DEBIAN-CVE-2024-43904

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add null checks for 'stream' and 'plane' before dereferencing This commit adds null checks for the 'stream' and 'plane' variables in the dcn30applyidlepoweroptimizations function. These variables were previously...

CVE-2022-48939 bpf: Add schedule points in batch ops

In the Linux kernel, the following vulnerability has been resolved: bpf: Add schedule points in batch ops syzbot reported various soft lockups caused by bpf batch operations. INFO: task kworker/1:1:27 blocked for more than 140 seconds. INFO: task hung in rcubarrier Nothing prevents batch ops to...

CVE-2022-48939 bpf: Add schedule points in batch ops

In the Linux kernel, the following vulnerability has been resolved: bpf: Add schedule points in batch ops syzbot reported various soft lockups caused by bpf batch operations. INFO: task kworker/1:1:27 blocked for more than 140 seconds. INFO: task hung in rcubarrier Nothing prevents batch ops to...

CVE-2024-43824

In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: pci-epf-test: Make use of cached 'epcfeatures' in pciepftestcoreinit Instead of getting the epcfeatures from pciepcgetfeatures API, use the cached pciepftest::epcfeatures value to avoid the NULL check. Since the NU...

CVE-2024-43824 PCI: endpoint: pci-epf-test: Make use of cached 'epc_features' in pci_epf_test_core_init()

In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: pci-epf-test: Make use of cached 'epcfeatures' in pciepftestcoreinit Instead of getting the epcfeatures from pciepcgetfeatures API, use the cached pciepftest::epcfeatures value to avoid the NULL check. Since the NU...

CVE-2024-43824 PCI: endpoint: pci-epf-test: Make use of cached 'epc_features' in pci_epf_test_core_init()

In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: pci-epf-test: Make use of cached 'epcfeatures' in pciepftestcoreinit Instead of getting the epcfeatures from pciepcgetfeatures API, use the cached pciepftest::epcfeatures value to avoid the NULL check. Since the NU...

D-Link G416 cfgsave Buffer Overflow Vulnerability

D-Link G416 is the AX1500 4G+ Smart Router launched by AUO in June 2025 , which supports Wi-Fi 6, AI Smart Optimization and 4G LTE Cat 6 network with up to 300Mbps internet speed. The D-Link G416 suffers from a buffer overflow vulnerability, which stems from a cfgsave stack-based buffer overflow...

How to enable Teams Optimization with Microsoft's new VDI Optimization engine - SlimCore

Microsoft has released a new VDI solution for Teams. This is a how-to guide detailing the steps necessary to enable the SlimCore Optimization for Teams. We hope this guide will ease your effort to enable the new solution in your environment. If you have further feedback that you want to share wit...

Subscription Health Dashboard Update: Optimize Deployments and Identify Issues

For VM teams navigating the complex realm of cybersecurity tools, ensuring deployment health is paramount. Swift methods are required to pinpoint issues amidst complexity. Challenges such as duplicate entries, ghost hosts, and decommissioned devices can obstruct these views, hindering data...

CVE-2024-6553

The WP Meteor Website Speed Optimization Addon plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.4.3.This is due to the plugin utilizing wpdesk and leaving test files with displayerrors on. This makes it possible for unauthenticated attackers to...

WordPress WP Meteor Website Speed Optimization Addon plugin <= 3.4.3 - Unauthenticated Full Path Disclosure vulnerability

Unauthenticated Full Path Disclosure vulnerability discovered by stealthcopter in WordPress Plugin WP Meteor Page Speed Optimization Topping versions = 3.4.3...

Citrix Virtual Apps and Desktop - Graphics, HDX Optimization and Audio

Introduction This article is a summary of the support articles and documentation related to Graphics and Display issues, HDX Optimization Teams and Browser Content Redirection and Audio. Overview of the Issue HDX is a set of remoting technologies providing the user with the best possible virtual...

How to Improve the Log on Performance in StoreFront

This article details configuration changes that might improve the log on and application enumeration performance in StoreFront...

Microsoft Teams VDI 2.0 Fatal Exception Information

Overview Microsoft has recently started to roll out their New VDI solution for Teams. As soon as the rollout started, some of our customers started experiencing a fatal exception resulting in a blue screen. This fatal exception happens only on 2203 LTSR CU2 and below or 2303 CR and below. This...

OESA-2024-1786 firefox security update

Mozilla Firefox is a standalone web browser, designed for standards compliance and performance. Its functionality can be enhanced via a plethora of extensions. Security Fixes: There was no limit to the number of HTTP/2 CONTINUATION frames that would be processed. A server could abuse this to crea...

MongoDB Server Security Vulnerability

MongoDB Server is a set of open source NoSQL databases from the American company MongoDB. The database provides collection-oriented storage, dynamic querying, data replication, and automatic failover. A security vulnerability exists in MongoDB Server that stems from a lack of authorization checki...

WordPress SEO SIMPLE PACK plugin <= 3.2.1 - Information Exposure vulnerability

Information Exposure vulnerability discovered by Krzysztof Zając in WordPress Plugin SEO SIMPLE PACK versions = 3.2.1...

Companies Optimize Cloud Costs and Deliver Superior Experiences on Akamai

Learn how Akamai’s customers optimize their cloud computing costs and deliver engaging customer experiences with our open and affordable cloud infrastructure...

CVE-2021-4440

In the Linux kernel, the following vulnerability has been resolved: x86/xen: Drop USERGSSYSRET64 paravirt call commit afd30525a659ac0ae0904f0cb4a2ca75522c3123 upstream. USERGSSYSRET64 is used to return from a syscall via SYSRET, but a Xen PV guest will nevertheless use the IRET hypercall, as ther...

CVE-2021-4440

In the Linux kernel, the following vulnerability has been resolved: x86/xen: Drop USERGSSYSRET64 paravirt call commit afd30525a659ac0ae0904f0cb4a2ca75522c3123 upstream. USERGSSYSRET64 is used to return from a syscall via SYSRET, but a Xen PV guest will nevertheless use the IRET hypercall, as ther...