Critical SQL Injection Flaws Expose Gentoo Soko to Remote Code Execution

Multiple SQL injection vulnerabilities have been disclosed in Gentoo Soko that could lead to remote code execution RCE on vulnerable systems. "These SQL injections happened despite the use of an Object-Relational Mapping ORM library and prepared statements," SonarSource researcher Thomas...

Product update: Virtuozzo 7.0 Update 5 (7.0.5-593)

The Update 5 for Virtuozzo 7.0 provides new features, security fixes as well as stability and usability bug fixes. Vulnerability id: PSBM-67221 A vulnerability was found in the signal handling in the Linux kernel. A local unprivileged user could cause a kernel crash general protection fault in th...