Microsoft issues emergency update for macOS and Linux ASP.NET threat

Microsoft released an emergency patch for its ASP.NET Core to fix a high-severity vulnerability that allows unauthenticated ...
The Hacker News

Microsoft Patches Critical ASP.NET Core CVE-2026-40372 Privilege Escalation Bug

"A regression in the Microsoft.AspNetCore.DataProtection 10.0.0-10.0.6 NuGet packages cause the managed authenticated ...
PC World

Linux ‘grinch’ vulnerability could put a hole in your security stocking

A grinch may be snatching away some year-end holiday time, forcing Linux system administrators to fill a gaping security hole in their systems. Named after the proverbially grumpy Dr. Seuss character, ...
CRN

Linux Vulnerabilities Spur Enterprise Warning

Recently, the U.S. Computer Emergency Readiness Team, or CERT, reported that during 2005, Linux and Unix combined had 2,328 vulnerabilities, compared with 812 vulnerabilities for Microsoft Windows.
ZDNet

Patch now: This serious Linux vulnerability affects nearly all distributions

As security holes go, CVE-2023-4911, aka "Looney Tunables," isn't horrid. It has a Common Vulnerability Scoring System (CVSS) score of 7.8, which is ranked as important, not critical. On the other ...
ZDNet

Major Linux PolicyKit security vulnerability uncovered: Pwnkit

If it's not one thing, it's another. After one real Linux problem -- the heap overflow bug in the Linux kernel's fs/fs_context.c program -- is found and fixed, then a new security problem is ...
TechRepublic

Patch now: A newly discovered critical Linux vulnerability probably affects your systems

Patch now: A newly discovered critical Linux vulnerability probably affects your systems Your email has been sent Dubbed PwnKit, it's been sitting in a user policy module used in Linux distros for ...