InfoSecBulletin Cybersecurity for mankind
Google fixed a serious Chrome bug known as CVE-2024-4058 in the ANGLE graphics layer engine along with four vulnerabilities in the Chrome web browser.
CVE-2024-4058 is a vulnerability in the ANGLE graphics layer engine. It allows attackers to execute arbitrary code on macOS systems. Toan Pham and Bao Pham from Qrious Secure reported a serious issue on 2024-04-02 and received a $16,000 reward for their research.
CVSS 9.6: IBM QRadar & Cloud Pak Security Flaws Exposed
ALERT
Thousands of IP addresses compromised nationwide: CIRT warn
New Android Malware ‘Crocodilus’ Targets Banks in 8 Countries
Qualcomm Patches 3 Zero-Days Used in Targeted Android Attacks
Critical RCE Flaw Patched in Roundcube Webmail
Hacker claim Leak of Deloitte Source Code & GitHub Credentials
CISA Issued Guidance for SIEM and SOAR Implementation
Linux flaws enable password hash theft via core dumps in Ubuntu, RHEL, Fedora
Australia enacts mandatory ransomware payment reporting
Why Govt Demands Foreign CCTV Firms to Submit Source Code?
The IT giant fixed a serious flaw called CVE-2024-4059, an Out of Bounds read in the V8 API, discovered by Eirik on 2024-04-08. Google fixed a high-severity flaw in Dawn. The flaw, tracked as CVE-2024-4060, is a Use after Free vulnerability in Dawn. Dawn is an open-source and cross-platform implementation of the WebGPU standard. The flaw was reported by wgslfuzz on April 9, 2024.
The Stable channel has been updated to version 124.0.6367.78/.79 for Windows and Mac. The Linux version 124.0.6367.78 will be released in the next few days/weeks.
