Aggregator

Submit #520497 / VDB-300751

Submit #520495 / VDB-300750

Submit #520494 / VDB-300749

Submit #520462 / VDB-300748

Submit #520394 / VDB-300747

Submit #520393 / VDB-300746

Submit #520390 / VDB-300745

The security of video data transmitted through satellite communications has become increasingly vulnerable to information leakage, theft, and data distortion with the rapid proliferation of low-Earth orbit (LEO) satellite constellations. These security risks not only endanger device functionality and user privacy but may also pose potential risks to national security, making efficient encryption technology a […]

The post Securing Satellite Communications by Encrypting Videos on Satellite Payloads appeared first on Cyber Security News.

A vulnerability classified as problematic has been found in GNOME libgsf up to 1.14.53. Affected is the function sorting_key_copy. The manipulation of the argument Name leads to out-of-bounds read. This vulnerability is traded as CVE-2025-2724. It is possible to launch the attack on the local host. There is no exploit available. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability was found in GNOME libgsf up to 1.14.53. It has been rated as critical. This issue affects the function gsf_property_settings_collec. The manipulation of the argument n_alloced_params leads to heap-based buffer overflow. The identification of this vulnerability is CVE-2025-2723. Attacking locally is a requirement. There is no exploit available. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability was found in GNOME libgsf up to 1.14.53. It has been declared as critical. This vulnerability affects the function gsf_prop_settings_collect_va. The manipulation of the argument n_alloced_params leads to heap-based buffer overflow. This vulnerability was named CVE-2025-2722. Local access is required to approach this attack. There is no exploit available. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability was found in GNOME libgsf up to 1.14.53. It has been classified as critical. This affects the function gsf_base64_encode_simple. The manipulation of the argument size_t leads to heap-based buffer overflow. This vulnerability is uniquely identified as CVE-2025-2721. An attack has to be approached locally. There is no exploit available. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability was found in GNOME libgsf up to 1.14.53 and classified as problematic. Affected by this issue is the function gsf_base64_encode_simple. The manipulation of the argument size leads to use of uninitialized variable. This vulnerability is handled as CVE-2025-2720. The attack needs to be approached locally. There is no exploit available. The vendor was contacted early about this disclosure but did not respond in any way.

Submit #520184 / VDB-300744

Submit #520183 / VDB-300743

Submit #520182 / VDB-300742

Submit #520181 / VDB-300741

Submit #520180 / VDB-300740

Principles-based guidance for organisations setting up a PAW solution.

CleanStack is a novel stack protection mechanism designed to combat memory corruption attacks, which have long been a significant threat to software systems. These attacks exploit vulnerabilities in low-level languages like C/C++ to execute arbitrary code or manipulate memory operations. CleanStack addresses these issues by introducing a dual-stack system that isolates and randomizes stack objects […]

The post CleanStack: Dual-Stack Solution to Defend Against Memory Corruption Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.