Several security vulnerabilities have been discovered in the Tomcat servlet and JSP engine. CVE-2023-46589
Archive for April 17th, 2024
Jetty 9 is a Java based web server and servlet engine. It was discovered that remote attackers may leave many HTTP/2 connections in ESTABLISHED state (not closed), TCP congested and idle. Eventually the server will stop accepting new connections from valid clients which can cause a denial of service.
Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code or clickjacking.
Several security issues were fixed in Apache HTTP Server.
Several security issues were fixed in the Linux kernel.
New upstream release (125.0)
The 6.8.6 stable kernel update contains a number of important fixes across the tree.