Avoid possible self-DoS attack Resolves: CVE-2023-25136
Comment
Archive for Fedora Linux Distribution – Security Advisories
2746 results.
config file permission change to increase security of polkitd
Update to ldb 2.5.3 and samba 4.16.10 Security fixes for CVE-2023-0922, CVE-2023-0614
Update to ldb 2.5.3 and samba 4.16.10 Security fixes for CVE-2023-0922, CVE-2023-0614
– New upstream update (112.0)
update to 112.0.5615.49. Fixes the following security issues: CVE-2023-1528 CVE-2023-1529 CVE-2023-1530 CVE-2023-1531 CVE-2023-1532 CVE-2023-1533 CVE-2023-1534 CVE-2023-2004
Security fix for CVE-2023-28879 —- set ‘a4’ as a default in gs_init.ps to fix unrecognized ‘Letter’ page size (#2183166)
Backport patch for CVE-2023-24593.
Rebase to version 2.1.55
Update to 102.10.0 ; https://www.mozilla.org/en- US/security/advisories/mfsa2023-15/ ; https://www.thunderbird.net/en- US/thunderbird/102.10.0/releasenotes/
– New upstream update (112.0)
update to 112.0.5615.49. Fixes the following security issues: CVE-2023-1528 CVE-2023-1529 CVE-2023-1530 CVE-2023-1531 CVE-2023-1532 CVE-2023-1533 CVE-2023-1534
Security fix for CVE-2022-45188
update to 112.0.5615.49. Fixes the following security issues: CVE-2023-1528 CVE-2023-1529 CVE-2023-1530 CVE-2023-1531 CVE-2023-1532 CVE-2023-1533 CVE-2023-1534
https://lists.wikimedia.org/hyperkitty/list/mediawiki- [email protected]/message/6UQBHI5FWLATD7QO7DI4YS54U7XSSLAN/
Update to 2.53.16 Langpacks are now provided in the modern form of web extensions. This may take a bit longer at startup if all languages are enabled at the same time. To avoid this, just disable unneeded languages by Add-ons Manager. (Note, langpacks are related to the language of the application menus etc., and are not related to the Web content at all).
– fix SSH connection too eager reuse still (CVE-2023-27538) – fix GSS delegation too eager connection re-use (CVE-2023-27536) – fix FTP too eager connection reuse (CVE-2023-27535) – fix SFTP path ~ resolving discrepancy (CVE-2023-27534) – fix TELNET option IAC injection (CVE-2023-27533)
The 6.2.9 stable kernel update contains a number of important fixes across the tree.
Fix several low severity security bugs.
go1.19.7 (released 2023-03-07) includes a security fix to the crypto/elliptic package, as well as bug fixes to the linker, the runtime, and the crypto/x509 and syscall packages. See the [Go 1.19.7 milestone on the upstream issue tracker](https://go.dev/doc/devel/release#go1.19.7) for details.
3 security issues (#2180425) x86 shadow plus log-dirty mode use-after-free [XSA-427, CVE-2022-42332] x86/HVM pinned cache attributes mis-handling [XSA-428, CVE-2022-42333, CVE-2022-42334] x86: speculative vulnerability in 32bit SYSCALL path [XSA-429, CVE-2022-42331]
Resolves: 2183639,2183641 – use min conmon v2.1.7 —- Adjust tests for new Ansible —- auto bump to v4.4.3
Update to Ruby on Rails 7.0.4.3. https://rubyonrails.org/2023/3/13/Rails-7-0-4-3-and-6-1-7-3-have-been-released
Update to Ruby on Rails 7.0.4.3. https://rubyonrails.org/2023/3/13/Rails-7-0-4-3-and-6-1-7-3-have-been-released
The 6.2.9 stable kernel update contains a number of important fixes across the tree.
# OpenBGPD 7.9 * Include OpenBSD 7.2 errata 023: Incorrect length checks allow an out-of-bounds read in `bgpd(8)`.
Update to 2.53.16 Langpacks are now provided in the modern form of web extensions. This may take a bit longer at startup if all languages are enabled at the same time. To avoid this, just disable unneeded languages by Add-ons Manager. (Note, langpacks are related to the language of the application menus etc., and are not related to the Web content at all).
Fixes CVE-2023-1393: X.Org Server Overlay Window Use-After-Free Local Privilege Escalation Vulnerability
Update to ldb 2.7.2 and samba 4.18.1 Security fixes for CVE-2023-0225, CVE-2023-0922, CVE-2023-0614
Update to ldb 2.6.2 and samba 4.17.7 Security fixes for CVE-2023-0225, CVE-2023-0922, CVE-2023-0614