15 matches found
AZL-79457 CVE-2026-2297 affecting package python3 3.12.9-9
The import hook in CPython that handles legacy .pyc files SourcelessFileLoader is incorrectly handled in FileLoader a base class and so does not use io.opencode to read the .pyc files. sys.audit handlers for this audit event therefore do not fire...
CVE-2023-53781 smc: Fix use-after-free in tcp_write_timer_handler().
In the Linux kernel, the following vulnerability has been resolved: smc: Fix use-after-free in tcpwritetimerhandler. With Eric's ref tracker, syzbot finally found a repro for use-after-free in tcpwritetimerhandler by kernel TCP sockets. 0 If SMC creates a kernel socket in smccreate, the kernel...
Malicious code in test-mlw2-fired-diver (npm)
The package test-mlw2-fired-diver was found to contain malicious code...
MAL-2025-8641 Malicious code in @malware-test-fired-silva-nepit-tilts/test-mlw3-fired-silva-nepit-tilts (npm)
The package @malware-test-fired-silva-nepit-tilts/test-mlw3-fired-silva-nepit-tilts was found to contain malicious code...
MAL-2025-35341 Malicious code in test-mlw2-fired-diver (npm)
The package test-mlw2-fired-diver was found to contain malicious code...
DOGE’s USDS Purge Included the Guy Who Keeps Veterans’ Data Safe Online
The cybersecurity lead for VA.gov was fired last week. He tells WIRED that the Veterans Affairs digital hub will be more vulnerable without someone in his role...
kernel: net/sched: sch_taprio: fix possible use-after-free
In the Linux kernel, the following vulnerability has been resolved: net/sched: schtaprio: fix possible use-after-free syzbot reported a nasty crash 1 in nettxaction which made little sense until we got a repro. This repro installs a taprio qdisc, but providing an invalid TCARATE attribute...
Some Meta Employees and Security Guards Hacked User Accounts
By Deeba Ahmed The fired individuals included on-contract security guards who worked for Meta and could access an internal tool for employees. This is a post from HackRead.com Read the original post: Some Meta Employees and Security Guards Hacked User Accounts...
HackerOne Fires Employee for Stealing Bug Reports, Collecting Bug Bounties
By Deeba Ahmed Bug bounty and vulnerability coordination platform HackerOne has fired an employee for using their position to access customers… This is a post from HackRead.com Read the original post: HackerOne Fires Employee for Stealing Bug Reports, Collecting Bug Bounties...
Fired Healthcare Exec Stalls Critical PPE Shipment for Months
The FBI has announced that Christopher Dobbins pleaded guilty and was sentenced to a year in prison for breaching and temporarily disabling the Stradis Healthcare shipping system using a secret account, after being fired weeks earlier. Last March, as doctors reported having to ration and reuse...
A DHS Official Says He Was Punished for Not Pushing Trump's Agenda
Brian Murphy says he was pressured to alter reports on Russia and white supremacy—and that he was fired for refusing to budge...
Fired Up Acting App Has Logic Design Flaws
Fired Up Acting app is an artist booking application launched by Beijing Fired Up Technology Co. There is a logical design vulnerability in the FIRE Performing Arts app. Attackers can use the vulnerability to perform arbitrary user registration, arbitrary password reset operations...
Video Presentation on Stuxnet by Hungry Beast
Video Presentation on Stuxnet by Hungry Beast In June last year, a computer virus called Stuxnet was discovered lurking in the data banks of power plants, traffic control systems and factories around the world. Pandora's box has been opened; on the new battlefield the aggressors are anonymous, th...
Former Pennsylvania CSO Maley Speaks
Robert Maley was fired from his job as the chief information security officer for the state of Pennsylvania earlier this month after he spoke, without proper authorization, about security incidents involving the state during a panel discussion at the RSA trade show. In this interview, Maley gives...
State CSO Fired for Talking Openly at RSA
Pennsylvania’s chief information security officer, Robert Maley, has been fired, apparently for talking publicly at the RSA security conference last week about a recent incident involving the Commonwealth’s online driving exam scheduling system. Read the full article. Computerworld...