⚠️ CSG is failing to honor its GPL obligations, say critics - The Register
「 Cloud Software Group – the post-merger offspring of Citrix and Tibco – has decided to withdraw the community edition of its JasperReports Server. Now all you can get is the commercial edition, with a 30-day free trial 」
Citrix Hypervisor Security Bulletin for CVE-2023-46838. "An issue has been discovered that affects Citrix Hypervisor 8.2 CU1 LTSR and may allow malicious privileged code in a guest VM to cause the host to crash or become unresponsive." We have released a hotfix (NOTE: NOT A PROPER PATCH) to address this issue.
🔗 https://support.citrix.com/article/CTX587605/citrix-hypervisor-security-bulletin-for-cve202346838
Citrix is warning of active exploitation of two zero-day vulnerabilities in its Netscaler ADC and Gateway appliances. The vulnerabilities are tracked as CVE-2023-6548 and CVE-2023-6549, and when exploited, can lead to remote code execution and denial of service. Administrators are advised to not expose management interface to the Internet, and patch ASAP.
Citrix security advisory contains two zero-days: Two vulnerabilities have been discovered in NetScaler ADC (formerly Citrix ADC) and NetScaler Gateway (formerly Citrix Gateway):