home.social

#criticalupdate — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #criticalupdate, aggregated by home.social.

  1. 🔒 New Kitten & JSDB Releases

    Security fix, JSDB 6.0.1.

    This is a critical update.

    • JSDB¹ versions 6.0.0 and below suffer from potential data corruption/arbitrary code execution as string keys were not being sanitised in the same way string values were² (so this is relevant to you if you’re storing untrusted data as keys in your data structures in JSDB and/or Kitten databases without carrying out any of your own sanitisation at the application level).

    • The latest Kitten release uses JSDB version 6.0.1. Your deployment servers will automatically update in the next few hours. On your development machines, please run `kitten update` in your terminal or use the Update feature in Kitten Settings from your browser.

    • If you are using Kitten’s Database App Modules³ feature in your apps, you will have installed JSDB manually and you should update your installation to version 6.0.1.

    ¹ codeberg.org/small-tech/jsdb/
    ² codeberg.org/small-tech/jsdb/i
    ³ kitten.small-web.org/reference

    #Kitten #SmallWeb #JSDB #JavaScriptDatabase #KittenRelease #JSDBRelease #securityUpdate #criticalUpdate

  2. 🔒 New Kitten & JSDB Releases

    Security fix, JSDB 6.0.1.

    This is a critical update.

    • JSDB¹ versions 6.0.0 and below suffer from potential data corruption/arbitrary code execution as string keys were not being sanitised in the same way string values were² (so this is relevant to you if you’re storing untrusted data as keys in your data structures in JSDB and/or Kitten databases without carrying out any of your own sanitisation at the application level).

    • The latest Kitten release uses JSDB version 6.0.1. Your deployment servers will automatically update in the next few hours. On your development machines, please run `kitten update` in your terminal or use the Update feature in Kitten Settings from your browser.

    • If you are using Kitten’s Database App Modules³ feature in your apps, you will have installed JSDB manually and you should update your installation to version 6.0.1.

    ¹ codeberg.org/small-tech/jsdb/
    ² codeberg.org/small-tech/jsdb/i
    ³ kitten.small-web.org/reference

    #Kitten #SmallWeb #JSDB #JavaScriptDatabase #KittenRelease #JSDBRelease #securityUpdate #criticalUpdate

  3. 🔒 New Kitten & JSDB Releases

    Security fix, JSDB 6.0.1.

    This is a critical update.

    • JSDB¹ versions 6.0.0 and below suffer from potential data corruption/arbitrary code execution as string keys were not being sanitised in the same way string values were² (so this is relevant to you if you’re storing untrusted data as keys in your data structures in JSDB and/or Kitten databases without carrying out any of your own sanitisation at the application level).

    • The latest Kitten release uses JSDB version 6.0.1. Your deployment servers will automatically update in the next few hours. On your development machines, please run `kitten update` in your terminal or use the Update feature in Kitten Settings from your browser.

    • If you are using Kitten’s Database App Modules³ feature in your apps, you will have installed JSDB manually and you should update your installation to version 6.0.1.

    ¹ codeberg.org/small-tech/jsdb/
    ² codeberg.org/small-tech/jsdb/i
    ³ kitten.small-web.org/reference

    #Kitten #SmallWeb #JSDB #JavaScriptDatabase #KittenRelease #JSDBRelease #securityUpdate #criticalUpdate

  4. 🔒 New Kitten & JSDB Releases

    Security fix, JSDB 6.0.1.

    This is a critical update.

    • JSDB¹ versions 6.0.0 and below suffer from potential data corruption/arbitrary code execution as string keys were not being sanitised in the same way string values were² (so this is relevant to you if you’re storing untrusted data as keys in your data structures in JSDB and/or Kitten databases without carrying out any of your own sanitisation at the application level).

    • The latest Kitten release uses JSDB version 6.0.1. Your deployment servers will automatically update in the next few hours. On your development machines, please run `kitten update` in your terminal or use the Update feature in Kitten Settings from your browser.

    • If you are using Kitten’s Database App Modules³ feature in your apps, you will have installed JSDB manually and you should update your installation to version 6.0.1.

    ¹ codeberg.org/small-tech/jsdb/
    ² codeberg.org/small-tech/jsdb/i
    ³ kitten.small-web.org/reference

    #Kitten #SmallWeb #JSDB #JavaScriptDatabase #KittenRelease #JSDBRelease #securityUpdate #criticalUpdate

  5. 🔒 New Kitten & JSDB Releases

    Security fix, JSDB 6.0.1.

    This is a critical update.

    • JSDB¹ versions 6.0.0 and below suffer from potential data corruption/arbitrary code execution as string keys were not being sanitised in the same way string values were² (so this is relevant to you if you’re storing untrusted data as keys in your data structures in JSDB and/or Kitten databases without carrying out any of your own sanitisation at the application level).

    • The latest Kitten release uses JSDB version 6.0.1. Your deployment servers will automatically update in the next few hours. On your development machines, please run `kitten update` in your terminal or use the Update feature in Kitten Settings from your browser.

    • If you are using Kitten’s Database App Modules³ feature in your apps, you will have installed JSDB manually and you should update your installation to version 6.0.1.

    ¹ codeberg.org/small-tech/jsdb/
    ² codeberg.org/small-tech/jsdb/i
    ³ kitten.small-web.org/reference

    #Kitten #SmallWeb #JSDB #JavaScriptDatabase #KittenRelease #JSDBRelease #securityUpdate #criticalUpdate

  6. You Should Update Apple iOS and Google Chrome ASAP - Plus: Microsoft patches over 60 vulnerabilities, Mozilla fixes two Firefox zero-day bugs,... - wired.com/story/apple-ios-goog #security/cyberattacksandhacks #security/securityadvice #criticalupdate #security

  7. Here Are the Google and Microsoft Security Updates You Need Right Now - Plus: Mozilla patches 12 flaws in Firefox, Zoom fixes seven vulnerabilities, and more cri... - wired.com/story/here-are-the-m #security/cyberattacksandhacks #security/securityadvice #criticalupdate #security

  8. Apple and Google Just Patched Their First Zero-Day Flaws of the Year - Plus: Google fixes dozens of Android bugs, Microsoft rolls out nearly 50 patches, Mozilla... - wired.com/story/apple-google-z #security/cyberattacksandhacks #security/securityadvice #criticalupdate #security

  9. Google Fixes Nearly 100 Android Security Issues - Plus: Apple shuts down a Flipper Zero Attack, Microsoft patches more than 30 vulnerabilit... - wired.com/story/google-100-and #security/cyberattacksandhacks #security/securityadvice #criticalupdate #security

  10. Google Fixes a Seventh Zero-Day Flaw in Chrome—Update Now - Plus: Major security patches from Microsoft, Mozilla, Atlassian, Cisco, and more. - wired.com/story/google-chrome- #security/cyberattacksandhacks #security/securityadvice #criticalupdate #security

  11. Apple, Google, and Microsoft Just Patched Some Spooky Security Flaws - Plus: Major vulnerability fixes are now available for a number of enterprise giants, incl... - wired.com/story/apple-google-m #security/securityadvice #criticalupdate #security

  12. Apple, Microsoft, and Google Just Fixed Multiple Zero-Day Flaws - Plus: Mozilla patches 10 Firefox bugs, Cisco fixes a vulnerability with a rare maximum se... - wired.com/story/apple-google-m #security/cyberattacksandhacks #criticalupdate #security

  13. Google Fixes Serious Security Flaws in Chrome and Android - Plus: Mozilla patches more than a dozen vulnerabilities in Firefox, and enterprise compan... - wired.com/story/google-android #security/cyberattacksandhacks #criticalupdate #security

  14. Apple iOS, Google Android Patch Zero-Days in July Security Updates - Plus: Mozilla fixes two high-severity bugs in Firefox, Citrix fixes a flaw that was used ... - wired.com/story/apple-google-m #security/securityadvice #criticalupdate #security

  15. Apple, Google, and MOVEit Just Patched Serious Security Flaws - Plus: Microsoft fixes 78 vulnerabilities, VMWare plugs a flaw already used in attacks, an... - wired.com/story/apple-google-m #security/cyberattacksandhacks #criticalupdate #security

  16. Apple's iOS 16.5 Fixes 3 Security Bugs Already Used in Attacks - Plus: Microsoft patches two zero-day flaws, Google’s Android and Chrome get some much-nee... - wired.com/story/apple-ios-16-5 #security/cyberattacksandhacks #criticalupdate #security

  17. Apple, Google, and Microsoft Just Fixed Zero-Day Security Flaws - Firefox gets a needed tune-up, SolarWinds squashes two high-severity bugs, Oracle patches... - wired.com/story/apple-google-m #security/cyberattacksandhacks #criticalupdate #security

  18. Apple's iOS 16.4: Security Updates Are Better Than a Goose Emoji - Plus: Microsoft Outlook and Android patch serious flaws, Chrome and Firefox get fixes, an... - wired.com/story/ios-16-4-outlo #security/cyberattacksandhacks #criticalupdate #security

  19. Apple Users Need to Update iOS Now to Patch Serious Flaws - Plus: Microsoft fixes several zero-day bugs, Google patches Chrome and Android, Mozilla r... - wired.com/story/apple-ios-16-3 #security/securityadvice #criticalupdate #security

  20. You Really Need to Update Firefox and Android Right Now - January saw a slew of security patches for iOS, Chrome, Windows, and more. - wired.com/story/firefox-androi #security/cyberattacksandhacks #security/securityadvice #criticalupdate #security

  21. Update Android Right Now to Fix a Scary Remote-Execution Flaw - Plus: Patches for Apple iOS 16, Google Chrome, Windows 10, and more. - wired.com/story/android-ios-16 #security/cyberattacksandhacks #security/securitynews #criticalupdate #security

  22. Drop What You're Doing and Update iOS, Android, and Windows - Plus: Major patches dropped this month for Chrome, Firefox, VMware, Cisco, Citrix, and SA... - wired.com/story/ios-android-wi #security/securityadvice #criticalupdate #security