Minor update for CVE-2022-1096. Also fixes dependency issues for chrome-remote- desktop and sizing issues where some libraries/binaries were not being stripped.
Archive for Fedora Linux Distribution – Security Advisories
Security fix for CVE-2022-27651
Security fix for CVE-2022-27651
This release contains security fixes.
Backport patch for CVE-2021-45943.
Fedora 35: python-pillow 2022-64332f2a7c
Backport fix for CVE-2022-24303.
Fedora 35: mingw-openexr 2022-f2e0d16c90
Fix CVE-2021-45942.
Security fix for CVE-2022-0778
fix build of xen*.efi file and package it in /usr/lib*/efi —- Multiple speculative security issues [XSA-398]
Updated to version 10.1.0 with XSS fix. Changelog: https://github.com/kiwix/libkiwix/releases/tag/10.1.0
Fedora 35: phoronix-test-suite 2022-cce05f0e5e
Security fix for CVE-2022-0571
Security fix for [PUT CVEs HERE]
Security fix for CVE-2022-24724 – https://github.com/github/cmark- gfm/security/advisories/GHSA-mc3g-88wq-6f4x – fixed upstream in Haskell cmark- gfm-0.2.3 in bundled cmark-gfm-0.29.0.gfm.3 C library – pandoc-citeproc: update HsYAML-aeson to 0.2.0.1
Security fix for CVE-2022-21698, skopeo likely not directly impacted
Fedora 34: ghc-cmark-gfm 2022-1f981071eb
Security fix for CVE-2022-24724 – https://github.com/github/cmark- gfm/security/advisories/GHSA-mc3g-88wq-6f4x – fixed upstream in Haskell cmark- gfm-0.2.3 in bundled cmark-gfm-0.29.0.gfm.3 C library – pandoc-citeproc: update HsYAML-aeson to 0.2.0.1
Fix for CVE-2022-0860
Fix for CVE-2022-0860
Fix CVE-2022-1122.
Fedora 35: mingw-openjpeg2 2022-9515529c96
Fix CVE-2022-1122.
# UnrealIRCd 6.0.2 UnrealIRCd 6.0.2 comes with several nice feature enhancements along with some fixes. It also includes a fix for a crash bug that can be triggered by ordinary users. ## Fixes * Fix crash that can be triggered by regular users if you have any `deny dcc` blocks in the config or any spamfilters with the `d` (DCC) target. * Fix infinite hang on “Loading
The 5.16.18 stable kernel update contains a number of important fixes across the tree.
Multiple speculative security issues [XSA-398]
Update to 2.53.11.1 Note that since 2.53.11, besides the ordinary builds for the current Fedora and EPEL branches, there is an additional distro-independed build available at https://buc.fedorapeople.org/seamonkey . So if you have friends who use other Linux distro, but that distro does not provide SeaMonkey yet, you can recommend this build for them.
This is the March 2022 update for .NET Core 3.1: SDK 3.1.417 and Runtime 3.1.23 Release notes: https://github.com/dotnet/core/blob/main/release- notes/3.1/3.1.23/3.1.23.md This includes fixes for CVE-2022-24464, CVE-2022-24512 and CVE-2020-8927
Fedora 34: python-paramiko 2022-806492f1d1
CVE-2022-24302: Creation of new private key files using `~paramiko.pkey.PKey` subclasses was subject to a race condition between file creation and mode modification, which could be exploited by an attacker with knowledge of where the Paramiko-using code would write out such files; this has been patched by using `os.open` and `os.fdopen` to ensure new files are opened with the correct
Fix for CVE-2022-0860
# UnrealIRCd 6.0.2 UnrealIRCd 6.0.2 comes with several nice feature enhancements along with some fixes. It also includes a fix for a crash bug that can be triggered by ordinary users. ## Fixes * Fix crash that can be triggered by regular users if you have any `deny dcc` blocks in the config or any spamfilters with the `d` (DCC) target. * Fix infinite hang on “Loading
Update to 3.2.1 (fix CVE-2021-45848: DoS via malicious download request)
This is a maintenance release of OpenVPN 2.5 with a security fix when used in server mode ([CVE-2022-0547](https://community.openvpn.net/openvpn/wiki/CVE-2022-0547)). The other changes are available in [Changes.rst](https://github.com/OpenVPN/openvpn/blob/release/2.5/Changes.rst).
Rebase to upstream version 3.0.2