New Atomic macOS Malware Steals Keychain Passwords and Crypto Wallets

Threat actors are advertising a new information stealer for the Apple macOS operating system called Atomic macOS Stealer or AMOS on Telegram for $1,000 per month, joining the likes of MacStealer. "The Atomic macOS Stealer can steal various types of information from the victim's machine, including...

New Atomic macOS Malware Steals Keychain Passwords and Crypto Wallets

Threat actors are advertising a new information stealer for the Apple macOS operating system called Atomic macOS Stealer or AMOS on Telegram for $1,000 per month, joining the likes of MacStealer. "The Atomic macOS Stealer can steal various types of information from the victim's machine, including...

OESA-2023-1255 protobuf-c security update

This is protobuf-c, a C implementation of the Google Protocol Buffers data serialization format. Security Fixes: protobuf-c before 1.4.1 has an unsigned integer overflow in parserequiredmember.CVE-2022-48468...

SUSE SLES15 Security Update : protobuf-c (SUSE-SU-2023:1979-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:1979-1 advisory. - protobuf-c before 1.4.1 has an unsigned integer overflow in parserequiredmember. CVE-2022-48468 Note that Nessus has not tested for this...

SUSE: Security Advisory (SUSE-SU-2023:1979-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2023:1979-1 Security update for protobuf-c

This update for protobuf-c fixes the following issues: - CVE-2022-48468: Fixed an unsigned integer overflow. bsc1210323...

LockBit Ransomware Now Targeting Apple macOS Devices

Threat actors behind the LockBit ransomware operation have developed new artifacts that can encrypt files on devices running Apple's macOS operating system. The development, which was reported by the MalwareHunterTeam over the weekend, appears to be the first time a big-game ransomware crew has...

protobuf-c before 1.4.1 has an unsigned integer overflow in parse_required_member.

...

Mozilla Firefox 安全漏洞

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security vulnerability exists in Mozilla Firefox versions prior to 112, which stems from a Mozilla Maintenance Service write-lock bypass, where a local attacker can trick the Mozilla Maintenance...

CVE-2022-48468

A vulnerability was found in protobuf-c. This security flaw leads to an unsigned integer overflow in parserequiredmember...

SUSE CVE-2022-48468

protobuf-c before 1.4.1 has an unsigned integer overflow in parserequiredmember...

AZL-26159 CVE-2022-48468 affecting package protobuf-c for versions less than 1.4.1-1

protobuf-c before 1.4.1 has an unsigned integer overflow in parserequiredmember...

Integer overflow

protobuf-c before 1.4.1 has an unsigned integer overflow in parserequiredmember...

UBUNTU-CVE-2022-48468

protobuf-c before 1.4.1 has an unsigned integer overflow in parserequiredmember...

SUSE CVE-2023-29532

A local attacker can trick the Mozilla Maintenance Service into applying an unsigned update file by pointing the service at an update file on a malicious SMB server. The update file can be replaced after the signature check, before the use, because the write-lock requested by the service does not...

BlackVue DR750-2CH LTE 数据伪造问题漏洞

BlackVue DR750-2CH LTE is an in-vehicle full HD monitor from BlackVue. A security vulnerability exists in the BlackVue DR750-2CH LTE version v.1.0122022.10.26, which stems from not checking the authenticity of uploaded firmware. An attacker could exploit the vulnerability to upload a firmware tha...

CVE-2022-48468

CVE-2022-48468 affects protobuf-c prior to v1.4.1, with an unsigned integer overflow in parse_required_member. Connected advisories confirm the issue across distributions (e.g., Astra Linux, AlmaLinux, Amazon Linux 2, and Mariner/CBL) and consistently cite protobuf-c before 1.4.1 as vulnerable. T...

CVE-2022-48468

protobuf-c before 1.4.1 has an unsigned integer overflow in parserequiredmember...

protobuf-c 输入验证错误漏洞

protobuf-c is a C-based protocol buffer implementation. A security vulnerability exists in protobuf-c versions prior to 1.4.1, which stems from the presence of an unsigned integer overflow...

CVE-2023-29532

The Mozilla Foundation Security Advisory describes this flaw as: A local attacker can trick the Mozilla Maintenance Service into applying an unsigned update file by pointing the service at an update file on a malicious SMB server. The update file can be replaced after the signature check, before...