Update to latest version
Comment
Archive for Fedora Linux Distribution – Security Advisories
2744 results.
Update to latest version
Security fix for CVE-2020-10753 ceph: radosgw: HTTP header injection via CORS ExposeHeader tag
Fix CVE-2019-12360.
https://lists.wikimedia.org/pipermail/mediawiki-announce/2020-June/000252.html
Fix CVE-2019-12360.
Update to Samba 4.12.5
Update to Samba 4.12.5
Update to latest upstream version
2.23 fixes CVE-2020-14929 (#1850048,#1850047) and new version (#1848786)
This update fixes a security issue causing a memory leak when an AES-CMAC key is enabled for authentication.
Update to 83.0.4103.116. Fixes CVE-2020-6509. —- Black Lives Matter. Saying this does not mean that other lives do not matter. It should not be controversial to say this. If I say Chromium updates matter, it does not mean that other Fedora packages do not matter, it means that a Chromium update is needed to fix this giant pile of severe security vulnerabilities, here, today,
Fix CVE-2020-13625 vulnerability.
This release fixes security issue CVE-2020-13999 .
Special Register Buffer speculative side channel [XSA-320]
– avoid overwriting a local file with -J (CVE-2020-8177) – fix partial password leak over DNS on HTTP redirect (CVE-2020-8169)
Security fix for CVE-2020-0548, CVE-2020-0549, CVE-2020-0543 —- Security fixes for CVE-2020-0548, CVE-2020-0549, CVE-2020-0543
– New upstream release – Actually reload the DFU device after upgrade has completed – Capture the dock SKU in report metadata – Correctly set the Logitech device protocol – Do not use shim for non-secure boot configurations – Ensure that the DeviceID is set for child devices – Fix an error when detaching MSP430 – Fix the DeviceID set by GetDetails – Force the prometheus minor version from
Update to latest upstream version.
This release fixes a number of issues found in the 4.1 branch.
Security fix for CVE-2020-13790
https://gitlab.com/sane-project/backends/-/releases
This release contains bug fixes only (which includes security fixes): – Increase cache buffers size to accomodate VLAN edits (#594) – Correct L2 header length to correct IP header offset (#583) – Fix warnings from gcc version 10 (#580) – Heap Buffer Overflow in randomize_iparp (#579) – Use after free in get_ipv6_next (#578) – Heap Buffer Overflow in git_ipv6_next (#576) – Call
**horde 5.2.23** * [mjr] SECURITY: Fix javascript injection vulnerability in mobile login page. * [mjr] Fix broken cloud search in portal block.
This release contains bug fixes only (which includes security fixes): – Increase cache buffers size to accomodate VLAN edits (#594) – Correct L2 header length to correct IP header offset (#583) – Fix warnings from gcc version 10 (#580) – Heap Buffer Overflow in randomize_iparp (#579) – Use after free in get_ipv6_next (#578) – Heap Buffer Overflow in git_ipv6_next (#576) – Call
**horde 5.2.23** * [mjr] SECURITY: Fix javascript injection vulnerability in mobile login page. * [mjr] Fix broken cloud search in portal block.
New upstream release. It largely contains stability, security and bugfixes. Some EXIF 2.3 tags have been added. See also: https://github.com/libexif/libexif/releases/tag/libexif-0_6_22-release
updates the mozilla certificate list, removes expired certificates.
**RELEASE 1.4.6** – Installer: Fix regression in SMTP test section (#7417) —- **RELEASE 1.4.5** – Fix bug in extracting required plugins from composer.json that led to spurious error in log (#7364) – Fix so the database setup description is compatible with MySQL 8 (#7340) – Markasjunk: Fix regression in jsevent driver (#7361) – Fix missing flag indication on collapsed
The 5.6.19 stable kernel updates contain a number of important fixes across the tree.