DistroWatch Weekly, Issue 1132

July 27, 2025

The DistroWatch news feed is brought to you by TUXEDO COMPUTERS. This week in DistroWatch Weekly:
Review: deepin 25.0.1
News: A proposal to enable Flathub on Fedora, FreeBSD plans desktop installation option, Wayback publishes its first major release
Questions and answers: Wars in the open source community
Released last week: Br OS 12.11, Liya 2.4, OPNsense 25.7, DragonFly BSD 6.4.2, Slackel 8.0….

Original Article: Read MoreÂ

Source: DistroWatch.com: NewsÂ

Previous Articlequick-lint-js – finds bugs in JavaScript programs

Next Article Microsoft confirms Windows 11 24H2 stability issues, affecting games, tests performance fixes

Highlights

CVE-2025-6810 – Mescius ActiveReports.NET Deserialization Remote Code Execution

July 7, 2025

CVE ID : CVE-2025-6810

Published : July 7, 2025, 3:15 p.m. | 2 hours, 59 minutes ago

Description : Mescius ActiveReports.NET ReadValue Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Mescius ActiveReports.NET. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation.

The specific flaw exists within the implementation of the ReadValue method. The issue results from the lack of proper validation of user-supplied data, which can result in deserialization of untrusted data. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-25246.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Error’d: Free Birds

From Data To Decisions: UX Strategies For Real-Time Dashboards

Honeycomb launches AI observability suite for developers

Low-Code vs No-Code Platforms for Node.js: What CTOs Must Know Before Investing

Distribution Release: Q4OS 6.1

GitHub Availability Report: August 2025

GitHub Copilot coding agent 101: Getting started with agentic workflows on GitHub

Compiling Multiple CSS Files into One

Learning from PHP Log to File Example

Learning from PHP Log to File Example

Online EMI Calculator using PHP – Calculate Loan EMI, Interest, and Amortization Schedule

Package efficiency and dependency hygiene

Dmitry — The Deep Magic

Dmitry — The Deep Magic

Right way to record and share our Terminal sessions

Windows 11 Powers Up WSL: How GPU Acceleration & Kernel Upgrades Change the Game

DistroWatch Weekly, Issue 1132

Dmitry — The Deep Magic

Right way to record and share our Terminal sessions

CVE-2025-5422 – “Juzaweb CMS Remote Unauthenticated Access Control Bypass”

MediaTek July 2025 Security Update Patches Vulnerabilities Affecting a Wide Range of Their Chipsets

IBM Releases Granite 3.3 8B: A New Speech-to-Text (STT) Model that Excels in Automatic Speech Recognition (ASR) and Automatic Speech Translation (AST)

How to preorder the new Surface Pro and Surface Laptop

CVE-2025-6810 – Mescius ActiveReports.NET Deserialization Remote Code Execution

It’s sturdy, seamless, and back on sale — the best display setup I’ve found, period

Don’t Tap The Glass Tyler The Creator Shirt

CVE-2025-5851 – Tenda AC15 HTTP POST Request Handler Buffer Overflow Vulnerability

DistroWatch Weekly, Issue 1132

Related Posts