PrivATE: Differentially Private Confidence Intervals for Average Treatment Effects

The average treatment effect ATE is widely used to evaluate the effectiveness of drugs and other medical interventions. In safety-critical applications like medicine, reliable inferences about the ATE typically require valid uncertainty quantification, such as through confidence intervals CIs...

Cryptography from Lossy Reductions: Towards OWFs from ETH, and Beyond

One-way functions OWFs form the foundation of modern cryptography, yet their unconditional existence remains a major open question. In this work, we study this question by exploring its relation to lossy reductions, i.e., reductions$R$ for which it holds that $IX;RX \ll n$ for all distributions$X...

CVE-2023-1770

A vulnerability has been found in SourceCodester Grade Point Average GPA Calculator 1.0 and classified as critical. Affected by this vulnerability is the function getscale of the file Master.php. The manipulation of the argument perc leads to sql injection. The attack can be launched remotely. Th...

CVE-2023-1769

A vulnerability, which was classified as problematic, was found in SourceCodester Grade Point Average GPA Calculator 1.0. Affected is an unknown function of the file index.php. The manipulation of the argument page with the input php://filter/read=convert.base64-encode/resource=gradetable leads t...

CVE-2021-29550

TensorFlow is an end-to-end open source platform for machine learning. An attacker can cause a runtime division by zero error and denial of service in tf.rawops.FractionalAvgPool. This is because the...

A Contrastive Federated Semi-Supervised Learning Intrusion Detection Framework for Internet of Robotic Things

In intelligent industry, autonomous driving and other environments, the Internet of Things IoT highly integrated with robotic to form the Internet of Robotic Things IoRT. However, network intrusion to IoRT can lead to data leakage, service interruption in IoRT and even physical damage by...

The Planted Orthogonal Vectors Problem

In the $k$-Orthogonal Vectors $k$-OV problem we are given $k$ sets, each containing $n$ binary vectors of dimension $d=n^o1$, and our goal is to pick one vector from each set so that at each coordinate at least one vector has a zero. It is a central problem in fine-grained complexity, conjectured...

SUSE CVE-2022-49110

In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: revisit gc autotuning as of commit 4608fdfc07e1 "netfilter: conntrack: collect all entries in one cycle" conntrack gc was changed to run every 2 minutes. On systems where conntrack hash table is set to large...

Ransomware Extortion Drops to $813.5M in 2024, Down from $1.25B in 2023

Ransomware attacks netted cybercrime groups a total of $813.5 million in 2024, a decline from $1.25 billion in 2023. The total amount extorted during the first half of 2024 stood at $459.8 million, blockchain intelligence firm Chainalysis said, adding payment activity slumped after July 2024 by...

The 2024 Ransomware Landscape: Looking back on another painful year

The ransomware landscape in 2024 continued to evolve at a rapid pace, outgrowing many of the trends we saw in 2023. Threat actors remained relentless and innovative, targeting organizations of all sizes and sectors. In this post, we’ll examine the latest data points, discuss notable groups, and...

Ransomware on ESXi: The Mechanization of Virtualized Attacks

In 2024, ransomware attacks targeting VMware ESXi servers reached alarming levels, with the average ransom demand skyrocketing to $5 million. With approximately 8,000 ESXi hosts exposed directly to the internet according to Shodan, the operational and business impact of these attacks is profound...

CLSA-2024-1732196985 Fix CVE(s): CVE-2020-27765

SECURITY UPDATE: Division by zero vulnerability in segment.c - debian/patches/CVE-2020-27765.patch: Fix averagetau calculation by multiplying instead of dividing by numbernodes in OptimalTau function to prevent incorrect segmentation output - CVE-2020-27765...

USN-7033-1 intel-microcode vulnerabilities

It was discovered that some IntelR Processors did not properly restrict access to the Running Average Power Limit RAPL interface. This may allow a local privileged attacker to obtain sensitive information. CVE-2024-23984 It was discovered that some IntelR Processors did not properly implement...

Intel Processors 安全漏洞

Intel Processors are American Intel Corporation's provide for interpreting computer instructions and processing data in computer software. A security vulnerability exists in Intel Processors that stems from a potential security flaw in the Running Average Power Limit RAPL interface that could lea...

PT-2024-38197 · Avg · Avg Antivirus Free

Name of the Vulnerable Software and Affected Versions: AVG AntiVirus Free affected versions not specified Description: This issue allows local attackers to escalate privileges on affected installations of AVG AntiVirus Free. An attacker must first obtain the ability to execute low-privileged code...

DEBIAN-CVE-2024-40955

In the Linux kernel, the following vulnerability has been resolved: ext4: fix slab-out-of-bounds in ext4mbfindgoodgroupavgfraglists We can trigger a slab-out-of-bounds with the following commands: mkfs.ext4 -F /dev/$disk 10G mount /dev/$disk /tmp/test echo 2147483647...

CVE-2024-40955

In the Linux kernel, the following vulnerability has been resolved: ext4: fix slab-out-of-bounds in ext4mbfindgoodgroupavgfraglists We can trigger a slab-out-of-bounds with the following commands: mkfs.ext4 -F /dev/$disk 10G mount /dev/$disk /tmp/test echo 2147483647...

TensorFlow has double free in Fractional(Max/Avg)Pool

...

Malicious code in moving-average (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

MAL-2024-6990 Malicious code in moving-average (RubyGems)

--- -= Per source details. Do not edit below this line.=-...