-
Jan 14, 2025 | 
seclists.org | Jan Schaumann
oss-secmailing list archivesFrom: Jan Schaumann <jschauma () netmeister org>Date: Tue, 14 Jan 2025 15:47:04 -0500Nick Tait <ntait () redhat com> wrote:[1] Heap Buffer Overflow in Rsync due to Improper Checksum Length HandlingCVE ID: CVE-2024-12084CVSS 3.1: 9.8 - AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HDescription: A heap-based buffer overflow flaw was found in the rsyncdaemon. This issue is due to improper handling of attacker-controlledchecksum lengths (s2length) in the code.
-
Jul 18, 2024 | 
blog.apnic.net | Jan Schaumann
This is the fifth blog post on the topic of the centralization of the Internet. The previous posts cover the diversity of authoritative name servers, the diversity of MX records, use of CAA records, and naked domains. This research was also presented at RIPE 88; video and slides are available here. But be warned — there’s a lot of data here, and you have to be quite a network data nerd to make it all the way through to the end, I suppose.
-
Apr 10, 2024 | 
seclists.org | Jan Schaumann
oss-secmailing list archivesFrom: Jan Schaumann <jschauma () netmeister org>Date: Wed, 10 Apr 2024 13:36:20 -0400Rafael Gonzaga <work () rafaelgss dev> wrote: The planned security releases are now available.
-
Apr 8, 2024 | 
akamai.com | Shivangi Pandey |Bruce Van Nice |Mark Dokter |Jan Schaumann
The promise of better financial and clinical outcomes via data exchange and the need to comply with regulatory requirements that mandate said exchange go hand in hand. What’s important is to understand both aspects — and optimize for both aspects. The move toward value-based care (VBC), a longitudinal approach that rewards health outcomes over appointment volumes, is a prime example of the amount and variety of information that now needs to be shared.
-
Apr 5, 2024 | 
seclists.org | Jan Schaumann
oss-sec mailing list archives From: Jan Schaumann <jschauma () netmeister org> Date: Fri, 5 Apr 2024 13:51:36 -0400 [ threading under VU#421644; I'm not affiliated with Envoy, but happen to track this vulnerability ] https://groups.google.com/g/envoy-security-announce/c/5XgxqT2lDg8 | We would like to announce the release of the following | patch versions: | | - 1.29.3 | - 1.28.2 | - 1.27.4 | - 1.26.8 | | These releases resolve |...
-
Apr 3, 2024 | 
akamai.com | Bruce Van Nice |Jan Schaumann |Michael Kleef |Mark Dokter
We’re three months into 2024 and still celebrating the remarkable strides we made in enhancing the global cybersecurity landscape in 2023. We’re three months into 2024 and still celebrating the remarkable strides we made in enhancing the global cybersecurity landscape in 2023. Last year was a testament to our relentless pursuit of threat intelligence as our security intelligence group navigated the dynamic terrain of the cyberthreat landscape to fortify the digital realms of our valued clients.
-
Feb 15, 2024 | 
akamai.com | Andrew Terranova |Tommy Cormier |Ralf Weber |Jan Schaumann
One of the underlying architectural limitations of VPN solutions is the dependence on gateway appliances that accept incoming connections, allowing user access directly to the network. When a VPN’s architectural weakness is exploitable through software vulnerabilities, as in the case of Ivanti, a threat actor could gain Layer 3 access to network resources inside the security perimeter.
-
Dec 17, 2023 | 
blog.apnic.net | Jan Schaumann
Good news, everybody — we have new DNS resource records! Well, not new new, but, you know, newish. You’ve probably heard of them, or even seen them actively in use, even though they moved from Internet draft to formal RFC 9460 adoption literally while I was working on this blog post — the SVCB and HTTPS resource records. There are a few interesting things to note about these records.
-
Jul 31, 2023 | 
blog.apnic.net | Jan Schaumann
This is the fourth blog post on the topic of the centralization of the Internet. The previous posts cover the diversity of authoritative name servers, the diversity of MX records, and an analysis of the use of CAA records across generic Top-Level Domains (gTLDs). This research was first presented at the APAC DNS Forum 2023 Pre-Event on 20 June 2023 (slides).
-
Jul 13, 2023 | 
seclists.org | Jan Schaumann
From: Jan Schaumann Date: Thu, 13 Jul 2023 12:26:38 -0400 Just closing the loop here: this has now been assigned CVE-2023-38198: https://www.cve.org/CVERecord?id=CVE-2023-38198 Jan Schaumann wrote: Hi, I don't think this has been raised here: The acme.sh ACME client[1] prior to version 3.0.6[2] has an RCE vulnerability allowing a hostile server to execute arbitrary commands on the client[3].
