EUVD-2020-7479

Malware in sbrugna...

EUVD-2014-2493

Malware in sbrugna...

EUVD-2011-2291

Malware in sbrugna...

EUVD-2014-2507

Malware in sbrugna...

EUVD-2013-5720

Malware in sbrugna...

TencentOS Server 2: flatpak (TSSA-2024:0502)

The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0502 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities:...

Security Bulletin: Vulnerability in Flatpak affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge.

Summary Potential vulnerability in Flatpak has been identified that affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component. . The vulnerability have been addressed. Refer to details for additional information. Vulnerabili...

CVE-2024-42472 Flatpak may allow access to files outside sandbox for certain apps

Flatpak is a Linux application sandboxing and distribution framework. Prior to versions 1.14.0 and 1.15.10, a malicious or compromised Flatpak app using persistent directories could access and write files outside of what it would otherwise have access to, which is an attack on integrity and...

CVE-2024-42472

Flatpak is a Linux application sandboxing and distribution framework. Prior to versions 1.14.0 and 1.15.10, a malicious or compromised Flatpak app using persistent directories could access and write files outside of what it would otherwise have access to, which is an attack on integrity and...

CVE-2024-42472 Flatpak may allow access to files outside sandbox for certain apps

Flatpak is a Linux application sandboxing and distribution framework. Prior to versions 1.14.0 and 1.15.10, a malicious or compromised Flatpak app using persistent directories could access and write files outside of what it would otherwise have access to, which is an attack on integrity and...

Researchers Uncover Ways to Break the Encryption of 'MEGA' Cloud Storage Service

A new piece of research from academics at ETH Zurich has identified a number of critical security issues in the MEGA cloud storage service that could be leveraged to break the confidentiality and integrity of user data. In a paper titled "MEGA: Malleable Encryption Goes Awry," the researchers poi...

CVE-2019-1543

CVE-2019-1543 describes a nonce handling flaw in ChaCha20-Poly1305 within OpenSSL: accepting non-default nonce lengths up to 16 bytes with only the last 12 bytes considered, risking nonce reuse if an application sets a longer nonce and changes leading bytes. OpenSSL 1.1.1 and 1.1.0 are affected. ...

CVE-2016-0533

CVE-2016-0533 concerns an unspecified vulnerability in the Oracle CRM Technical Foundation Messaging Component of Oracle E-Business Suite (versions 11.5.10.2 and 12.1.3). Based on connected CNVD-2016-00662, the issue affects the BIS Common portion of the Oracle CRM Technical Foundation and could ...