– dovecot updated to 2.3.9.3 – fixes CVE-2020-7046: Truncated UTF-8 can be used to DoS submission-login and lmtp processes. – fixes CVE-2020-7957: Specially crafted mail can crash snippet generation.
Archive for Fedora Linux Distribution – Security Advisories
* Always use a light theme for rendering form controls. * Fix several crashes and rendering issues. * Security fixes: CVE-2020-3862, CVE-2020-3864, CVE-2020-3865, CVE-2020-3867, CVE-2020-3868
– dovecot updated to 2.3.9.3 – fixes CVE-2020-7046: Truncated UTF-8 can be used to DoS submission-login and lmtp processes. – fixes CVE-2020-7957: Specially crafted mail can crash snippet generation.
Update to latest upstream version
– Update to 1.2.9 – CVE-2020-7106, CVE-2020-7237 Release notes: https://www.cacti.net/release_notes.php?version=1.2.9
Update to Linux v5.4.19
Update to Linux v5.4.19
Do not evaluate arithmetic expressions from environment variables at startup
Do not evaluate arithmetic expressions from environment variables at startup
Fix CVE-2019-20388 and CVE-2020-7595
Rebase to radare2-4.2.1 and cutter-re 1.10.1. It fixes CVE-2019-19590 and CVE-2019-19547. It also fix a problem in cutter-re that did not display the window icon on Wayland.
– Update to 73.0
Resolve buffer overflow in TexOpen() function, CVE-2019-19601
Rebase to radare2-4.2.1 and cutter-re 1.10.1. It fixes CVE-2019-19590 and CVE-2019-19547. It also fix a problem in cutter-re that did not display the window icon on Wayland.
**Horde_Data 2.1.5** * [jan] Fix Remote Code Execution vulnerability (CVE-2020-8518, Reported by: Andrea Cardaci/SSD).
Security fix for CVE-2019-14494.
Add patch for CVE-2020-6750 and related issues.
Update to Node.js 12.15.0
libasr-1.0.4, opensmtpd-6.6.2p1 update
Update to Node.js 12.15.0
libasr-1.0.4, opensmtpd-6.6.2p1 update
libasr-1.0.4, opensmtpd-6.6.2p1 update
Update to Node.js 12.15.0
libasr-1.0.4, opensmtpd-6.6.2p1 update
Resolve buffer overflow in TexOpen() function, CVE-2019-19601
Resolves: #1796107, #1796109 – Security fix for CVE-2019-19921
– Use Apple upstream instead of non-fresh Github one – New upstream in 1.8 dev branch with 417.1 subversion – Close CVE-2018-17093 – Close CVE-2018-17094 – Close CVE-2017-11124 – Close CVE-2017-11125 – Close CVE-2010-3798 – Use license macro – Add OpenSSL To Configuration
3.96, multiple security fixes. —- Patch for CVE-2019-20021
This update incorporates fixes from the upstream glibc 2.29 stable release branch, including a fix for a minor security vulnerability ([`LD_PREFER_MAP_32BIT_EXEC` not ignored in setuid binaries](https://bugzilla.redhat.com/show_bug.cgi?id=1774682)).
Update to the January 2020 CPU release 11.0.6. See: http://mail.openjdk.java.net/pipermail/jdk-updates-dev/2020-January/002374.html https://openjdk.java.net/groups/vulnerability/advisories/2020-01-14