Update to 91.10.0 See https://www.mozilla.org/en- US/security/advisories/mfsa2022-22/
Archive for Fedora Linux Distribution – Security Advisories
Update to 2.4.0 to address CVE-2022-29217. https://github.com/jpadilla/pyjwt/security/advisories/GHSA-ffqj-6fqr-9h24
Update to new upstream version.
– Fixed missing popups in some scenarios on Wayland (https://bugzilla.mozilla.org/show_bug.cgi?id=1771104) —- – Updated to latest upstream (100.0.2) —- – Fixed crashes on Wayland during recovery from sleep.
– Update to 1.1.2. Fixes rhbz#2085287. – Mitigate CVE-2022-29162 / GHSA-f3fp- gc8g-vw66.
– Update to 1.1.2. Fixes rhbz#2085287. – Mitigate CVE-2022-29162 / GHSA-f3fp- gc8g-vw66.
Update to pcre2-10.40, see https://github.com/PCRE2Project/pcre2/blob/pcre2-10.40/NEWS for details.
The 5.17.11 stable kernel update contains a number of important fixes across the tree.
The 5.17.11 stable kernel update contains a number of important fixes across the tree.
Security fix for CVE-2022-28327
The 5.17.11 stable kernel update contains a number of important fixes across the tree.
Multiple CVE fixes.
Update to 91.9.1
New upstream release for v2.14.0. See release notes at [NEWS](https://github.com/coreos/ignition/blob/main/NEWS).
– Updated to latest upstream (100.0.2)
Security fix for CVE-2021-38714
Security fix for CVE-2021-38714
– fix too eager reuse of TLS and SSH connections (CVE-2022-27782) —- – fix credential leak on redirect (CVE-2022-27774) – fix auth/cookie leak on redirect (CVE-2022-27776) – fix bad local IPv6 connection reuse (CVE-2022-27775) – fix OAUTH2 bearer bypass in connection re-use (CVE-2022-22576)
Security fixes for CVE-2022-1769, CVE-2022-1733, CVE-2022-1674
Update to 91.9.0
Fix for CVE-2022-26280
Update to v1.8.4.1 Security fix for CVE-2022-28919
Update to v1.8.4.1 Security fix for CVE-2022-28919
Security fixes for CVE-2022-1769, CVE-2022-1733 —- The newest upstream commit Security fix for CVE-2022-1674
Update to .NET SDK 6.0.105 and Runtime 6.0.5 This is the May 2022 update for .NET 6. It includes fixes for multiple CVEs, including CVE-2022-29117, CVE-2022-29145 and CVE-2022-23267.
Security fixes for CVE-2022-1769, CVE-2022-1733
New version 1.13.6 is released. This rpm addresses the issue for improper handling of unexpected data types, related to untrusted inputs to the SAX parsers, which is assigned as CVE-2022-29181 —- New version 1.13.5 is released.
This rpm backports the patch for the issue for improper handling of unexpected data types, related to untrusted inputs to the SAX parsers, which is assigned as CVE-2022-29181
The newest upstream commit Security fix for CVE-2022-1674
Update to 21.08.8 to fix CVE-2022-29500, CVE-2022-29501, and CVE-2022-29502. https://www.schedmd.com/news.php?id=260#OPT_260