Fix regression in IPv6 hosntames parsing —- New upstream release fixing (CVE-2023-48795, CVE-2023-6004, CVE-2023-6918)
Comment
Archive for January, 2024
119 results.
Ubuntu 6570-1: PostgreSQL vulnerabilities
Jan09
on January 9, 2024
at 7:31 pm
Posted In: Uncategorized
Several security issues were fixed in PostgreSQL.
Ubuntu 6573-1: Linux kernel (Azure) vulnerabilities
Jan09
on January 9, 2024
at 7:16 pm
Posted In: Uncategorized
Several security issues were fixed in the Linux kernel.
Automatic update for podman-4.8.3-1.fc39. ##### **Changelog for podman** “` * Wed Jan 03 2024 Packit
WP Briefing: Episode 70: A Look Ahead at WordPress in 2024
Jan08
on January 8, 2024
at 1:00 pm
Posted In: Uncategorized
Curious about WordPress’s big-picture items for 2024? Phase 3, Data Liberation, new meetups, and more, get the spotlight in this episode. Join Executive Director Josepha Haden Chomphosy for all this, plus a small list of big things coming up in the next two weeks.
GnuTLS could be made to expose sensitive information over the network.
Fedora 38: perl-Spreadsheet-ParseExcel 2023-84d3cc47b1
Jan08
on January 8, 2024
at 2:15 am
Posted In: Uncategorized
Fix for CVE-2023-7101 (unvalidated input can lead to arbitrary code execution vulnerability).
Fedora 38: python-aiohttp 2023-1f06098c71
Jan08
on January 8, 2024
at 1:58 am
Posted In: Uncategorized
Security fix for CVE-2023-49081, CVE-2023-49082. Update `python-aiohttp` to 3.9.1. Patch `python-pysqeezebox` and `python-wled` so they do not have an implicit dependency on `python-async-timeout` via `python-aiohttp`. https://github.com/aio-libs/aiohttp/releases/tag/v3.9.0 https://github.com/aio- libs/aiohttp/releases/tag/v3.9.1
Bugfix release. Includes security fixes for CVE-2021-42260 and CVE-2023-34194 and a fix for incorrect text element encoding (upstream isssue #51).
Fedora 38: python-pysqueezebox 2023-1f06098c71
Jan08
on January 8, 2024
at 1:48 am
Posted In: Uncategorized
Security fix for CVE-2023-49081, CVE-2023-49082. Update `python-aiohttp` to 3.9.1. Patch `python-pysqeezebox` and `python-wled` so they do not have an implicit dependency on `python-async-timeout` via `python-aiohttp`. https://github.com/aio-libs/aiohttp/releases/tag/v3.9.0 https://github.com/aio- libs/aiohttp/releases/tag/v3.9.1
update to 120.0.6099.199 – CVE-2023-6879 aom: heap-buffer-overflow on frame size change – CVE-2023-7104 sqlite: heap-buffer-overflow at sessionfuzz – CVE-2024-0222: Use after free in ANGLE – CVE-2024-0223: Heap buffer overflow in ANGLE – CVE-2024-0224: Use after free in WebAudio – CVE-2024-0225: Use after free in WebGPU
The Ultimate WordPress Security Guide – Step by Step
Jan06
on January 6, 2024
at 1:09 am
Posted In: Uncategorized
Anyone with a WordPress website knows how important effective security is, both to protect your site from threats and to ensure your users stay safe. However, a lax approach to WordPress security could lead to penalization: thousands of websites are blacklisted by Google daily due to the presence of malware or phishing. With all that in mind, it’s crucial that you stay up to date on the latest WordPress security methods and innovations. And that’s why we have written this comprehensive guide to WordPress security. Ultimately, WordPress is a secure platform at its core, and numerous developers run regular audits…
The post The Ultimate WordPress Security Guide – Step by Step appeared first on Plesk.
Ubuntu 6549-4: Linux kernel (Intel IoTG) vulnerabilities
Jan05
on January 5, 2024
at 1:41 pm
Posted In: Uncategorized
Several security issues were fixed in the Linux kernel.
The Month in WordPress – December 2023
Jan05
on January 5, 2024
at 10:10 am
Posted In: Uncategorized
As 2023 came to a close, WordPress bid farewell with the much-anticipated annual State of the Word and the 6.5 roadmap, among other exciting updates. Read on to learn more about the community’s end-of-year celebrations and catch a sneak peek of what’s in store for the year ahead. Highlights from State of the Word On […]
update to 120.0.6099.199 – CVE-2023-6879 aom: heap-buffer-overflow on frame size change – CVE-2023-7104 sqlite: heap-buffer-overflow at sessionfuzz – CVE-2024-0222: Use after free in ANGLE – CVE-2024-0223: Heap buffer overflow in ANGLE – CVE-2024-0224: Use after free in WebAudio – CVE-2024-0225: Use after free in WebGPU
Debian: DSA-5597-1: exim4 security update
Jan04
on January 4, 2024
at 10:37 pm
Posted In: Uncategorized
It was discovered that Exim, a mail transport agent, can be induced to accept a second message embedded as part of the body of a first message in certain configurations where PIPELINING or CHUNKING on incoming connections is offered.
Debian: DSA-5596-1: asterisk security update
Jan04
on January 4, 2024
at 10:19 pm
Posted In: Uncategorized
Multiple security vulnerabilities have been discovered in Asterisk, an Open Source Private Branch Exchange. CVE-2023-37457
Debian: DSA-5595-1: chromium security update
Jan04
on January 4, 2024
at 7:14 pm
Posted In: Uncategorized
Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.
Web server security is a broad term covering the processes and solutions that keep web servers secure. Web server security encompasses three elements: host, network, and physical. For example, a comprehensive firewall can protect network connections, while unauthorized users are prevented from accessing a network by specific hardware or software components. When discussing web server security, we can look at two key areas: Securing a web server’s data Securing the services that run on a web server Access controls and operating system security protect a web server’s data, while antivirus software and firewalls safeguard the services that run on said…
The post Web Server Security – Beginner’s Guide appeared first on Plesk.
Several security issues were fixed in SQLite.
Several security issues were fixed in OpenSSH.
Ubuntu 6564-1: Node.js vulnerabilities
Jan03
on January 3, 2024
at 11:39 am
Posted In: Uncategorized
Several security issues were fixed in Node.js.
– Update to 22.05.11 – Closes CVE-2023-49933 through CVE-2023-49938
– Update to 22.05.11 – Closes CVE-2023-49933 through CVE-2023-49938
Debian: DSA-5594-1: linux security update
Jan02
on January 2, 2024
at 9:34 pm
Posted In: Uncategorized
Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks.
Ubuntu 6563-1: Thunderbird vulnerabilities
Jan02
on January 2, 2024
at 10:15 am
Posted In: Uncategorized
Several security issues were fixed in Thunderbird.
Several security issues were fixed in Firefox.
MariaDB vs MongoDB: Which One To Choose?
Jan01
on January 1, 2024
at 11:41 pm
Posted In: Uncategorized
In this guide we will help you to understand better what is the difference between MariaDB and MongoDB. What is MariaDB? MariaDB, emerging in 2009, stands as a significant fork of the widely-used open-source database system, MySQL. The inception of MariaDB was primarily influenced by the acquisition of MySQL AB by Oracle Corporation, leading to concerns within the MySQL community regarding the future of the project’s open-source commitment. Developed by Monty Widenius, one of the original creators of MySQL, MariaDB was designed to be a drop-in replacement for MySQL, ensuring compatibility and ease of transition for existing MySQL users. The…
The post MariaDB vs MongoDB: Which One To Choose? appeared first on Plesk.
Debian: DSA-5593-1: linux security update
Jan01
on January 1, 2024
at 2:07 pm
Posted In: Uncategorized
Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks.