org.apache.syncope:syncope-core-upgrader (>=1.2.0 <=1.2.11), org.apache.syncope:syncope-standalone (>=1.1.0 <=1.1.8) potentially affected by CVE-2025-65998 via org.apache.syncope:syncope-core (>=1.1.0 <=1.2.9)

org.apache.syncope:syncope-core MAVEN version =1.1.0, =1.2.0, =1.1.0, =1.1.8 Source cves: CVE-2025-65998 Source advisory: OSV:GHSA-JQG8-M35Q-JH7J...

Description of the security update for Office 2016: November 11, 2025 (KB5002810)

Description of the security update for Office 2016: November 11, 2025 KB5002810 Summary This security update resolves a Microsoft Excel information disclosure vulnerability. To learn more about the vulnerability, see the following security advisories: Microsoft Common Vulnerabilities and Exposure...

MAL-2025-42966 Malicious code in @tt4b-vmok/standalone (npm)

The package @tt4b-vmok/standalone was found to contain malicious code...

Description of the security update for Office 2016: May 13, 2025 (KB5002716)

Description of the security update for Office 2016: May 13, 2025 KB5002716 Summary This security update resolves a Microsoft Excel remote code execution vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2025-30379. Note: To apply this...

Description of the security update for SharePoint Server 2019 Language Pack: May 13, 2025 (KB5002706)

Description of the security update for SharePoint Server 2019 Language Pack: May 13, 2025 KB5002706 Summary This security update resolves a Microsoft SharePoint Server elevation of privilege vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures...

Description of the security update for SharePoint Server 2019 Language Pack: April 8, 2025 (KB5002680)

Description of the security update for SharePoint Server 2019 Language Pack: April 8, 2025 KB5002680 Summary This security update resolves a Microsoft Office remote code execution vulnerability and Microsoft Word remote code execution vulnerability. To learn more about the vulnerabilities, see th...

Description of the security update for Office 2016: April 8, 2025 (KB5002573)

Description of the security update for Office 2016: April 8, 2025 KB5002573 Summary This security update resolves a Microsoft Word security feature bypass vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2025-29816. Note: To apply this...

Description of the security update for Access 2016: April 8, 2025 (KB5002701)

Description of the security update for Access 2016: April 8, 2025 KB5002701 Summary This security update resolves a Microsoft Office remote code execution vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2025-26642. Note: To apply this...

Description of the security update for Office 2016: February 11, 2025 (KB5002684)

Description of the security update for Office 2016: February 11, 2025 KB5002684 Summary This security update resolves a Microsoft Excel remote code execution vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2025-21387. Note: To apply thi...

Description of the security update for Office 2016: December 10, 2024 (KB5002661)

Description of the security update for Office 2016: December 10, 2024 KB5002661 Summary This security update resolves a Microsoft Office remote code execution vulnerability and Microsoft Office elevation of privilege vulnerability. To learn more about the vulnerabilities, see the following securi...

Description of the security update for SharePoint Server 2019 Language Pack: December 10, 2024 (KB5002664)

Description of the security update for SharePoint Server 2019 Language Pack: December 10, 2024 KB5002664 Summary This security update resolves a Microsoft SharePoint remote code execution vulnerability, Microsoft SharePoint elevation of privilege vulnerability, and Microsoft SharePoint informatio...

http-tiny: perl: insecure TLS cert default

A vulnerability was found in Tiny, where a Perl core module and standalone CPAN package, does not verify TLS certificates by default. Users need to explicitly enable certificate verification with the verifySSL=1 flag to ensure secure HTTPS connections. This oversight can potentially expose...

KB5029375 - Description of the security update for SQL Server 2017 GDR: October 10, 2023

KB5029375 - Description of the security update for SQL Server 2017 GDR: October 10, 2023 Summary Improvements and fixes included in this update How to obtain and install the update More information File information Information about protection and security Summary This security update contains a...

podman security and bug fix update

2:4.2.0-3.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 2:4.2.0-3 - fix dependency in test subpackage - Related: 2061316 2:4.2.0-2 - readd catatonit - Related: 2061316 2:4.2.0-1 - update to latest content of...

New Venus Ransomware Targets Healthcare industry

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary Venus ransomware, also called Goodgame, has been a source of concern since August 2022. Venus ransomware is an example of the legacy ransomware model: a standalone package sold on underground markets...

Description of the security update for Office 2016: September 13, 2022 (KB5002178)

Description of the security update for Office 2016: September 13, 2022 KB5002178 Summary This security update resolves a Microsoft PowerPoint remote code execution vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2022-37962. Note: To app...

May 10, 2022-Security Only Update for .NET Framework 3.5, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 (KB5013838)

May 10, 2022-Security Only Update for .NET Framework 3.5, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 KB5013838 Applies to: Microsoft .NET Framework 3.5 Microsoft .NET Framework 4.6.2 Microsoft .NET Framework 4.7 Microsoft .NET Framework 4.7.1 Microsoft .NET Framework 4.7.2 Microsoft .N...

What’s happening in the world of personal cyber insurance?

Youve likely only seen cybercrime insurance primarily mentioned in relation to attacks on businesses. Most commonly, it’s cited with regard to ransomware attacks in the workplace, or associated data loss. Some folks think the mere presence of insurance simply encourages more attacks, and is hurti...

Security Only Update for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 (KB5012325)

Security Only Update for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 KB5012325 Applies to: Microsoft .NET Framework 3.5 Microsoft .NET Framework 4.5.2 Microsoft .NET Framework 4.6 Microsoft .NET Framework 4.6.1 Microsoft .NET Framework 4.6.2...

[SECURITY] Fedora 34 Update: cabal-rpm-2.0.11-1.fc34

This package provides a RPM packaging tool for Haskell Cabal-based packages. cabal-rpm has commands to generate a RPM spec file and srpm for a package. It can rpmbuild packages, yum/dnf install their dependencies, prep packages, and install them. There are commands to list package dependencies an...