## [3.1.47] – 2022-09-14 ### Security – Applied appropriate javascript and html escaping in mailto plugin to counter injection attacks [#454](https://github.com/smarty-php/smarty/issues/454) ### Fixed – Fixed use of `rand()` without a parameter in math function [#794](https://github.com/smarty-php/smarty/issues/794) – Fixed unselected
Archive for Fedora Linux Distribution – Security Advisories
Security fix for CVE-2022-2476
Fedora 36: moby-engine 2022-12790ca71a
– Update to 20.10.20. – Mitigates CVE-2022-39253
Security fix for CVE-2022-38784
– New version 4.4.3-P1 (rhbz#2132240) – Fix for CVE-2022-2928 (rhbz#2132429) – Fix for CVE-2022-2929 (rhbz#2132430)
The 101/201/301 builds of the 5.19.15 kernel contain fixes for some wireless network vulnerabilities and a couple of important arm bug fixes. —- The 5.19.15 stable kernel update contains a number of important fixes across the tree. —- The 5.19.14 stable kernel update contains a number of important fixes across the tree.
The newest upstream commit Security fixes for CVE-2022-3256, CVE-2022-3324, CVE-2022-3352, CVE-2022-3235, CVE-2022-3234, CVE-2022-3296, CVE-2022-3297, CVE-2022-3278.
Prevent denial of service (DoS) by very large integers.
Prevent denial of service (DoS) by very large integers.
Update to 1.1.2
The 101/201/301 builds of the 5.19.15 kernel contain fixes for some wireless network vulnerabilities and a couple of important arm bug fixes. —- The 5.19.15 stable kernel update contains a number of important fixes across the tree.
Update to 1.1.2
The newest upstream commit Security fixes for CVE-2022-3256, CVE-2022-3324, CVE-2022-3352, CVE-2022-3235, CVE-2022-3234, CVE-2022-3296, CVE-2022-3297, CVE-2022-3278.
The 101/201/301 builds of the 5.19.15 kernel contain fixes for some wireless network vulnerabilities and a couple of important arm bug fixes. —- The 5.19.15 stable kernel update contains a number of important fixes across the tree.
Security fix for CVE-2022-2476
Fedora 36: rubygem-pdfkit 2022-3ec8272e72
Update to 0.8.7. This new release fixes CVE-2022-25765.
Some stability fixes. —- Update to 2.53.14 Note that besides the ordinary builds for the current Fedora and EPEL branches, there is an additional distro- independed build available at https://buc.fedorapeople.org/seamonkey . So if you have friends who use other Linux distro, but that distro does not provide SeaMonkey yet, you can recommend it for them.
Fedora 35: rubygem-pdfkit 2022-6da143f1a2
Update to 0.8.7. This new release fixes CVE-2022-25765.
Security fix for CVE-2022-38784
Update to the September 2022 update release of .NET Core 3.1 Release Notes: https://github.com/dotnet/core/blob/main/release-notes/3.1/3.1.29/3.1.29.md This includes a fix for CVE-2022-38013
Update to the September 2022 update release of .NET Core 3.1 Release Notes: https://github.com/dotnet/core/blob/main/release-notes/3.1/3.1.29/3.1.29.md This includes a fix for CVE-2022-38013
Fedora 36: python-joblib 2022-c0bfe37ae5
Security fix for CVE-2022-21797
**Version 3.4.3** (2022-09-28) * Fix a security issue on filesystem loader (possibility to load a template outside a configured directory)
Some stability fixes. —- Update to 2.53.14 Note that besides the ordinary builds for the current Fedora and EPEL branches, there is an additional distro- independed build available at https://buc.fedorapeople.org/seamonkey . So if you have friends who use other Linux distro, but that distro does not provide SeaMonkey yet, you can recommend it for them.
Security fix for CVE-2022-38784
Rebase to 2.4.9
**PHP version 8.1.11** (29 Sep 2022) **Core:** * Fixed bug php#81726: phar wrapper: DOS when using quine gzip file. (**CVE-2022-31628**). (cmb) * Fixed bug php#81727: Don’t mangle HTTP variable names that clash with ones that have a specific semantic meaning. (**CVE-2022-31629**). (Derick) * Fixed bug [GH-9323](https://github.com/php/php-src/issues/9323) (Crash in
1.4.67
Security fix for CVE-2022-36944. See https://github.com/scala/scala/releases/tag/v2.13.9 for other changes in scala 2.13.9.
Add a null check in parameter_brace_transform() function