>=6.0.0-RC1 <=6.7.1)

com.powsybl:powsybl-iidm-tck MAVEN version =6.0.0-RC1, =6.0.0, =6.7.1 Source cves: CVE-2025-48058 Source advisory: SNYK:JAVA-COMPOWSYBL-10442147...

com.powsybl:powsybl-distribution-core (>=6.0.0 <=6.7.1) potentially affected by CVE-2025-48058 via com.powsybl:powsybl-tools-test (>=6.0.0-RC1 <=6.7.1)

com.powsybl:powsybl-tools-test MAVEN version =6.0.0-RC1, =6.0.0, =6.7.1 Source cves: CVE-2025-48058 Source advisory: SNYK:JAVA-COMPOWSYBL-10442146...

com.powsybl:powsybl-distribution-core (>=6.0.0 <=6.7.1), com.powsybl:powsybl-starter (>=2023.3.0 <=2025.0.0) +1 more potentially affected by CVE-2025-48058 via com.powsybl:powsybl-powerfactory-dgs (>=6.0.0-RC1 <=6.7.1)

com.powsybl:powsybl-powerfactory-dgs MAVEN version =6.0.0-RC1, =6.0.0, =2023.3.0, =1.1.0, =1.11.1 Source cves: CVE-2025-48058 Source advisory: SNYK:JAVA-COMPOWSYBL-10442144...

com.powsybl:powsybl-distribution-core (>=6.0.0 <=6.7.1) potentially affected by CVE-2025-48058 via com.powsybl:powsybl-powerfactory-db (>=6.0.0-RC1 <=6.7.1)

com.powsybl:powsybl-powerfactory-db MAVEN version =6.0.0-RC1, =6.0.0, =6.7.1 Source cves: CVE-2025-48058 Source advisory: SNYK:JAVA-COMPOWSYBL-10442143...

com.powsybl:powsybl-distribution-core (>=6.0.0 <=6.7.1) potentially affected by CVE-2025-47293 via com.powsybl:powsybl-cim-anonymiser (>=6.0.0-RC1 <=6.7.1)

com.powsybl:powsybl-cim-anonymiser MAVEN version =6.0.0-RC1, =6.0.0, =6.7.1 Source cves: CVE-2025-47293 Source advisory: SNYK:JAVA-COMPOWSYBL-10442134...