MGASA-2026-0155 Updated x11-server, x11-server-xwayland & tigervnc packages fix security vulnerabilities

XKB Integer Underflow in XkbSetCompatMap. CVE-2026-33999 XKB Out-of-bounds Read in CheckSetGeom. CVE-2026-34000 XSYNC Use-after-free in miSyncTriggerFence. CVE-2026-34001 XKB Out-of-bounds read in CheckModifierMap. CVE-2026-34002 XKB Buffer overflow in CheckKeyTypes. CVE-2026-34003...

CVE-2026-41229

Froxlor is open source server administration software. Prior to version 2.3.6, PhpHelper::parseArrayToString writes string values into single-quoted PHP string literals without escaping single quotes. When an admin with changeserversettings permission adds or updates a MySQL server via the API, t...

CVE-2026-41229 Froxlor has a PHP Code Injection via Unescaped Single Quotes in userdata.inc.php Generation (MysqlServer API)

Froxlor is open source server administration software. Prior to version 2.3.6, PhpHelper::parseArrayToString writes string values into single-quoted PHP string literals without escaping single quotes. When an admin with changeserversettings permission adds or updates a MySQL server via the API, t...

CVE-2026-41229 Froxlor has a PHP Code Injection via Unescaped Single Quotes in userdata.inc.php Generation (MysqlServer API)

Froxlor is open source server administration software. Prior to version 2.3.6, PhpHelper::parseArrayToString writes string values into single-quoted PHP string literals without escaping single quotes. When an admin with changeserversettings permission adds or updates a MySQL server via the API, t...

April 14, 2026—KB5082200 (OS Builds 19045.7184 and 19044.7184)

April 14, 2026—KB5082200 OS Builds 19045.7184 and 19044.7184 Windows Secure Boot certificate expiration Important: Secure Boot certificates used by most Windows devices are set to expire starting in June 2026. This might affect the ability of certain personal and business devices to boot securely...

Exploit for Deserialization of Untrusted Data in Microsoft

WSUS Security Research Toolkit !Pythonhttps://img.shields...

December 9, 2025—KB5071542 (OS Build 25398.2025)

December 9, 2025—KB5071542 OS Build 25398.2025 This cumulative update for Windows Server, version 23H2 KB5071542, includes the latest security fixes and improvements, along with non-security updates from last month’s optional preview release. To learn more about differences between security...

Vulnerability fixed in CFMOTO Ride vehicle data management systems

CFMOTO has fixed a vulnerability in the backend of systems that manage vehicle data. The vulnerability is in the way the vehicleId parameter is handled, leading to an Insecure Direct Object Reference IDOR. This allows attackers to gain unauthorized access to sensitive information from other users...

EUVD-2020-24963

Malware in sbrugna...

Azure File Sync Agent v18.3 Release - August 2025 (Security-only update)

Azure File Sync Agent v18.3 Release - August 2025 Security-only update This article describes the improvements and issues that are fixed in the Azure File Sync Agent v18.3 release that is dated August 2025. Additionally, this article contains installation instructions for this release. Improvemen...

CVE-2025-26600

A use-after-free flaw was found in X.Org and Xwayland. When a device is removed while still frozen, the events queued for that device remain while the device is freed. Replaying the events will cause a use-after-free...

February 11, 2025—KB5052016 (Monthly Rollup)

February 11, 2025—KB5052016 Monthly Rollup End of support information Windows Server 2008 R2 Premium Assurance ends on January 13, 2026.Windows Server 2008 R2 Extended Security Updates ESU ended on January 10, 2023. Additionally, Extended Security Updates on Azure only support ended on January 9,...

January 14, 2025—KB5050006 (Security-only update)

January 14, 2025—KB5050006 Security-only update End of support information Windows Server 2008 R2 Premium Assurance ends on January 13, 2026.Windows Server 2008 R2 Extended Security Updates ESU ended on January 10, 2023. Additionally, Extended Security Updates on Azure only support ended on Janua...

Microsoft Security Update Validation Report September 2024

Microsoft’s September 2024 security updates have passed Citrix testing the updates are listed below. The testing is not all-inclusive; all tests are executed against English only environments and issues may still be found upon implementation. Follow best practices for testing and installing...

MGASA-2024-0195 Updated mariadb packages fix security vulnerability and bugs

Additional bugs were fixed in the following components: InnoDB Spider Aria Backup JSON Optimization & Tuning Plugins Galera Scripts & Clients Server For the details see the vendor site...

Rackspace Confirms Play Ransomware Gang Responsible for Recent Breach

Cloud services provider Rackspace on Thursday confirmed that the ransomware gang known as Play was responsible for last month's breach. The security incident, which took place on December 2, 2022, leveraged a previously unknown security exploit to gain initial access to the Rackspace Hosted...

Vulnerabilities fixed in HP Integrated Lights-out (ILO)

HP has fixed vulnerabilities in the firmware of HP Integrated Lights-out of several HP Apollo, Proliant, Edgeline and StoreEasy server systems. A local malicious person with access to the systems, or the physical management infrastructure, could exploit them to cause a denial-of-service, the...

Microsoft Security Update Validation Report June 2022

Microsoft’s June 2022 security updates have passed Citrix testing the updates are listed below. The testing is not all-inclusive; all tests are executed against English only environments and issues may still be found upon implementation. Follow best practices for testing and installing software...

An update to harden Windows Server Update Services

An update to harden Windows Server Update Services This article describes the update that further improves the security of Windows Server Update Services WSUS and the Windows Update Agent WUA on computers that are managed by WSUS. This update applies to the following: Windows Server Update Servic...

Update Rollup for Lync Server 2013 Web Conferencing Server (KB2835507)

This package fixes issues described in KB2835507...