Backported patch for CVE-2020-15503
Comment
Posts Tagged Fedora Linux Distribution – Security Advisories
277 results.
This update fixes CVE-2020-10177, CVE-2020-10994, CVE-2020-10379, CVE-2020-11538 and CVE-2020-10378.
FIx CVE-2019-20454
This is a security fix release that includes fixes for the following local buffer overflow vulnerability. – CVE-2022-4044: Local users can perform a buffer overflow attack against the xrdp-sesman service and then impersonate it This update is recommended for all xrdp users.
Update to version 26, a bugfix and security release. FIxes CVE-2020-14148.
Update to latest upstream version
Update to latest version
Update to latest version
Security fix for CVE-2020-10753 ceph: radosgw: HTTP header injection via CORS ExposeHeader tag
Fix CVE-2019-12360.
https://lists.wikimedia.org/pipermail/mediawiki-announce/2020-June/000252.html
Fix CVE-2019-12360.
Update to Samba 4.12.5
Update to Samba 4.12.5
Update to latest upstream version
2.23 fixes CVE-2020-14929 (#1850048,#1850047) and new version (#1848786)
This update fixes a security issue causing a memory leak when an AES-CMAC key is enabled for authentication.
Update to 83.0.4103.116. Fixes CVE-2020-6509. —- Black Lives Matter. Saying this does not mean that other lives do not matter. It should not be controversial to say this. If I say Chromium updates matter, it does not mean that other Fedora packages do not matter, it means that a Chromium update is needed to fix this giant pile of severe security vulnerabilities, here, today,
Fix CVE-2020-13625 vulnerability.
This release fixes security issue CVE-2020-13999 .
Special Register Buffer speculative side channel [XSA-320]
– avoid overwriting a local file with -J (CVE-2020-8177) – fix partial password leak over DNS on HTTP redirect (CVE-2020-8169)
Security fix for CVE-2020-0548, CVE-2020-0549, CVE-2020-0543 —- Security fixes for CVE-2020-0548, CVE-2020-0549, CVE-2020-0543
– New upstream release – Actually reload the DFU device after upgrade has completed – Capture the dock SKU in report metadata – Correctly set the Logitech device protocol – Do not use shim for non-secure boot configurations – Ensure that the DeviceID is set for child devices – Fix an error when detaching MSP430 – Fix the DeviceID set by GetDetails – Force the prometheus minor version from
Update to latest upstream version.
This release fixes a number of issues found in the 4.1 branch.
Security fix for CVE-2020-13790
https://gitlab.com/sane-project/backends/-/releases
This release contains bug fixes only (which includes security fixes): – Increase cache buffers size to accomodate VLAN edits (#594) – Correct L2 header length to correct IP header offset (#583) – Fix warnings from gcc version 10 (#580) – Heap Buffer Overflow in randomize_iparp (#579) – Use after free in get_ipv6_next (#578) – Heap Buffer Overflow in git_ipv6_next (#576) – Call
**horde 5.2.23** * [mjr] SECURITY: Fix javascript injection vulnerability in mobile login page. * [mjr] Fix broken cloud search in portal block.