[SECURITY] Fedora 44 Update: qt6-qtlocation-6.10.3-1.fc44

The Qt Location API helps you create viable mapping solutions using the data available from some of the popular location services...

[SECURITY] Fedora 42 Update: qt6-qtlocation-6.9.3-1.fc42

The Qt Location API helps you create viable mapping solutions using the data available from some of the popular location services...

Huawei HarmonyOS Cross-Border Access Vulnerability

Huawei HarmonyOS is Huawei's self-developed distributed operating system for all scenarios. Huawei HarmonyOS suffers from an out-of-bounds access vulnerability, which is due to insufficient data validation in the location services module, and can be exploited by an attacker to affect availability...

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is Huawei's self-developed distributed operating system for all scenarios. Huawei HarmonyOS suffers from an out-of-bounds access vulnerability, which is due to insufficient data validation in the location services module, and can be exploited by an attacker to affect availability...

[SECURITY] Fedora 42 Update: qt6-qtlocation-6.9.1-1.fc42

The Qt Location API helps you create viable mapping solutions using the data available from some of the popular location services...

CVE-2022-20348

In updateState of LocationServicesWifiScanningPreferenceController.java, there is a possible admin restriction bypass due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

Guardian Positioning System (GPS) for Location Based Services

Location-based service LBS applications proliferate and support transportation, entertainment, and more. Modern mobile platforms, with smartphones being a prominent example, rely on terrestrial and satellite infrastructures e.g., global navigation satellite system GNSS and crowdsourced Wi-Fi,...

Microsoft Reveals macOS Vulnerability that Bypasses Privacy Controls in Safari Browser

Microsoft has disclosed details about a now-patched security flaw in Apple's Transparency, Consent, and Control TCC framework in macOS that has likely come under exploitation to get around a user's privacy preferences and access data. The shortcoming, codenamed HM Surf by the tech giant, is track...

Fedora: Security Advisory for qt6-qtlocation (FEDORA-2024-bfb8617ba3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

How to turn off location tracking on iOS and iPadOS

On iOS and iPadOS, location services are typically turned on when you first set up your device. However, there may be reasons why you don’t want your device to be located, perhaps because you don’t want to be found but need to keep the device with you. There are a few options to hide your locatio...

How to lock out your ex-partner from your smart home

Stalkers can use all kinds of apps, gadgets, devices, and phones to spy on their targets, which are often their ex-partners. Unfortunately, while they no doubt have many positive uses, smart home devices give stalkers an array of tools to keep an eye on their targets. If you are the partner that...

AirTags stalking lawsuit alleges Apple’s negligence in protecting victims

Each year, an estimated 13.5 million people in the US are victim to stalking. This is a worrying fact stated in the introduction of a lawsuit against Apple brought by stalking victims who charge that AirTags empowered their abusers. AirTags are marketed as trackers that allow you to easily find...

CVE-2022-20348

In updateState of LocationServicesWifiScanningPreferenceController.java, there is a possible admin restriction bypass due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

CVE-2022-20348

In updateState of LocationServicesWifiScanningPreferenceController.java, there is a possible admin restriction bypass due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

PT-2022-14573 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions Android-10 through Android-12L Description: In the updateState method of LocationServicesWifiScanningPreferenceController.java, there is a possible admin restriction bypass due to a missing permission check. This could lead t...

Esri ArcGIS Server Buffer Overflow Vulnerability

Esri Arcgis Server is the United States Esri company's a Web-oriented can be used to provide geographic location services, enterprise-class software platform. A buffer overflow vulnerability exists in Esri ArcGIS Server 10.8.1 and earlier, which can be exploited by an attacker to achieve arbitrar...

NSA Warns Smartphones Leak Location Data

Mobile devices expose location data in more ways than most people know, and turning off services such as Find My Phone, Wi-Fi and Bluetooth can help mitigate tracking, but are no silver bullet that prevents a third party from tracking users. That’s advice shared by U.S. top spy division, the...

Apple Security Updates Tackle iOS Device Tracking, RCE Flaws

Apple’s latest security fixes, released Tuesday, tackle a wide range of bugs, including several patches for high-risk flaws that could allow for remote code execution RCE. Of particular interest to privacy-minded iPhone 11 users is an iOS 13.3.1 update that allows users to turn off U1...

The iPhone 11 Pro’s Location Data Puzzler

One of the more curious behaviors of Apple's new iPhone 11 Pro is that it intermittently seeks the user's location information even when all applications and system services on the phone are individually set to never request this data. Apple says this is by design, but that response seems at odds...

Mapbox: Mapbox Android SDK uses Broadcast Receiver instead of Local Broadcast Manager

Security researcher @mishre reported that the Mapbox Android SDK was using the Broadcast Receiver for location services requests and recommended that the switch be made to use the Local Broadcast Manager. The Local Broadcast Manager offers more granular control of broadcast permissions, as well a...