Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.
Several security issues were fixed in MySQL.
Several security issues were fixed in curl.
– New version 4.4.3-P1 (rhbz#2132240) – Fix for CVE-2022-2928 (rhbz#2132429) – Fix for CVE-2022-2929 (rhbz#2132430)
This is the October 2022 release of .NET Core 3.1 This updates .NET Core 3.1 SDK to 3.1.424 and Runtime to 3.1.30. This includes fixes for CVE-2022-41032
added patches to fix CVE-2022-41751
Jinja2 could be made to hang if it received specially crafted input.
An update for libksba is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,
Several security issues were fixed in the Linux kernel.
WordPress 6.1 Release Candidate 3 is now available for testing! You can download and help test RC3 in three ways. 6.1 is planned for general release on November 01, 2022. This version of the WordPress software is under development. Please do not install, run, or test this version of WordPress on production or mission-critical websites. Instead, it is recommended that you test Release Candidate 3 on a test server and site.
Several security issues were fixed in GNU C Library.
An update for kpatch-patch is now available for Red Hat Enterprise Linux 7.6 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,
An update for thunderbird is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
An update for thunderbird is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,
Open vSwitch could be made to crash or run programs if it received specially crafted network traffic.
Update to 2.10.3 * Fix CVE-2022-40303 * Fix CVE-2022-40304
– New upstream version (106.0.1)
An update for libksba is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
An update for libksba is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
An incomplete fix was discovered in Pillow.
Several security issues were fixed in MySQL.
Update to maintenance release 3.0.8
Igor Ponomarev discovered that LAVA, a continuous integration system for deploying operating systems onto physical and virtual hardware for running tests, used exec() on input passed to the server component.
## CKEditor 4.20 New Features: * [#5084](https://github.com/ckeditor/ckeditor4/issues/5084): Added the [`config.t abletools_scopedHeaders`](https://ckeditor.com/docs/ckeditor4/latest/api/CKEDITO R_config.html#cfg-tabletools_scopedHeaders) configuration option controlling the behaviour of table headers with and without the `[scope]` attribute. *
– [7.92](https://www.drupal.org/project/drupal/releases/7.92) – [7.91](https://www.drupal.org/project/drupal/releases/7.91) – [SA- CORE-2022-012 / CVE-2022-25275](https://www.drupal.org/sa-core-2022-012) – [7.90](https://www.drupal.org/project/drupal/releases/7.90) – [7.89](https://www.drupal.org/project/drupal/releases/7.89) –
## [3.1.47] – 2022-09-14 ### Security – Applied appropriate javascript and html escaping in mailto plugin to counter injection attacks [#454](https://github.com/smarty-php/smarty/issues/454) ### Fixed – Fixed use of `rand()` without a parameter in math function [#794](https://github.com/smarty-php/smarty/issues/794) – Fixed unselected
The security update announced as DSA 5257-1 caused regressions on certain systems using the amdgpu driver. Updated packages are now available to correct this issue.
Security fix for CVE-2022-2476
– Update to 20.10.20. – Mitigates CVE-2022-39253
Several security issues were fixed in the Linux kernel.
58 queries. 8.75 mb Memory usage. 0.639 seconds.