Artifex Ghostscript LockSafetyParams Security Bypass Vulnerability

A vulnerability in Artifex Software Ghostscript could allow a local attacker to bypass security restrictions on a targeted system. The vulnerability exists because the affected software improperly checks the LockSafetyParams device parameter if another device is used as the top device. An attacker could exploit this vulnerability by making a .setdevice call on the targeted …

Artifex Ghostscript LockSafetyParams Security Bypass Vulnerability Read More »

PHP ext/standard/var.c NULL Pointer Dereference Denial of Service Vulnerability

A vulnerability in PHP could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on a targeted system. The vulnerability is due to a NULL pointer dereference condition that exists in the ext/standard/var.c file of the affected software. An attacker could exploit this vulnerability by sending a request that submits malicious …

PHP ext/standard/var.c NULL Pointer Dereference Denial of Service Vulnerability Read More »

PHP ext/standard/var_unserializer.c NULL Pointer Dereference Denial of Service Vulnerability

A vulnerability in PHP could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on a targeted system. The vulnerability is due to a NULL pointer dereference condition that exists in the ext/standard/var_unserializer.c file of the affected software when an unserialize call is made for the com, dotnet, or variant class. …

PHP ext/standard/var_unserializer.c NULL Pointer Dereference Denial of Service Vulnerability Read More »

Linux Kernel kvm_pv_send_ipi Function Denial of Service Vulnerability

A vulnerability in the kvm_pv_send_ipi function of the Linux Kernel could allow a local attacker to cause a denial of service (DoS) condition on a targeted system. The vulnerability exists in the kvm_pv_send_ipi function, as defined in the arch/x86/kvm/lapic.c source code file of the affected software, and is due to the failure of the Advanced …

Linux Kernel kvm_pv_send_ipi Function Denial of Service Vulnerability Read More »

Linux Kernel vcpu_scan_ioapic Function Denial of Service Vulnerability

A vulnerability in the vcpu_scan_ioapic function of the Linux Kernel could allow a local attacker to cause a denial of service (DoS) condition on a targeted system. The vulnerability exists in the vcpu_scan_ioapic function, as defined in the arch/x86/kvm/x86.c source code file of the affected software, and is due to the failure of the I/O …

Linux Kernel vcpu_scan_ioapic Function Denial of Service Vulnerability Read More »

Study – Lack of State Aid Putting Future Broadband Ambitions at Risk

A new study from the Centre on Regulation in Europe (CERRE), which did a systematic analysis of all of the 157 broadband measures that have been notified to the European Commission by Member States (inc. UK) between 2003 and August 2018, has warned that the current level of public funding is “insufficient“. At present the …

Study – Lack of State Aid Putting Future Broadband Ambitions at Risk Read More »

tmux format_cb_pane_tabs Function Denial of Service Vulnerability

A vulnerability in the format_cb_pane_tabs function of tmux could allow a local attacker to cause a denial of service (DoS) condition on a targeted system. The vulnerability exists in the format_cb_pane_tabs function, as defined in the format.c source code file of the affected software. An attacker could exploit the vulnerability by accessing a targeted system …

tmux format_cb_pane_tabs Function Denial of Service Vulnerability Read More »

X-VPN review: Good speeds, nice app, but radio silence on details that matter

X-VPN in brief: P2P allowed: Yes Business location: Hong Kong Number of servers: 5,000+ Number of country locations: 28* Cost: $72 VPN protocol: TBU Data encryption: AES-256 Data authentication: AES-256 Handshake encryption: AES-256 * Uses virtual server locations Many VPNs promise to “unblock the world” by opening up foreign streaming sites, or domestic ones when …

X-VPN review: Good speeds, nice app, but radio silence on details that matter Read More »

Google makes good on promise to remove some Symantec PKI certificates

I was updating some online passwords this week when I ran across the following digital certificate error when trying to access my cable provider’s website, brighthouse.com, using Google Chrome: Google Digital certificate error message [ Keep up with 8 hot cyber security trends (and 4 going cold). Give your career a boost with top security …

Google makes good on promise to remove some Symantec PKI certificates Read More »

EE UK Test Live 5G Broadcast from Wembley Stadium with BT Sport

Mobile operator EE has moved to defuse some of Three UK’s recent promotional efforts by announcing their own demo of the new 5G wireless broadband technology, which in this case showcased BT Sport’s first live trial of a remote production broadcast over their new network at Wembley Stadium in London. The two-way broadcast demo made …

EE UK Test Live 5G Broadcast from Wembley Stadium with BT Sport Read More »

How Data Centers Power Wall Street and the Financial Sector

The movement of data is the lifeblood of the financial services industry. That data must move fast, and be stored securely. The financial sector is dealing with an increasing volume of data to be managed, whether analyzing it for trading purposes or using cybersecurity software that monitors data for possible instances of fraud or noncompliance. …

How Data Centers Power Wall Street and the Financial Sector Read More »