Update to 115.8.0 https://www.mozilla.org/en-US/security/advisories/mfsa2024-07/ https://www.thunderbird.net/en-US/thunderbird/115.8.0/releasenotes/
Comment
Archive for Fedora Linux Distribution – Security Advisories
2746 results.
Backport fix for CVE-2023-5841.
Update to 122.0.6261.57 High CVE-2024-1669: Out of bounds memory access in Blink High CVE-2024-1670: Use after free in Mojo Medium CVE-2024-1671: Inappropriate implementation in Site Isolation Medium CVE-2024-1672: Inappropriate implementation in Content Security Policy
Update to 2.6.0, fixes CVE-2023-52425, CVE-2023-52426.
Rebase to version 2.6.0
Update to qt-5.15.12.
New upstream release (123.0)
Update to latest upstream. Fixes CVE-2023-50387 and CVE-2023-50868
Update the git2 crate to version 0.18.2. Update the libgit2-sys crate to version 0.16.2. Version 0.16.2 of the libgit2-sys crate includes an update of the bundled copy of libgit2 to version 1.7.2 to address CVE-2024-24575 and CVE-2024-24577. Since the libgit2 bindings cause applications that use them to statically link
The 6.7.5 stable kernel update contains a number of important fixes across the tree.
Update to version 1.27.3. Release notes: https://github.com/syncthing/syncthing/releases/tag/v1.27.3 This update also addresses CVE-2023-49295 in quic-go: https://github.com/quic- go/quic-go/security/advisories/GHSA-ppxx-5m9h-6vxf
Patch for CVE-2024-24258 and CVE-2024-24259
Update the git2 crate to version 0.18.2. Update the libgit2-sys crate to version 0.16.2. Version 0.16.2 of the libgit2-sys crate includes an update of the bundled copy of libgit2 to version 1.7.2 to address CVE-2024-24575 and CVE-2024-24577. Since the libgit2 bindings cause applications that use them to statically link
Stack buffer overflow in virtio_net_flush_tx (CVE-2023-6693) (rhbz#2256436)
Update to the latest upstream version, which includes a fix for CVE-2023-45142. https://github.com/caddyserver/caddy/releases/tag/v2.7.6
Rabase to 1.9.15p5
Fix CVE-2024-25580: potential buffer overflow when reading KTX images.
Update to 2.11.5
Update to 1.7.2 Resolves: CVE-2024-24577 Resolves: CVE-2024-24575
Update to 1.6.5 Resolves: CVE-2024-24577 Resolves: CVE-2024-24575
Update to 1.6.5 Resolves: CVE-2024-24577 Resolves: CVE-2024-24575
Rebase to version 2.6.0
update to 1.26.2
Security fix for CVE-2024-22667 enable building without GPM support – build with GPM in Fedora 2262371 – gvim: symbol lookup error: gvim: undefined symbol: g_once_init_enter_pointer The newest upstream commit
Update to 1.0.5
Update rust-vmm components and their consumers to address CVE-2023-50711
Update to 1.0.5
Update to the latest stable version: Features Implement a new plugin manager from scratch to replace Yapsy, which does not work on Python 3.12 due to Python 3.12 carelessly removing parts of the standard library (Issue #3719)
Update to 121.0.6167.160 High CVE-2024-1284: Use after free in Mojo High CVE-2024-1283: Heap buffer overflow in Skia
Apply fix for CVE-2023-28531