Several vulnerabilities have been discovered in the OpenJDK Java runtime, which may result in bypass of sandbox restrictions or denial of service. For the oldstable distribution (bullseye), these problems have been fixed
Archive for October 27th, 2023
**Redis 7.0.14** Released Wed 18 Oct 2023 10:33:40 IDT Upgrade urgency SECURITY: See security fixes below. Security fixes * (**CVE-2023-45145**) The wrong order of listen(2) and chmod(2) calls creates a race condition that can be used by another process to bypass desired Unix socket permissions on startup.
Update to 4.17.12 – Security fixes for CVE-2023-3961, CVE-2023-4091, CVE-2023-4154, CVE-2023-42669 and CVE-2023-42670
– Update to latest upstream (119.0)
**Redis 7.0.14** Released Wed 18 Oct 2023 10:33:40 IDT Upgrade urgency SECURITY: See security fixes below. Security fixes * (**CVE-2023-45145**) The wrong order of listen(2) and chmod(2) calls creates a race condition that can be used by another process to bypass desired Unix socket permissions on startup.
An important security issue was discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.