New upstream version, fix CVEs
Comment
Archive for Fedora Linux Distribution – Security Advisories
2744 results.
Security fix for CVE-2020-11100)
– New Firefox and NSS upstream update – More info at https://www.mozilla.org/en- US/firefox/75.0/releasenotes/
Security fix for CVE-2020-5247, CVE-2020-5249
– New Firefox and NSS upstream update – More info at https://www.mozilla.org/en- US/firefox/75.0/releasenotes/
Security fix for CVE-2020-5247, CVE-2020-5249
This update incorporates fixes from the upstream glibc 2.29 stable release branch, including 3 fixes for medium severity security vulnerabilities. (CVE-2020-10029, CVE-2020-1752, CVE-2020-1751)
– New Firefox and NSS upstream update – More info at https://www.mozilla.org/en- US/firefox/75.0/releasenotes/
– New Firefox and NSS upstream update – More info at https://www.mozilla.org/en- US/firefox/75.0/releasenotes/
The 5.5.15 stable kernel update contains a number of important fixes across the tree.
The 5.5.15 stable kernel update contains a number of important fixes across the tree.
The 5.5.15 stable kernel update contains a number of important fixes across the tree.
Update to latest release of PyDev and fix dependency errors
Update to latest release of PyDev and fix dependency errors
Update to latest release of PyDev and fix dependency errors
Update to 80.0.3987.162. Fixes the following CVEs: * CVE-2020-6450 * CVE-2020-6451 * CVE-2020-6452
– New upstream version (74.0.1), fixed 0day vulnerability
This update incorporates fixes from the upstream glibc 2.30 stable release branch, including 3 fixes for medium severity security vulnerabilities. (CVE-2020-10029, CVE-2020-1752, CVE-2020-1751)
Security fix for CVE 2019 19906
Security fix for CVE-2020-10188
This update includes a rebase from 9.0.30 up to 9.0.31 which resolves one CVE along with various other bugs/features: * rhbz#1806805 CVE-2020-1938 tomcat: Apache Tomcat AJP File Read/Inclusion Vulnerability * rhbz#1801729 tomcat-9.0.31 is available **WARNING** – This update does *not* enforce the change in defaults for the AJP Connector like the upstream fix does. This is
This update includes a rebase from 9.0.30 up to 9.0.31 which resolves one CVE along with various other bugs/features: * rhbz#1806805 CVE-2020-1938 tomcat: Apache Tomcat AJP File Read/Inclusion Vulnerability * rhbz#1801729 tomcat-9.0.31 is available **WARNING** – This update does *not* enforce the change in defaults for the AJP Connector like the upstream fix does. This is
Security fix for CVE-2020-10188
* An exploitable heap overflow vulnerability exists in the way CoTURN 4.5.1.1 web server parses POST requests. A specially crafted HTTP POST request can lead to information leaks and other misbehavior. * An exploitable denial-of-service vulnerability exists in the way CoTURN 4.5.1.1 web server parses POST requests. A specially crafted HTTP POST request can lead to server crash and denial of
* An exploitable heap overflow vulnerability exists in the way CoTURN 4.5.1.1 web server parses POST requests. A specially crafted HTTP POST request can lead to information leaks and other misbehavior. * An exploitable denial-of-service vulnerability exists in the way CoTURN 4.5.1.1 web server parses POST requests. A specially crafted HTTP POST request can lead to server crash and denial of
The **phpMyAdmin** team announces the release of both **4.9.5** and **5.0.2**. Both versions contain several security fixes: * PMASA-2020-2 SQL injection vulnerability in the user accounts page, particularly when changing a password * PMASA-2020-3 SQL injection vulnerability relating to the search feature * PMASA-2020-4 SQL injection and XSS having to do with displaying results *
Security fix for CVE-2020-9359
This update incorporates fixes from the upstream glibc 2.31 stable release branch, including 2 fixes for medium severity security vulnerabilities. (CVE-2020-10029, CVE-2020-1752)
Fix DoS vulnerability (CVE-2019-19886, RHBZ #1801720 / #1801719)
Fix DoS vulnerability (CVE-2019-19886, RHBZ #1801720 / #1801719)