From nobody Mon Aug 12 12:01:52 2024 X-Original-To: freebsd-security@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4WjCmx01Lhz5SRtG for ; Mon, 12 Aug 2024 12:02:09 +0000 (UTC) (envelope-from tomek@cedro.info) Received: from mail-yw1-x1136.google.com (mail-yw1-x1136.google.com [IPv6:2607:f8b0:4864:20::1136]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "WR4" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4WjCmw10Ywz4NK1 for ; Mon, 12 Aug 2024 12:02:08 +0000 (UTC) (envelope-from tomek@cedro.info) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=cedro.info header.s=google header.b=Db2rQKYU; dmarc=none; spf=none (mx1.freebsd.org: domain of tomek@cedro.info has no SPF policy when checking 2607:f8b0:4864:20::1136) smtp.mailfrom=tomek@cedro.info Received: by mail-yw1-x1136.google.com with SMTP id 00721157ae682-690af536546so42953287b3.3 for ; Mon, 12 Aug 2024 05:02:07 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cedro.info; s=google; t=1723464126; x=1724068926; darn=freebsd.org; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :from:to:cc:subject:date:message-id:reply-to; bh=+mEbrOwwL9DNTM1ydifBwCLk6Xs9WWWQT7vzfe3dwVQ=; b=Db2rQKYUZrV0H6KQhoSd1ETkQN8CkcMGD0g9tvL5GhcytXDk/mJNJQjUbAsJ3siBIi K20dyFSwB9vaBhlctHRtSjIlVNMOnbe+LMt3cbLh2GYwkd3/ZAz/au5pv/R/4GBv2XAg mkUSAHXJ0HzAMQhkxZS//Q1oQF6RxkBkx45ynZDY3Uor6h5+tkaiOz651Awa35Mphjur +Crf6uSwcDfu73aT9B5ir3Nm+hFZ8qliq7iFKCQFSfbY1ssEuDpGaupOjRHtN2xmvzyZ UGNyoya7AvyMP8wtfPzaXfqoECrRJOwF9Opqttq1jalBwV1D/whZuz4No4HCswHFUtkF MjNw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1723464126; x=1724068926; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=+mEbrOwwL9DNTM1ydifBwCLk6Xs9WWWQT7vzfe3dwVQ=; b=truYpcYNIVpiP/mEww27S4P7pIijZaVpSj4wCgbH6uWfEtGV44S6AudmOVP8lRYfz5 ETlV+JI/yn6qP9Ce4pOVP53PU6s8xfH55NV4ZrJO4TmRuB6fDgAD4oTu4p8ocWpy7QJl S5pR/QwBwg52Mz5/tvwfrJXbCeoqXwTsElArV0YxnPiYGV9XVhqmHXEJfVjOWbd2kop2 fThZVqKN0YErIRIaMTZxRKa6NNXMBtD9VrJQHeDYNS7nfwWoEnKspMKVn1TihpTjRdxy jQ/XZFRfJEZ+DaMJ37B0WJIfTIeLYx9Dsif0TNyYFlu5R71JeMMTUszKYAjyMMFyLGHt ikYw== X-Gm-Message-State: AOJu0Ywf7OXPeAK17mMdIwmweTwEzYCrE864GFLYwWIkM+a4lGNBn53f aHzVvAF3Co2F/Bp+KfT5pOdBnEknFguO0MU3F6fGzA2jqTsp99EhFIvQHMsMhDc4TQIIZF4D2Cw = X-Google-Smtp-Source: AGHT+IHcS5rMWwg1Awr4T7n3He/469ACZmgCBaYc/kbHxwEkTN25EybLEBlWzTUCtgtk8w07LnUPMg== X-Received: by 2002:a05:690c:290f:b0:69d:ea8a:e274 with SMTP id 00721157ae682-6a972e257fcmr1138787b3.23.1723464126186; Mon, 12 Aug 2024 05:02:06 -0700 (PDT) Received: from mail-yw1-f176.google.com (mail-yw1-f176.google.com. [209.85.128.176]) by smtp.gmail.com with ESMTPSA id 00721157ae682-6a0a451b3d4sm8595127b3.110.2024.08.12.05.02.05 for (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Mon, 12 Aug 2024 05:02:05 -0700 (PDT) Received: by mail-yw1-f176.google.com with SMTP id 00721157ae682-67682149265so33811167b3.2 for ; Mon, 12 Aug 2024 05:02:05 -0700 (PDT) X-Received: by 2002:a05:690c:4611:b0:65f:80bb:e6b2 with SMTP id 00721157ae682-6a972297394mr1094607b3.14.1723464124823; Mon, 12 Aug 2024 05:02:04 -0700 (PDT) List-Id: Security issues List-Archive: https://lists.freebsd.org/archives/freebsd-security List-Help: List-Post: List-Subscribe: List-Unsubscribe: X-BeenThere: freebsd-security@freebsd.org Sender: owner-freebsd-security@FreeBSD.org MIME-Version: 1.0 References: <3n.009a.3432.on0ao44sc7.0@stuart.netline.com> In-Reply-To: <3n.009a.3432.on0ao44sc7.0@stuart.netline.com> From: Tomek CEDRO Date: Mon, 12 Aug 2024 14:01:52 +0200 X-Gmail-Original-Message-ID: Message-ID: Subject: Fwd: FreeBSD Releases Urgent Patch for High-Severity OpenSSH Vulnerability To: freebsd-security Content-Type: multipart/alternative; boundary="000000000000f18c48061f7b425b" X-Spamd-Bar: --- X-Spamd-Result: default: False [-3.29 / 15.00]; NEURAL_HAM_LONG(-1.00)[-1.000]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_HAM_SHORT(-0.99)[-0.994]; R_DKIM_ALLOW(-0.20)[cedro.info:s=google]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; RCVD_VIA_SMTP_AUTH(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; R_SPF_NA(0.00)[no SPF record]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; MIME_TRACE(0.00)[0:+,1:+,2:~]; MISSING_XM_UA(0.00)[]; ARC_NA(0.00)[]; DMARC_NA(0.00)[cedro.info]; TO_DN_ALL(0.00)[]; MLMMJ_DEST(0.00)[freebsd-security@freebsd.org]; FROM_EQ_ENVFROM(0.00)[]; FROM_HAS_DN(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::1136:from,209.85.128.176:received]; TO_MATCH_ENVRCPT_ALL(0.00)[]; PREVIOUSLY_DELIVERED(0.00)[freebsd-security@freebsd.org]; RCVD_TLS_LAST(0.00)[]; RCVD_COUNT_THREE(0.00)[3]; DKIM_TRACE(0.00)[cedro.info:+] X-Rspamd-Queue-Id: 4WjCmw10Ywz4NK1 --000000000000f18c48061f7b425b Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable :-) ---------- Forwarded message --------- From: The Hacker News Date: Mon, Aug 12, 2024 at 1:41=E2=80=AFPM Subject: FreeBSD Releases Urgent Patch for High-Severity OpenSSH Vulnerability THN Daily Updates [image: Newsletter] [image: cover] [Watch LIVE] Stopping GenAI Data Leakage: Practical Techniques for Modern Enterprises Get actionable steps and tools to harness the full potential of GenAI while protecting your sensitive data. Download Now Sponsored LATEST NEWS Aug 12, 2024 How Phishing Attacks Adapt Quickly to Capitalize on Current Events In 2023, no fewer than 94 percent of businesses were impacted by phishing attacks, a 40 percent increase compared to the previous year, according to r... ... Read More [image: Twitter] [image: Facebook] [image: LinkedIn] Researchers Uncover Vulnerabilities in Solarman and Deye Solar Systems Cybersecurity researchers have identified a number of security shortcomings in photovoltaic system management platforms operated by Chinese companies ... ... Read More [image: Twitter] [image: Facebook] [image: LinkedIn] SOC Total Cost of Ownership: In-House vs. Managed - Calculate Your TCO Evaluating SOC options? Understand the full TCO picture. Our quick assessment provides a tailored managed SOC price estimate based on your needs. Compare it to your in-house costs for a comprehensive view. Make an informed decision with clear, actionable ... Read More [image: Twitter] [image: Facebook] [image: LinkedIn] The AI Hangover is Here =E2=80=93 The End of the Beginning After a good year of sustained exuberance, the hangover is finally here. It=E2=80=99s a gentle one (for now), as the market corrects the share price= of the ... ... Read More [image: Twitter] [image: Facebook] [image: LinkedIn] FreeBSD Releases Urgent Patch for High-Severity OpenSSH Vulnerability The maintainers of the FreeBSD Project have released security updates to address a high-severity flaw in OpenSSH that attackers could potentially expl... ... Read More [image: Twitter] [image: Facebook] [image: LinkedIn] Industrial Remote Access Tool Ewon Cosy+ Vulnerable to Root Access Attacks Security vulnerabilities have been disclosed in the industrial remote access solution Ewon Cosy+ that could be abused to gain root privileges to the d... ... Read More [image: Twitter] [image: Facebook] [image: LinkedIn] EastWind Attack Deploys PlugY and GrewApacha Backdoors Using Booby-Trapped LNK Files The Russian government and IT organizations are the target of a new campaign that delivers a number of backdoors and trojans as part of a spear-phishi... ... Read More [image: Twitter] [image: Facebook] [image: LinkedIn] Rogue PyPI Library Solana Users, Steals Blockchain Wallet Keys Cybersecurity researchers have discovered a new malicious package on the Python Package Index (PyPI) repository that masquerades as a library from the... ... Read More [image: Twitter] [image: Facebook] [image: LinkedIn] [image: cover] [Watch LIVE] Stopping GenAI Data Leakage: Practical Techniques for Modern Enterprises Get actionable steps and tools to harness the full potential of GenAI while protecting your sensitive data. Download Now Sponsored This email was sent to XXX. You are receiving this newsletter because you opted-in to receive relevant communications from THN. To manage your email newsletter preferences, please click here. THN | 2nd Floor, 219, K.P BLock, Pitampura, Delhi --=20 CeDeROM, SQ7MHZ, http://www.tomek.cedro.info --000000000000f18c48061f7b425b Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable
:-)

---------- Forwarded message ---------
From: The Hacker News
Date: Mon, Aug 12= , 2024 at 1:41=E2=80=AFPM
Subject: FreeBSD Releases Urgent Patch for Hig= h-Severity OpenSSH Vulnerability



THN Daily Updates
3D"N=
3D"cover"

[= Watch LIVE] Stopping GenAI Data Leakage: Practical Techniques for Modern En= terprises

Get actionable steps and tools to harness the full potential of GenAI while= protecting your sensitive data.

Download Now Sponsored
LATEST NEWS Aug 12, 2024

How Phishing A= ttacks Adapt Quickly to Capitalize on Current Events

In 2023, no fewer than 94 percent of businesses were impacted by phishing= attacks, a 40 percent increase compared to the previous year, according to= r... ...=20

Read More
3D"Tw= 3D"Fa= 3D"Li=

Researchers Un= cover Vulnerabilities in Solarman and Deye Solar Systems

Cybersecurity researchers have identified a number of security shortcomin= gs in photovoltaic system management platforms operated by Chinese companie= s ... ...=20

Read More
3D"Tw= 3D"Fa= 3D"Li=

SOC Total Cost= of Ownership: In-House vs. Managed - Calculate Your TCO

Evaluating SOC options? Understand the full TCO picture. Our quick assess= ment provides a tailored managed SOC price estimate based on your needs. Co= mpare it to your in-house costs for a comprehensive view. Make an informed = decision with clear, actionable ...=20

Read More
3D"Tw= 3D"Fa= 3D"Li=

The AI Hangove= r is Here =E2=80=93 The End of the Beginning

After a good year of sustained exuberance, the hangover is finally here. = It=E2=80=99s a gentle one (for now), as the market corrects the share price= of the ... ...=20

Read More
3D"Tw= 3D"Fa= 3D"Li=

FreeBSD Releas= es Urgent Patch for High-Severity OpenSSH Vulnerability

The maintainers of the FreeBSD Project have released security updates to = address a high-severity flaw in OpenSSH that attackers could potentially ex= pl... ...=20

Read More
3D"Tw= 3D"Fa= 3D"Li=

Industrial Rem= ote Access Tool Ewon Cosy+ Vulnerable to Root Access Attacks

Security vulnerabilities have been disclosed in the industrial remote acc= ess solution Ewon Cosy+ that could be abused to gain root privileges to the= d... ...=20

Read More
3D"Tw= 3D"Fa= 3D"Li=

EastWind Attac= k Deploys PlugY and GrewApacha Backdoors Using Booby-Trapped LNK Files

The Russian government and IT organizations are the target of a new campa= ign that delivers a number of backdoors and trojans as part of a spear-phis= hi... ...=20

Read More
3D"Tw= 3D"Fa= 3D"Li=

Rogue PyPI Lib= rary Solana Users, Steals Blockchain Wallet Keys

Cybersecurity researchers have discovered a new malicious package on the = Python Package Index (PyPI) repository that masquerades as a library from t= he... ...=20

Read More
3D"Tw= 3D"Fa= 3D"Li=
3D"cover"

[= Watch LIVE] Stopping GenAI Data Leakage: Practical Techniques for Modern En= terprises

Get actionable steps and tools to harness the full potential of GenAI while= protecting your sensitive data.

Download Now Sponsored

This email was sent to XXX. You are receiving this newsletter because you o= pted-in to receive relevant communications from THN. To manage your email n= ewsletter preferences, please click here.

=C2=A0

THN | 2nd Floor, 21= 9, K.P BLock, Pitampura, Delhi



--=
--000000000000f18c48061f7b425b--