Menu



Latest articles

https://security-tracker.debian.org/tracker/DSA-6173-1
March 22, 2026
Jul Blobul discovered that SPIP, a website engine for publishing, is prone to a privilege escalation vulnerability. For the stable distribution (trixie), this problem has been fixed in version 4.4.13+dfsg-0+deb13u1. We recommend that you upgrade your spip packages.
March 22, 2026
Update to 146.0.7680.80 * CVE-2026-3909: Out of bounds write in Ski
March 22, 2026
Remove legacy parent SciToken chaining behavior from token initialization and claim handling Harden Enforcer scope path traversal validation (including encoded traversal checks) Clean up documentation references to parent/chained SciTokens
March 22, 2026
Update to 5.12.0. This release updates the license field in the Python metadata and fixes a buffer overflow/infinite loop from indent handling.
March 22, 2026
Remove legacy parent SciToken chaining behavior from token initialization and claim handling Harden Enforcer scope path traversal validation (including encoded traversal checks) Clean up documentation references to parent/chained SciTokens
March 22, 2026
Update to 5.12.0. This release updates the license field in the Python metadata and fixes a buffer overflow/infinite loop from indent handling.
March 22, 2026
https://security-tracker.debian.org/tracker/DSA-6174-1
March 22, 2026
https://security-tracker.debian.org/tracker/DSA-6171-1
March 21, 2026
Move fast and save things: A quick guide to recovering a hacked account What you do – and how fast – after an account is compromised often matters more than it may seem
March 21, 2026
The following vulnerabilities have been discovered in the WebKitGTK web engine: CVE-2025-43214 shandikri discovered that processing maliciously crafted web content may lead to an unexpected process crash.
March 21, 2026
CVE-2026-3497: Fix information disclosure or denial of service due to uninitialized variables in gssapi-keyex
March 21, 2026
Upstream announcements: WordPress 6.9.2 Release WordPress 6.9.3 and 7.0 beta 4 WordPress 6.9.4 Release
March 21, 2026
Update to 1.73.3; Fixes: RHBZ#2426392, RHBZ#2415186
March 21, 2026
Update to 0.37.1 (rbhz#2445943) Fixes Denial of Service via malformed Content-Length header (CVE-2026-31870 Reenables 32-bit build Update to 0.37.0 (rhbz#2441656)
March 21, 2026
Add patch for CVE-2026-1539 (Also remove Proxy-Authorization header on cross origin redirect)
March 21, 2026
https://security-tracker.debian.org/tracker/DSA-6172-1
March 21, 2026
Cryptographers engage in war of words over RustSec bug reports and subsequent ban
March 20, 2026
https://security-tracker.debian.org/tracker/DSA-6170-1
March 20, 2026
https://security-tracker.debian.org/tracker/DSA-6169-1
March 20, 2026
OpenAI’s desktop superapp: The end of ChatGPT as we know it?
March 20, 2026
Google’s Stitch UI design tool is now AI-powered
March 20, 2026
EDR killers explained: Beyond the drivers ESET researchers dive deeper into the EDR killer ecosystem, disclosing how attackers abuse vulnerable drivers
March 20, 2026
Stop using AI to submit bug reports, says Google
March 20, 2026
Denver’s crosswalks hacked to broadcast anti-Trump messages
March 20, 2026
UK police force presses pause on live facial recognition after study finds racial bias
March 20, 2026
Feds disrupt monster IoT botnets behind record-breaking DDoS attacks
March 20, 2026
Jaguar Land Rover’s cyber bailout sets worrying precedent, watchdog warns
March 20, 2026
Several security issues were fixed in the Linux kernel.
March 20, 2026
Several security issues were fixed in the Linux kernel.
March 20, 2026
Introducing OpenShift Service Mesh 3.3 with post-quantum cryptography
March 20, 2026
LeakNet ransomware: what you need to know
March 20, 2026
Starmer’s digital ID reboot raises same old questions as its Blair-era ancestor
March 20, 2026
Google adds vibe design to Stitch UI design tool
March 20, 2026
Cloud at 20: Cost, complexity, and control
March 20, 2026
AI optimization: How we cut energy costs in social media recommendation systems
March 20, 2026
While you’re here, could you go out of your way to do an impossible job?
March 20, 2026
CVE-2026-3497: Fix information disclosure or denial of service due to uninitialized variables in gssapi-keyex
March 20, 2026
This is the March 2026 release of .NET 10. Release Notes: SDK: https://github.com/dotnet/core/blob/main/release- notes/10.0/10.0.4/10.0.104.md Runtime: https://github.com/dotnet/core/blob/main/release-
March 20, 2026
Fix CVE-2026-31812: Bump quinn-proto to 0.11.14 – Closes rhbz#2446359
March 20, 2026
Update to 146.0.7680.80 * CVE-2026-3909: Out of bounds write in Ski
March 20, 2026
OpenAI buys Python tools builder Astral
March 19, 2026
OpenAI buys non-AI coding startup to help its AI to program
March 19, 2026
https://security-tracker.debian.org/tracker/DSA-6168-1
March 19, 2026
Unknown attackers exploit yet another critical SharePoint bug
March 19, 2026
Google gives Android users a way to install unverified apps if they prove they really, really want to
March 19, 2026
Lock down Microsoft Intune, feds warn after Stryker attack
March 19, 2026
An update that solves one vulnerability can now be installed.
March 19, 2026
Several security issues were fixed in python2.7
March 19, 2026
Why AI evals are the new necessity for building effective AI agents
March 19, 2026