github.com/gitpod-io/gitpod is vulnerable to Remote Code Execution. The vulnerability exists due to cross-site WebSocket Hijacking because the Origin header is not restricted which allows an attacker ...
Continue Reading10 марта, 2023
March has arrived and is roaring like a very confused lion, at least in the northern hemisphere. And much like in the wild, brood production is increasing. We've already seen some fruits of that labor ...
Continue Reading09 марта, 2023
An issue was discovered in Gitpod versions prior to release-2022.11.2.16. There is a Cross-Site WebSocket Hijacking (CSWSH) vulnerability that allows attackers to make WebSocket connections to the Git ...
Continue Reading03 марта, 2023
PostgreSQL is an advanced object-relational database management system. The postgresql-jdbc package includes the .jar files needed for Java programs to access a PostgreSQL database. Security Fix(es): ...
Continue Reading14 февраля, 2023
## Summary IBM Security Directory Integrator has addressed several security issues in open source packages. Please apply the fix as detailed below. ## Vulnerability Details ** CVEID: **[CVE-2018-1270] ...
Continue Reading13 февраля, 2023
## Releases * Ubuntu 22.10 * Ubuntu 22.04 LTS * Ubuntu 20.04 LTS * Ubuntu 18.04 LTS ## Packages * thunderbird - Mozilla Open Source mail and newsgroup client Multiple security issues were di ...
Continue Reading06 февраля, 2023
## Releases * Ubuntu 20.04 LTS * Ubuntu 18.04 LTS ## Packages * firefox - Mozilla Open Source web browser USN-5816-1 fixed vulnerabilities in Firefox. The update introduced several minor regress ...
Continue Reading06 февраля, 2023
[![EV Charging Station](data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAQAAAC1HAwCAAAAC0lEQVR42mP8Xw8AAoMBgDTD2qgAAAAASUVORK5CYII=)]() Two new security weaknesses discovered in several electri ...
Continue Reading03 февраля, 2023
Back to Main