Ouch, the #spring #framework in #java 9 has an #rce #zeroday #exploit https://www.praetorian.com/blog/spring-c.. This is for sure the problem with using such massive and difficult to #test #codebase #projects ...
Very #serious #zeroday #cve for #chrome and #chromium https://chromereleases.googleblog.com/20.. Lodged a #ticket to #update and #upgrade the #ubuntu #deb #packages https://bugs.launchpad.net/ubuntu/+sourc.. Fingers crossed this happens soon.
Ouch, an extremely #serious #linux #zeroday #backdoor in #modern #kernels called #dirtypipe https://www.bleepingcomputer.com/news/se.. Don't worry, a #patch is incoming: https://git.kernel.org/pub/scm/linux/ker..
There is speculation on the tech community over on #hackernews that #apple is #patching the #pegasus #zeroday #exploit #bug currently being actively used against #journalists and #politicians https://news.ycombinator.com/item?id=279.. Whatever the exploit is that they are patching, they have so far released *zero information* about it, not even a #cve number! It's quite seriously and actively being rolled out to all #ios devices in the wild.