🐛 COMMON VULNERABILITIES AND EXPOSURES 10[−]
14 DecCVE-2025-39863 wifi: brcmfmac: fix use-after-free when rescheduling brcmf_btcoex_info workInformation published.MSRC.MICROSOFT.COM
14 DecCVE-2023-53370 drm/amdgpu: fix memory leak in mes self testInformation published.MSRC.MICROSOFT.COM
14 DecCVE-2025-39886 bpf: Tell memcg to use allow_spinning=false path in bpf_timer_init()Information published.MSRC.MICROSOFT.COM
14 DecCVE-2022-50390 drm/ttm: fix undefined behavior in bit shift for TTM_TT_FLAG_PRIV_POPULATEDInformation published.MSRC.MICROSOFT.COM
14 DecCVE-2022-50393 drm/amdgpu: SDMA update use unlocked iteratorInformation published.MSRC.MICROSOFT.COM
14 DecCVE-2022-50418 wifi: ath11k: mhi: fix potential memory leak in ath11k_mhi_register()Information published.MSRC.MICROSOFT.COM
14 DecCVE-2023-53371 net/mlx5e: fix memory leak in mlx5e_fs_tt_redirect_any_createInformation published.MSRC.MICROSOFT.COM
14 DecCVE-2023-53376 scsi: mpi3mr: Use number of bits to manage bitmap sizesInformation published.MSRC.MICROSOFT.COM
14 DecCVE-2023-53447 f2fs: don't reset unchangable mount option in f2fs_remount()Information published.MSRC.MICROSOFT.COM
14 DecCVE-2024-58241 Bluetooth: hci_core: Disable works on hci_unregister_devInformation published.MSRC.MICROSOFT.COM
🕵️ THREAT INTELLIGENCE 4[−]
14 DecWireshark 4.6.2 Released, (Sun, Dec 14th)Wireshark release 4.6.2 fixes 2 vulnerabilities and 5 bugs.
ISC.SANS.EDU
14 DecUpcoming Speaking EngagementsThis is a current list of where and when I am scheduled to speak: I’m speaking and signing books at the Chicago Public Library in Chicago, Illinois, USA, at 6:00 PM CT on February 5, 2026. Details to come. I’m speaking at Capricon 44 in Chicago, Illinois, USA. The convention runs…SCHNEIER.COM
14 DecHow we got hit by Shai-Hulud: A complete post-mortemsubmitted by cm0002 to cybersecurity 1 points | 0 comments https://trigger.dev/blog/shai-hulud-postmortemINFOSEC.PUB
14 DecFake ‘One Battle After Another’ torrent hides malware in subtitlessubmitted by cm0002 to cybersecurity 2 points | 0 comments https://www.bleepingcomputer.com/news/security/fake-one-battle-after-another-torrent-hides-malware-in-subtitles/INFOSEC.PUB
📡 INFOSEC NEWS 1[−]
14 DecBeware: PayPal subscriptions abused to send fake purchase emailsAn email scam is abusing abusing PayPal's "Subscriptions" billing feature to send legitimate PayPal emails that contain fake purchase notifications embedded in the Customer service URL field. [...]BLEEPINGCOMPUTER.COM