November 2021

Linux Vulnerabilities of the Week: November 22, 2021 1. Out-of-bounds write to memory in FreeRDP  Severity: Important   CVSS Score: 8.8 This is a flaw in the FreeRDP, a free implementation of the Remote Desktop Protocol (RDP), released under the Apache...

Windows Out-of-Band Update Released to Fix Kerberos Microsoft Issues Emergency Update for Kerberos Microsoft has released an emergency security update to fix a Kerberos OOB vulnerability in Windows Server running Domain Controller services.  Anyone impacted by this vulnerability will not...

Linux Vulnerabilities of the Week: November 15, 2021 1. Possible trojan source attacks in the Unicode Specification (through 14.0) Severity: Critical         CVSS Score: 9.8 This is a flaw in the way Unicode standards are implemented in the context of development...

Lack of Data Unification and Automation Compromises Security IT Security Data Is Spread Far Too Wide There is so much data in the modern enterprise that it is hard to keep track of. A dozen different security systems, threat intelligence...

Ransomware Becomes a Pandemic Rise of Ransomware Fortinet’s 2021 Ransomware Survey Report reveals a more than 1000% surge in ransomware between July 2020 and June 2021. According to the report: Two thirds of organizations have been targeted by ransomware. One...

November Patch Tuesday 2021 Fixes 55 Flaws Microsoft Releases November 2021 Patch Tuesday Fixes There are 6 Critical (double than last month) and 49 Important fixes in this release. Updated were included Microsoft Windows and Windows components, 3D Viewer, Azure, Azure...

Top Linux Vulnerabilities for November 2021 1. Buffer overflow in Golang (<1.16.9) Severity: Critical         CVSS Score: 9.8 This is a validation flaw in Golang. When invoking functions from WASM modules built using GOARCH=wasm GOOS=js, passing very large arguments can cause...

Google Chrome Zero-Day Is Currently Being Weaponized Google Chrome Zero-Day Is Being Weaponized Google has released 95.0.4638.69 today to the Stable Channel to resolve serious issues impacting Windows, Linux and Mac OS.  So far this year Google have released over...

Linux Vulnerabilities of the Week: November 1, 2021 1. Unsafe deserialization of Xalan xsltc.trax.TemplatesImpl in XStream Severity: Important    CVSS Score: 8.8 XStream is a simple library, used to serialize objects to XML and back again. This is a flaw in...