Update to new upstream version 3.5.4. This brings a fix for a security issue, CVE-2023-30577. This update also fixes the manual pages.
Archive for August, 2023
Update from 0.6.10 to 0.6.11: https://lib.openmpt.org/libopenmpt/2023/06/18/security- updates-0.7.2-0.6.11-0.5.25-release-0.4.37/
Update to 2.53.17
Update to version 4.17.10, Security fixes for CVE-2022-2127, CVE-2023-3347, CVE-2023-34966, CVE-2023-34967 and CVE-2023-34968 —- Fix netlogon LogonGetCapabilities level 2 error handling —- Update to version 4.17.9
Debian: DSA-5467-1: chromium security update
Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.
Debian: DSA-5466-1: ntpsec security update
It was discovered that ntpd in ntpsec, a secure, hardened, and improved implementation derived from the original NTP project, could crash if NTS is disabled and an NTS-enabled client request (mode 3) is received.
update to 115.0.5790.110. Fixes the following security issue: CVE-2022-4908 CVE-2022-4909 CVE-2022-4910 CVE-2022-4908 CVE-2022-4909 CVE-2022-4910 CVE-2022-4906 CVE-2022-4907 CVE-2022-4906 CVE-2022-4907 CVE-2023-2311 CVE-2023-2313 CVE-2023-2311 CVE-2023-2313 CVE-2023-2929 CVE-2023-2929 CVE-2023-2314 CVE-2023-2314 CVE-2023-3598 CVE-2023-3598
– Updated to latest upstream (116.0)
Debian: DSA-5465-1: python-django security update
Seokchan Yoon discovered that missing sanitising in the email and URL validators of Django, a Python web development framework, could result in denial of service.
RedHat: RHSA-2023-4475:01 Moderate: Gatekeeper Operator v0.2 security fixes
Gatekeeper Operator v0.2 security fixes and enhancements Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
RedHat: RHSA-2023-4471:01 Moderate: Release of OpenShift Serverless Client
Red Hat OpenShift Serverless 1.29.1 is now available. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from
RedHat: RHSA-2023-4472:01 Moderate: Release of OpenShift Serverless 1.29.1
Red Hat OpenShift Serverless version 1.29.1 is now available. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from
XMLTooling could be made to allow for unintended server side actions if it received specially crafted input.
Debian: DSA-5464-1: firefox-esr security update
Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, bypass of the same-origin policy, spoofing or sandbox bypass.
poppler could be made to crash if it opened a specially crafted file.
Cargo could be made to run programs as your login if it installed a specially crafted crate.
GNU cpio could be made to crash or run programs if it opened a specially crafted file.
RedHat: RHSA-2023-4461:01 Important: firefox security update
An update for firefox is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
RedHat: RHSA-2023-4460:01 Important: firefox security update
An update for firefox is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions.
RedHat: RHSA-2023-4469:01 Important: firefox security update
An update for firefox is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions.
RedHat: RHSA-2023-4468:01 Important: firefox security update
An update for firefox is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
RedHat: RHSA-2023-4470:01 Important: Red Hat Ansible Automation Platform
An update is now available for Red Hat Ansible Automation Platform 2.3 Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
Ubuntu 6272-1: OpenJDK 20 vulnerabilities
Several security issues were fixed in OpenJDK 20.
Several security issues were fixed in MaraDNS.
Several security issues were fixed in Vim.
Ubuntu 6269-1: GStreamer Good Plugins vulnerability
GStreamer Good Plugins could be made to crash or run programs if it opened a specially crafted file.
Ubuntu 6268-1: GStreamer Base Plugins vulnerabilities
GStreamer Base Plugins could be made to crash or run programs if it opened a specially crafted file.
Concerns over the European Union’s Cyber Resilience Act (CRA)
“Our shared goal is to further bolster the security of digital products without compromising the values of freedom, democracy, and innovation.” Learn more about the Cyber Resilience Act and its impact on open source.
RedHat: RHSA-2023-4431:01 Important: iperf3 security update
An update for iperf3 is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,
RedHat: RHSA-2023-4432:01 Important: iperf3 security update
An update for iperf3 is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions.