GHSA-49PC-8936-WVFP Lettermint Node.js SDK leaks email properties to unintended recipients when client instance is reused

Impact Email properties such as to, subject, html, text, and attachments are not reset between sends when a single client instance is reused across multiple .send calls. This can cause properties from a previous send to leak into a subsequent one, potentially delivering content or recipient...

SUSE-SU-2025:4425-1 Security update for cups

This update for cups fixes the following issues: Security issues fixed: - CVE-2025-58436: single client sending slow messages to cupsd can delay the application and make it unusable for other clients bsc1244057. Other issues fixed: - Update the CVE-2025-58436 patch to fix a regression that causes...

TimberStrike: Dataset Reconstruction Attack Revealing Privacy Leakage in Federated Tree-Based Systems

Federated Learning has emerged as a privacy-oriented alternative to centralized Machine Learning, enabling collaborative model training without direct data sharing. While extensively studied for neural networks, the security and privacy implications of tree-based models remain underexplored. This...

K24241590: BIG-IP APM ignores the Restrict to Single Client IP option for Native RDP resources

Security Advisory Description This issue occurs when all of the following conditions are met: You enable the Restrict to Single Client IP option in the Access profile. Users access a native Remote Desktop Protocol RDP resource on the BIG-IP APM webtop. When launching a native RDP resource from th...