June 18, 2026
Protecting legacy OT systems against modern cyberthreats
Many manufacturing plants depend on OT systems that stay in service for many years. That long run can hide significant cybersecurity risks.
FishMonger’s arsenal upgraded: SprySOCKS for Windows
ESET researchers have discovered SprySOCKS for Windows, FishMonger’s backdoor weaponizing a kernel driver for advanced stealthiness
June 17, 2026
An update that solves one vulnerability can now be installed.
June 17, 2026
An update that solves one vulnerability can now be installed.
June 17, 2026
An update that solves one vulnerability can now be installed.
June 17, 2026
An update that solves one vulnerability can now be installed.
June 17, 2026
Several security issues were fixed in GStreamer Bad Plugins.
June 17, 2026
Digital sovereignty needs an operating model
June 17, 2026
graphite2 could be made to crash or run programs if it opened a specially crafted file.
June 17, 2026
Multiple security vulnerabilities were discovered in LibreOffice, which could result in denial of service or potentially the execution of arbitrary code if malformed files are opened. For Debian 12 bookworm, these problems have been fixed in version 4:7.4.7-1+deb12u13.
June 17, 2026
The system could be made to run programs as an administrator.
June 17, 2026
Several security issues were fixed in the Linux kernel.
June 17, 2026
The system could be compromised under certain conditions.
June 17, 2026
Code like Hemingway
June 17, 2026
Update NSS to 3.124.0 Update Firefox to 152.0
June 17, 2026
Update NSS to 3.124.0 Update Firefox to 152.0
June 17, 2026
Fix editor command injection vulnerability (only affectsversion 2.6.0). (#1432) https://github.com/jonas/tig/issues/1432
June 17, 2026
Update to 149.0.7827.114 CVE-2026-12007: Use after free Core CVE-2026-12008: Use after free DigitalCredentials CVE-2026-12009: Insufficient validation of untrusted input Accessibility CVE-2026-12010: Heap buffer overflow GPU
June 17, 2026
x86 HVM I/O port list traversal [XSA-491, CVE-2026-42487] domctl lock open to abuse [XSA-492, CVE-2026-42489, CVE-2026-42490] Arm: Completion of memory accesses not guaranteed by completion of a TLBI [XSA-493, CVE-2025-10263] x86: mismatched mapcache metadata [XSA-494, CVE-2026-42488]
June 17, 2026
Update to 1.9.2 for CVE-2026-10846
June 17, 2026
Version 0.16.0 – 2026-06-08 Security Fix out-of-bounds read via undersized frames in amqp_handle_input (GHSA-9mmv-r8g3-qp46, #878) Fix client crash when server negotiates frame_max below the AMQP protocol
June 17, 2026
BIRD 3.3.1 (2026-06-09) BGP: Fix crash when incoming connection for disabled protocol arrives BGP: Fix parsing labelled NLRIs with no next hop BGP: Fix cork behavior in collision with graceful restart BGP: Fix crash on dumping pending export statistics
June 17, 2026
CVE-2026-34253 – fix arbitrary code execution via buffer underflow
June 17, 2026
33.0.5 Release
June 17, 2026
This release fixes CVE-2026-10725 (exhausting memory when decompressing request headers). It also improves examples.
June 17, 2026
Fix arbitrary memory write with crafted Ventana BIF file (CVE-2026-48977).
June 17, 2026
Fix editor command injection vulnerability (only affectsversion 2.6.0). (#1432) https://github.com/jonas/tig/issues/1432
June 17, 2026
BIRD 3.3.1 (2026-06-09) BGP: Fix crash when incoming connection for disabled protocol arrives BGP: Fix parsing labelled NLRIs with no next hop BGP: Fix cork behavior in collision with graceful restart BGP: Fix crash on dumping pending export statistics
June 17, 2026
33.0.5 Release
June 17, 2026
This release fixes CVE-2026-10725 (exhausting memory when decompressing request headers). It also improves examples.
June 17, 2026
Fix arbitrary memory write with crafted Ventana BIF file (CVE-2026-48977).
June 17, 2026
Update to version 3.10.0
June 17, 2026
Security update
June 17, 2026
Security update
June 17, 2026