Aggregator

A vulnerability classified as critical was found in GNU Binutils 2.43. This vulnerability affects the function _bfd_elf_gc_mark_rsec of the file bfd/elflink.c of the component ld. The manipulation leads to memory corruption. This vulnerability was named CVE-2025-1181. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as critical, was found in GNU Binutils 2.43. Affected is the function bfd_elf_reloc_symbol_deleted_p of the file bfd/elflink.c of the component ld. The manipulation leads to memory corruption. This vulnerability is traded as CVE-2025-1182. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as critical, has been found in Intel SSD Tools Software. Affected by this issue is some unknown functionality. The manipulation leads to buffer overflow. This vulnerability is handled as CVE-2023-28736. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in giflib 5.2.1 and classified as critical. Affected by this issue is some unknown functionality of the file getarg.c. The manipulation leads to memory corruption. This vulnerability is handled as CVE-2023-39742. The attack needs to be initiated within the local network. There is no exploit available.

Linus Torvalds has announced the release of Linux Kernel 6.14-rc3, marking a critical milestone in stabilizing the upcoming 6.14 kernel version. This release candidate addresses architectural vulnerabilities and introduces the lightweight “Faux Bus” framework to streamline driver development. The update notably incorporates a substantial patch series from KVM maintainer Paolo Bonzini, targeting virtualization improvements across […]

The post Linux Kernel 6.14 rc3 Released With The Fixes for Critical Issues appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Cyber threats evolve—has your defense strategy kept up? A new free guide available here explains why Continuous Threat Exposure Management (CTEM) is the smart approach for proactive cybersecurity. This concise report makes a clear business case for why CTEM’s comprehensive approach is the best overall strategy for shoring up a business’s cyber defenses in the face of evolving attacks. It also

Articles related to cyber risk quantification, cyber risk management, and cyber resilience.

The post Cyber Security GRC and Quantifying ROI | Kovrr appeared first on Security Boulevard.

优秀！

优秀！

优秀！

Сезон охоты за отношениями начинается раньше, чем мы думали…

A critical Insecure Direct Object Reference (IDOR) vulnerability was recently discovered in ExHub, a cloud-based platform for hulia-based development.  This flaw allowed attackers to modify web hosting configurations of any project without proper authorization, posing significant risks to affected systems.  Misconfigurations may cause outages or make services unavailable. Furthermore, attackers may be able to escalate […]

The post IDOR Vulnerability in ExHub Let Attacker Modify Web Hosting Configuration appeared first on Cyber Security News.

《全球网络安全政策法律发展年度报告(2024)》