[SECURITY] Fedora 42 Update: nextcloud-32.0.6-1.fc42

NextCloud gives you universal access to your files through a web interface or WebDAV. It also provides a platform to easily view & sync your contacts, calendars and bookmarks across all your devices and enables basic editing rig ht on the web. NextCloud is extendable via a simple but powerful API...

Google Chrome on iO SInternals Post-Release Reuse Vulnerability

Google Chrome on iOS is a mobile browser designed by Google for Apple cell phone users, supporting cross-device synchronization, multi-tab browsing, voice search and other features to provide a smooth web browsing experience. Google Chrome on iOS suffers from an Internals reuse-after-release...

tls: Use __sk_dst_get() and dst_dev_rcu() in get_netdev_for_sock().

...

EUVD-2024-53835

Malicious code in bioql PyPI...

amd/amdkfd: sync all devices to wait all processes being evicted

...

CVE-2025-55177

Incomplete authorization of linked device synchronization messages in WhatsApp for iOS prior to v2.25.21.73, WhatsApp Business for iOS v2.25.21.78, and WhatsApp for Mac v2.25.21.78 could have allowed an unrelated user to trigger processing of content from an arbitrary URL on a target’s device. We...

WhatsApp Patches Zero-Click Exploit Targeting iOS and macOS Devices

WhatsApp has addressed a security vulnerability in its messaging apps for Apple iOS and macOS that it said may have been exploited in the wild in conjunction with a recently disclosed Apple flaw in targeted zero-day attacks. The vulnerability, CVE-2025-55177 CVSS score: 5.4, relates to a case of...

CVE-2025-55177

Incomplete authorization of linked device synchronization messages in WhatsApp for iOS prior to v2.25.21.73, WhatsApp Business for iOS v2.25.21.78, and WhatsApp for Mac v2.25.21.78 could have allowed an unrelated user to trigger processing of content from an arbitrary URL on a target’s device. We...

CVE-2025-55177

Incomplete authorization of linked device synchronization messages in WhatsApp for iOS prior to v2.25.21.73, WhatsApp Business for iOS v2.25.21.78, and WhatsApp for Mac v2.25.21.78 could have allowed an unrelated user to trigger processing of content from an arbitrary URL on a target’s device. We...

PT-2025-35227

Name of the Vulnerable Software and Affected Versions: WhatsApp versions prior to v2.25.21.73 for iOS, versions prior to v2.25.21.78 for WhatsApp Business for iOS, and versions prior to v2.25.21.78 for WhatsApp for Mac. Description: WhatsApp was found to have an incomplete authorization flaw in...

CVE-2024-57932 gve: guard XDP xmit NDO on existence of xdp queues

In the Linux kernel, the following vulnerability has been resolved: gve: guard XDP xmit NDO on existence of xdp queues In GVE, dedicated XDP queues only exist when an XDP program is installed and the interface is up. As such, the NDO XDP XMIT callback should return early if either of these...

CVE-2024-57932

CVE-2024-57932: In the Linux kernel exFAT filesystem, there is a fixed bug that could cause an infinite loop in exfat_readdir() when a cluster chain is corrupted. The related advisory describes the root cause as a loop condition in directory reading and notes that a patch was applied to prevent t...

CVE-2024-3786

Vulnerability in WBSAirback 21.02.04, which involves improper neutralisation of Server-Side Includes SSI, through Device Synchronizations /admin/DeviceReplication. Exploitation of this vulnerability could allow a remote user to execute arbitrary code...

CVE-2021-47085

Removed by vendor...

Apple Rolls Out iOS 8 with Bucket of Security Fixes

Apple has finally released iOS 8, the latest version of its operating system, for free to iPhone, iPad and iPod touch users. The company has assured that the latest iOS 8 update is a significant step away up from iOS 7. You can grab the new update through an over-the-air update accessible by goin...

Trusted Mobility Suite PDA access protection bypass

It's possible to synchronize with device regradless of warnings...