Fedora 41: mysql8.0 2025-8352a35e30 critical database update

Apr17
by Ike on April 17, 2025 at 8:23 pm
Posted In: Fedora Linux Distribution - Security Advisories

Fedora 41 MySQL 8.0 critical update image

MySQL 8.0.41 Reease notes: https://dev.mysql.com/doc/relnotes/mysql/8.0/en/news-8-0-41.html

└ Tags:
 Comment 

Fedora 41: workrave 2025-d611c8d114 critical: xss autoescape exploit

Apr17
by Ike on April 17, 2025 at 8:15 pm
Posted In: Fedora Linux Distribution - Security Advisories

Fedora 41 Workrave update fixes XSS vulnerabilities

Unretireing the package.

└ Tags:
 Comment 

Fedora 41: 2025-5d61874568 critical: perl-String-Compare-ConstantTime leak

Apr17
by Ike on April 17, 2025 at 8:03 pm
Posted In: Fedora Linux Distribution - Security Advisories

Fedora 41 String-Compare-ConstantTime Update

This release fixes CVE-2024-13939 (leaking the length of a secret string)

└ Tags:
 Comment 

Fedora 41: 2025-a13867ecbc critical: rust-openssl use-after-free

Apr17
by Ike on April 17, 2025 at 7:51 pm
Posted In: Fedora Linux Distribution - Security Advisories

Fedora 41 rust-openssl critical update summary

Update the openssl crate to version 0.10.72. Update the openssl-sys crate to version 0.9.107. This update addresses CVE-2025-3416 / RUSTSEC-2025-0022 (a possible use-after- free issue in two public functions). A survey of dependent packages in Fedora shows that none of them use the affected API, or do not use them in a way that

└ Tags:
 Comment 

Debian DSA-5904-1: mod_auth_openidc Critical Info Disclosure Fix

Apr17
by Ike on April 17, 2025 at 7:51 pm
Posted In: Debian Linux Distribution - Security Advisories

Debian mod_auth_openidc update information

It was discovered that mod_auth_openidc, an OpenID Certified authentication and authorization module for the Apache HTTP server that implements the OpenID Connect Relying Party functionality, was susceptible to information disclosure in some configurations

└ Tags:
 Comment 

50 queries. 8.5 mb Memory usage. 0.606 seconds.