OpenSMTPD 6.6.4p1 security release:
"An out of bounds read in smtpd allows an attacker to inject arbitrary commands into the envelope file which are then executed as root. Separately, missing privilege revocation in smtpctl allows arbitrary commands to be run with the _smtpq group."
"The impact of SSL certificate revocation on web performance" also worth reading.
"Don't touch my clipboard"
"Even if the certificate has an OCSP staple ... Chrome always sends a blocking request to the Certificate Authority's server when connecting to a website that uses an EV certificate and this request can take hundreds of milliseconds. To make things worse, if the CA's server is down, your users see an error page instead of your website."
"CSS data exfiltration via a single injection point"
Nice example of why we should never trust user input:
"... a remote attacker within proximity can silently execute arbitrary code with the privileges of the Bluetooth daemon as long as Bluetooth is enabled. No user interaction is required ..."
CDPwn – 5 zero-day vulnerabilities in Cisco Discovery Protocol (CDP):
– Different Cisco products are vulnerable to denial of service attacks and remote code execution.
– See also https://kb.cert.org/vuls/id/261385/.
– CVE-2020-3110, CVE-2020-3111, CVE-2020-3118, CVE-2020-3119, CVE-2020-3120.
"Security Flaw Found in WhatsApp Desktop Platform Allowing Cybercriminals Read From The File System Access"
> Did you consider removing the installation and Google-specific tracking headers (x-client-data) that Google Chrome is sending to Google properties ?
> It's a unique ID to track a specific Chrome instance across all Google properties.
TeamViewer stores user passwords encrypted, not hashed:
– The key and IV are publicly known and identical for all users.
– Privilege escalation is possible in certain cases (CVE-2019-18988).
Security Flaw in Trezor Hardware Wallets
"Does Your Domain Have a Registry Lock?"
"Stop using ridiculously low DNS TTLs"
"When an application uses the GPU, some private data inevitably get stored in GPU. We find the graphics driver fails to wipe them after the application finishes, so the data preserve in the GPU. Therefore, an attacker can run a GPU spyware to steal these private data."