A critical security vulnerability (CVE-2024-53868) in Apache Traffic Server (ATS) allows attackers to exploit chunked message processing, leading to request smuggling attacks. Affected versions (9.2.0-9.2.9, 10.0.0-10.0.4) risk cache poisoning, session hijacking, and data exposure. Organizations are urged to update to patched versions and enhance security measures immediately.
OpenSSH 10.0 Released With Protocol Changes & Security Upgrades
OpenSSH 10.0, released on April 9, 2025, introduces crucial security enhancements, including the hybrid post-quantum algorithm mlkem768x25519-sha256 as the default for key agreement. It fully
