Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Database Security

Authentication

Mobile

Privacy

Compliance

Identity & Access Management

Security Monitoring

Advanced Threats

Insider Threats

Vulnerability Management

To InformationWeek

Network Computing Dark Reading

Advertise

LIVE EVENTS

Data Center World

The Leading Conference & Expo for Data Center and IT Infrastructure Professionals

March 16-19, 2020

Henry B. Gonzalez Convention Center

San Antonio, Texas

Black Hat USA 2020

August 1-6, 2020

Las Vegas

Interop

The Business of IT - Technology, People and Process

September 21-24, 2020

Austin Convention Center, Texas

ONLINE EVENTS

Check out these online events that are available from the comfort of your computer! View our complete list of Upcoming Webinars so you can attend a live session or our Webinar Archives for webinars that are available On-Demand!

Upcoming Online Events

03/05

Zero-Trust In Practice

03/10

Preventing Credential Theft & Account Takeovers

03/18

Shaking Off Security Alert Fatigue: Tips for Taking Control

03/23

Cyber Attack Evasion Techniques

04/29

5 Steps to Integrate SAST into the DevSecOps Pipeline

Don't forget to view our complete list of Webinar Archives for webinars that are available On-Demand!

Editors' Choice

California Man Arrested for Politically Motivated DDoS

Dark Reading Staff 2/21/2020

Cybersecurity Industry: It's Time to Stop the Victim Blame Game

Jessica Smith, Senior Vice President, The Crypsis Group, 2/25/2020

Google Adds More Security Features Via Chronicle Division

Robert Lemos, Contributing Writer, 2/25/2020

Live Events

Webinars

March 16-19, 2020: Data Center World Registration is open! Join Us

Data Center World: The leading conference & expo for Data Center and IT Infrastructure Professionals. Register Today!

Get Insights: Cisco vs Microsoft & More at EC20 Orlando

More Informa Tech Live Events

White Papers

IT Careers: Tech Drives Constant Change

Data Protection: Verify Anything and Everything

6 Emerging Cyber Threats That Enterprises Face in 2020

Research Report: Rethinking Security for Digital Transformation

Protection Inside and Outside the Office: The New State of Cybersecurity

More White Papers

Video

Cartoon

Latest Comment: "... you see, he has solid cyber security knowledge, still we cannot hire him with his long hair and T-shirt"

Cartoon Archive

Current Issue

6 Emerging Cyber Threats That Enterprises Face in 2020

This Tech Digest gives an in-depth look at six emerging cyber threats that enterprises could face in 2020. Download your copy today!

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

How Enterprises Are Developing and Maintaining Secure Applications

How Enterprises Are Developing and Maintaining Secure Applications

The concept of application security is well known, but application security testing and remediation processes remain unbalanced. Most organizations are confident in their approach to AppSec, although others seem to have no approach at all. Read this report to find out more.

Download Now!

How Enterprises are Attacking the Cybersecurity Problem

How Data Breaches affect the Enterprise

Rethinking Enterprise Data Defense

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading"

Dark Reading - Bug Report

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2020-9431
PUBLISHED: 2020-02-27

In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the LTE RRC dissector could leak memory. This was addressed in epan/dissectors/packet-lte-rrc.c by adjusting certain append operations.

CVE-2020-9432
PUBLISHED: 2020-02-27

openssl_x509_check_host in lua-openssl 0.7.7-1 mishandles X.509 certificate validation because it uses lua_pushboolean for certain non-boolean return values.

CVE-2020-9433
PUBLISHED: 2020-02-27

openssl_x509_check_email in lua-openssl 0.7.7-1 mishandles X.509 certificate validation because it uses lua_pushboolean for certain non-boolean return values.

CVE-2020-9434
PUBLISHED: 2020-02-27

openssl_x509_check_ip_asc in lua-openssl 0.7.7-1 mishandles X.509 certificate validation because it uses lua_pushboolean for certain non-boolean return values.

CVE-2020-6383
PUBLISHED: 2020-02-27

Type confusion in V8 in Google Chrome prior to 80.0.3987.116 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]