Advisories Archives - Information Security at University of Toronto

Review the latest advisories

The Incident Response team sends advisories about security vulnerabilities to U of T’s technical staff. If you have questions or concerns, contact security.response@utoronto.ca.

The advisories published here focus on those we feel are most relevant to the university environment but should not be considered an exhaustive list. The Canadian Centre for Cyber Security publishes advisories on potential and imminent cyber threats and vulnerabilities and provides a more comprehensive list of advisories.

View more advisories

“Copy Fail” Linux kernel LPE and container escape
April 30, 2026

We’ve been notified of this local privilege escalation vulnerability, in Linux kernel 4.14 (introduced in 2017), that affects most flavours of Linux.
Ninja Forms file uploads – unauthenticated remote code execution
April 22, 2026

A critical unauthenticated Remote Code Execution (RCE) vulnerability has been identified in the Ninja Forms – File Uploads extension for WordPress.
Vulnerability advisory CrackArmor
March 17, 2026

Qualys Threat Research Unit (TRU) disclosed a set of nine vulnerabilities in Linux AppArmor, collectively named "CrackArmor".
OpenClaw vulnerability notification
February 4, 2026

In late January 2026, security researchers at DepthFirst discovered a flaw in OpenClaw – formerly known as Moltbot and Clawdbot – only a few months after the platform’s rapid rise in popularity.
NPM package distribution – supply chain poisoning
December 4, 2025

Multiple NPM packages were compromised in late 2025 through account takeovers and malicious code injections.
React2Shell vulnerability
December 4, 2025

A critical remote code execution vulnerability (CVE-2025-55182) has been found in React Server Components and in widely used frameworks such as Next.js.
Vulnerability impacting Microsoft Windows Server Update Services
October 24, 2025

On October 24, 2025, Microsoft published an out-of-band security update to a critical vulnerability in the Windows Server Update Service (WSUS).
Notification regarding Dell laptop vulnerabilities
August 8, 2025

A major security advisory was recently issued for Dell laptops, affecting millions of devices across more than 100 Latitude and Precision models.
CanSSOC advisory: Active exploitation – Microsoft releases patch for SharePoint vulnerability in version 2019 and subscription edition
July 21, 2025

CanSSOC became aware of a critical Remote Code Execution (RCE) vulnerability in Apache Tomcat, tracked as CVE-2025-24813.
Notification regarding two new vulnerabilities in SUDO
July 3, 2025

The Stratascale Cyber Research Unit (CRU) team has identified two vulnerabilities in the Sudo utility. These vulnerabilities can result in the escalation of privileges to root on the impacted system.
Multiple vulnerabilities disclosed on multiple Apple operating systems
May 1, 2025

The “AirBorne” vulnerability is a serious zero-click, remote code execution (RCE) exploit affecting Apple AirPlay-enabled devices.
CanSSOC advisory: Vulnerability – Critical Apache Tomcat RCE vulnerability actively exploited
March 20, 2025

CanSSOC became aware of a critical Remote Code Execution (RCE) vulnerability in Apache Tomcat, tracked as CVE-2025-24813.

Advisories

Advisories

Advisories

Review the latest advisories

Statement of Land Acknowledgement