Menu



Latest articles

It was discovered that libxml-parser-perl, a Perl module for parsing XML files, was prone to an off-by-one heap buffer overflow in `st_serial_stack()`. This update also includes a follow-up improvement change for CVE-2006-10002 (buffer overwrite in `parse_stream()`.) For Debian 11 bullseye, these problems have been fixed in version
April 4, 2026
Security fix for CVE-2026-4519
April 4, 2026
The update fixes CVS-2026-25061
April 4, 2026
GSSAPI server: Boundary check gss_wrap token (read OOB)
April 4, 2026
Security fix for CVE-2026-4519.
April 4, 2026
Security fix for CVE-2026-4519.
April 4, 2026
Trump wants to take a battle axe to CISA again and slash $707M from budget
April 3, 2026
https://security-tracker.debian.org/tracker/DSA-6192-1
April 3, 2026
Internet Bug Bounty program hits pause on payouts
April 3, 2026
Claude Code is still vulnerable to an attack Anthropic has already fixed
April 3, 2026
CERT-EU blames Trivy supply chain attack for Europa.eu data breach
April 3, 2026
Hybrid work, expanded risk: what needs to change
April 3, 2026
The npm Supply Chain Problem: Why Installing Packages Executes Untrusted Code
April 3, 2026
It was discovered that pyasn1, a generic ASN.1 library for Python, is prone to a denial of service vulnerability when decoding ASN.1 data with deeply nested structures. For the oldstable distribution (bookworm), this problem has been fixed in version 0.4.8-3+deb12u2.
April 3, 2026
Several vulnerabilities were discovered in the inetutils implementation of telnetd and telnet, which may result in privilege escalation or information disclosure. For the oldstable distribution (bookworm), these problems have been fixed in version 2:2.4-2+deb12u3.
April 3, 2026
Google gives enterprises new controls to manage AI inference costs and reliability
April 3, 2026
Nigerian romance scammer jailed after being caught out by fellow fraudster
April 3, 2026
Local-first browser data gets real
April 3, 2026
Understanding the risks of OpenClaw
April 3, 2026
Update to upstream 2.5.2, including fixes for CVE-2026-33757 and CVE-2026-33758
April 3, 2026
Update to 9.21.20 (rhbz#2440560) Security Fixes: Fix unbounded NSEC3 iterations when validating referrals to unsigned delegations. (CVE-2026-1519) Fix memory leaks in code preparing DNSSEC proofs of non-existence.
April 3, 2026
Claude Code leak puts enterprise trust at risk as security, governance concerns mount
April 3, 2026
Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. For the oldstable distribution (bookworm), these problems have been fixed in version 146.0.7680.177-1~deb12u1.
April 3, 2026
https://security-tracker.debian.org/tracker/DSA-6193-1
April 3, 2026
https://security-tracker.debian.org/tracker/DSA-6194-1
April 3, 2026
https://security-tracker.debian.org/tracker/DSA-6191-1
April 2, 2026
https://security-tracker.debian.org/tracker/DSA-6190-1
April 2, 2026
An update that solves two vulnerabilities can now be installed.
April 2, 2026
They thought they were downloading Claude Code source. They got a nasty dose of malware instead
April 2, 2026
Digital assets after death: Managing risks to your loved one’s digital estate Fraudsters often target the accounts of the deceased or their grieving relatives. Here’s how to keep the scammers at bay.
April 2, 2026
Moderate: mariadb:10.11 security update
April 2, 2026
Kilo targets shadow AI agents with a managed enterprise platform
April 2, 2026
Building enterprise voice AI agents: A UX approach
April 2, 2026
Spring AI tutorial: How to develop AI agents with Spring
April 2, 2026
Why ‘curate first, annotate smarter’ is reshaping computer vision development
April 2, 2026
Undertow would allow unintended access to user sessions over the network.
April 2, 2026
The company’s biggest security hole lived in the breakroom
April 2, 2026
CVE-2026-4897 aisle.com fix of unsanitized getline
April 2, 2026
Security fix for CVE-2026-4519
April 2, 2026
Automatic update for crun-1.27-1.fc43. Changelog for crun * Wed Mar 25 2026 Packit – 1.27-1 – Update to 1.27 upstream release * Mon Dec 22 2025 Packit – 1.26-1
April 2, 2026
Fix CVE-2026-31812: Bump tar-rs to .5.45 – Closes rhbz#2449672
April 2, 2026
AI recruiting biz Mercor says it was ‘one of thousands’ hit in LiteLLM supply-chain attack
April 2, 2026
Smashing Security podcast #461: This man hid $400 million in a fishing rod. Then it vanished
April 1, 2026
https://security-tracker.debian.org/tracker/DSA-6189-1
April 1, 2026
https://security-tracker.debian.org/tracker/DSA-6188-1
April 1, 2026
Amazon security boss: AI makes pentesting 40% more efficient
April 1, 2026
Vim and GNU Emacs: Claude Code helpfully found zero-day exploits for both
April 1, 2026
This month in security with Tony Anscombe – March 2026 edition The past four weeks have seen a slew of new cybersecurity wake-up calls that showed why every organization needs a well-thought-out cyber-resilience plan
April 1, 2026
‘People’s Panel’ to check if UK wants controversial Digital ID will cost £630K
April 1, 2026
Tornado is a scalable, non-blocking Python web framework and asynchronous networking library. CVE-2026-31958 Introduce new limits on the size and complexity of multipart bodies, including a default limit of 100 parts per request to mitigate a
April 1, 2026