Astra Linux - уязвимость в firefox, thunderbird

Mozilla developers reported memory safety bugs in the code shared between Firefox and Thunderbird. Some of these bugs showed signs of memory corruption, and we assume that with sufficient effort, some of these bugs could have been exploited to execute arbitrary code. This vulnerability affects...

CVE-2026-40098 OpenMage LTS imports cross-user wishlist item via shared wishlist code, leading to private option disclosure and file-disclosure variant

Magento Long Term Support LTS is an unofficial, community-driven project provides an alternative to the Magento Community Edition e-commerce platform with a high level of backward compatibility. Prior to version 20.17.0, the shared wishlist add-to-cart endpoint authorizes access with a public...

PT-2026-33802

Cross-user wishlist item import via shared wishlist code, leading to private option disclosure and file-disclosure variant Summary The shared wishlist add-to-cart endpoint authorizes access with a public sharing code, but loads the acted-on wishlist item by a separate global wishlist item id and...

[SECURITY] Fedora 42 Update: rust-az-cvm-vtpm-0.7.4-3.fc42

Package with shared code for Azure Confidential VMs...

Fedora: Security Advisory for rust-askama_shared (FEDORA-2023-b37722768e)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 37 Update: rust-askama_shared-0.12.2-4.fc37

Shared code for Askama...

OPENSUSE-SU-2021:1588-1 Security update for seamonkey

This update for seamonkey fixes the following issues: update to SeaMonkey 2.53.10.1 Security fix for NSS code bug 1737470. Only use networks and servers in lower case in ChatZilla bug 1742502. Change classic form icon in SeaMonkey composer bug 1710915. Addition fixes for SeaMonkey 32x32 default...

Mozilla: Memory safety bugs fixed in Firefox 90 and Firefox ESR 78.12

Mozilla developers reported memory safety bugs present in code shared between Firefox and Thunderbird. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Thunderbi...

Mozilla: Memory safety bugs fixed in Firefox 90 and Firefox ESR 78.12

Mozilla developers reported memory safety bugs present in code shared between Firefox and Thunderbird. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Thunderbi...

Mozilla: Memory safety bugs fixed in Firefox 90 and Firefox ESR 78.12

Mozilla developers reported memory safety bugs present in code shared between Firefox and Thunderbird. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Thunderbi...

Zoom Client Path Traversal Vulnerability (CNVD-2020-34131)

Zoom Client is a video conferencing client application from Zoom USA that supports multiple platforms. A path traversal vulnerability exists in the way Zoom Client version 4.6.10 handles messages containing shared code segments. An attacker can exploit this vulnerability by sending a specially...

[SECURITY] Fedora 30 Update: glibc-2.29-29.fc30

The glibc package contains standard libraries which are used by multiple programs on the system. In order to save disk space and memory, as well as to make upgrading easier, common system code is kept in one place and shared between programs. This particular package contains the most important se...

Five Weakest Links in Cybersecurity That Target the Supply Chain

Matan Or-El, co-founder and CEO at Panorays Third-party breaches have become an epidemic as cybercriminals target the weakest link. Organizations such as BestBuy, Sears, Delta and even NYU Medical Center are just a few that have felt the impact of cyberattacks through third-party vendors. The...

[SECURITY] Fedora 26 Update: glibc-2.25-12.fc26

The glibc package contains standard libraries which are used by multiple programs on the system. In order to save disk space and memory, as well as to make upgrading easier, common system code is kept in one place and shared between programs. This particular package contains the most important se...

[SECURITY] Fedora 27 Update: glibc-2.26-15.fc27

The glibc package contains standard libraries which are used by multiple programs on the system. In order to save disk space and memory, as well as to make upgrading easier, common system code is kept in one place and shared between programs. This particular package contains the most important se...

[SECURITY] Fedora 18 Update: glibc-2.16-34.fc18

The glibc package contains standard libraries which are used by multiple programs on the system. In order to save disk space and memory, as well as to make upgrading easier, common system code is kept in one place and shared between programs. This particular package contains the most important se...

Expert: Malicious Mobile App Fears Overblown

“It’s the code, stupid!” At least that’s what application security expert Andy Chou observes about go-go world of mobile devices. In this interview with Threatpost’s Paul Roberts, recorded at the RSA Security Conference in San Francisco, Chou said that mobile device software vendors face many of...