Ike.ninja

nano could be made to give users administrator privileges.

Update to latest upstream

WordPress 6.7 Beta 3 is now ready for testing! This beta version of the WordPress software is under development. Please do not install, run, or test this version of WordPress on production or mission-critical websites. Instead, it is recommended you evaluate Beta 3 on a test server and site. You can test WordPress 6.7 Beta […]

nginx could be made to crash if it received specially crafted network traffic.

Update to 2.46.1

Elyas Damej discovered that a sandbox mechanism in ReportLab, a Python library to create PDF documents, could be bypassed which may result in the execution of arbitrary code when converting malformed HTML to a PDF document.

Update to 129.0.6668.100 * CVE-2024-9602: Type Confusion in V8 * CVE-2024-9603: Type Confusion in V

Automatic update for buildah-1.37.4-1.fc41, podman-5.2.4-1.fc41. Changelog for buildah * Mon Oct 07 2024 Packit – 2:1.37.4-1 – Update to 1.37.4 upstream release Changelog for podman

Multiple security issues were discovered in Thunderbird, which could result in the execution of arbitrary code. For the stable distribution (bookworm), these problems have been fixed in

Ubuntu Advantage Desktop Daemon could be made to expose sensitive information.

Updated to latest upstream (131.0.2)

The right to fork the software is at the heart of open source. WordPress itself started as a fork of the b2/cafelog project. WordPress was one of several forks from b2, which included b2++ (which eventually became WordPress Multisite) and some like b2evolution which still continue today. The last decent fork attempt for WordPress was […]

libgsf could be made to run programs as your login if it opened a specially crafted file.

Several security issues were fixed in the Linux kernel.

x86: Deadlock in vlapic_error() [XSA-462, CVE-2024-45817]