CVE fix for: CVE-2023-6377, CVE-2023-6478
Archive for Fedora Linux Distribution – Security Advisories
CVE fix for: CVE-2023-6377, CVE-2023-6478
Terrapin fix
Fix regression in IPv6 hosntames parsing —- New upstream release fixing (CVE-2023-48795, CVE-2023-6004, CVE-2023-6918)
Automatic update for podman-4.8.3-1.fc39. ##### **Changelog for podman** “` * Wed Jan 03 2024 Packit
Fix for CVE-2023-7101 (unvalidated input can lead to arbitrary code execution vulnerability).
Security fix for CVE-2023-49081, CVE-2023-49082. Update `python-aiohttp` to 3.9.1. Patch `python-pysqeezebox` and `python-wled` so they do not have an implicit dependency on `python-async-timeout` via `python-aiohttp`. https://github.com/aio-libs/aiohttp/releases/tag/v3.9.0 https://github.com/aio- libs/aiohttp/releases/tag/v3.9.1
Bugfix release. Includes security fixes for CVE-2021-42260 and CVE-2023-34194 and a fix for incorrect text element encoding (upstream isssue #51).
Security fix for CVE-2023-49081, CVE-2023-49082. Update `python-aiohttp` to 3.9.1. Patch `python-pysqeezebox` and `python-wled` so they do not have an implicit dependency on `python-async-timeout` via `python-aiohttp`. https://github.com/aio-libs/aiohttp/releases/tag/v3.9.0 https://github.com/aio- libs/aiohttp/releases/tag/v3.9.1
update to 120.0.6099.199 – CVE-2023-6879 aom: heap-buffer-overflow on frame size change – CVE-2023-7104 sqlite: heap-buffer-overflow at sessionfuzz – CVE-2024-0222: Use after free in ANGLE – CVE-2024-0223: Heap buffer overflow in ANGLE – CVE-2024-0224: Use after free in WebAudio – CVE-2024-0225: Use after free in WebGPU
update to 120.0.6099.199 – CVE-2023-6879 aom: heap-buffer-overflow on frame size change – CVE-2023-7104 sqlite: heap-buffer-overflow at sessionfuzz – CVE-2024-0222: Use after free in ANGLE – CVE-2024-0223: Heap buffer overflow in ANGLE – CVE-2024-0224: Use after free in WebAudio – CVE-2024-0225: Use after free in WebGPU
– Update to 22.05.11 – Closes CVE-2023-49933 through CVE-2023-49938
– Update to 22.05.11 – Closes CVE-2023-49933 through CVE-2023-49938
Update to 3.2.5, fixing CVE-2018-1311 and CVE-2023-37536
Update to 3.2.5, fixing CVE-2018-1311 and CVE-2023-37536
Security fix for CVE-2023-48795 (Terrapin SSH protocol attack), affecting mod_sftp.
Security fix for CVE-2023-48795
Security fix for CVE-2023-48795 (Terrapin SSH protocol attack), affecting mod_sftp.
release v0.15.0 includes security fix for [CVE-2023-48795]
– New version 6.6 – Important security fixes – Removed gopher support
release v0.15.0 includes security fix for [CVE-2023-48795]
– New version 6.6 – Important security fixes – Removed gopher support
Fix for CVE-2023-48107
Fix for Terrapin vulnerability
Fix for CVE-2023-48107
# UnrealIRCd 6.1.4 This release fixes a crash issue with websockets in UnrealIRCd 6.1.0 – 6.1.3. The full advisory with all details is available at: https://forums.unrealircd.org/viewtopic.php?t=9340 ## Fixes * Crash that can be triggered by users when [Websockets](https://www.unrealircd.org/docs/WebSocket_support) are in use (a
# UnrealIRCd 6.1.4 This release fixes a crash issue with websockets in UnrealIRCd 6.1.0 – 6.1.3. The full advisory with all details is available at: https://forums.unrealircd.org/viewtopic.php?t=9340 ## Fixes * Crash that can be triggered by users when [Websockets](https://www.unrealircd.org/docs/WebSocket_support) are in use (a
Update to 1.22.7, fixes CVE-2023-37327, CVE-2023-37328, CVE-2023-37329.
Update to 1.22.7, fixes CVE-2023-37327, CVE-2023-37328, CVE-2023-37329.
Update to 1.22.7, fixes CVE-2023-37327, CVE-2023-37328, CVE-2023-37329.