An update for thunderbird is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity… Continue Reading — RedHat:...

An update for thunderbird is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, Continue Reading — RedHat: RHSA-2020-5622:01 Important:...

An update for the postgresql:9.6 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, Continue Reading — RedHat: RHSA-2020-5619:01 Important: postgresql:9.6...

Now that you’re well-versed in the Waterfall Model and V-Model, it’s time to take the step up into a wider world of ASPICE. I won’t bore you with the details of its pedigree but ASPICE descends from a line of ISO documents concerned with setting up standards around software...

An update for thunderbird is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity… Continue Reading — RedHat:...

Sympa, a modern mailing list manager, grants full SOAP API access by sending invalid string as the cookie value, if the SOAP endpoint was enabled. An attacker could manipulate the mailing lists, including subscribing e-mails or getting the list of subs… Continue Reading — Debian...

There’s a flaw in jasper’s jpc encoder in versions prior to 2.0.23. Crafted input provided to jasper by an attacker could cause an arbitrary out-of-bounds write. This could potentially affect data confidentiality, integrity, or application availability… Continue Reading — Mageia 2020-0463: jasper security update>

When a BigInt was right-shifted the backing store was not properly cleared, allowing uninitialized memory to be read (CVE-2020-16042). Certain blit values provided by the user were not properly constrained leading to a heap buffer overflow in WebGL on … Continue Reading — Mageia 2020-0462:...

When a BigInt was right-shifted the backing store was not properly cleared, allowing uninitialized memory to be read (CVE-2020-16042). Certain blit values provided by the user were not properly constrained leading to a heap buffer overflow in WebGL on … Continue Reading — Mageia 2020-0461:...

dpic 2019.06.20 has a Stack-based Buffer Overflow in the wfloat() function in main.c. (CVE-2019-13989) References: – https://bugs.mageia.org/show_bug.cgi?id=27759 – https://security-tracker.debian.org/tracker/CVE-2019-13989 Continue Reading — Mageia 2020-0460: dpic security update>