Fedora 40: firefox 2024-dee1ef052e Security Advisory Updates
New upstream update (132.0)
New upstream update (132.0)
Update to 1.23.0
fix CVE-2024-7006 (rhbz#2302997) fix CVE-2023-52356 (rhbz#2260112) fix CVE-2023-6228 (rhbz#2251863)
Update pyo3 to version 0.22.4. This version addresses a potential use-after-free RUSTSEC-2024-0378.
Security fix for CVE-2024-47874. Starlette 0.40.0 (October 15, 2024) This release fixes a Denial of service (DoS) via multipart/form-data requests. You can view the full security advisory: GHSA-f96h-pmfr-66vw
Update pyo3 to version 0.22.4. This version addresses a potential use-after-free RUSTSEC-2024-0378.
This is the October 2024 monthly update for .NET 6. Release Notes: SDK: https://github.com/dotnet/core/blob/main/release- notes/6.0/6.0.35/6.0.135.md Runtime: https://github.com/dotnet/core/blob/main/release-
Security fix for CVE-2024-47874. Starlette 0.40.0 (October 15, 2024) This release fixes a Denial of service (DoS) via multipart/form-data requests. You can view the full security advisory: GHSA-f96h-pmfr-66vw
Various security, performance, accuracy, and stability issues have been fixed.
New version 4.2.8 Fix for CVE-2024-9781
Update to 130.0.6723.58 * High CVE-2024-9954: Use after free in AI * Medium CVE-2024-9955: Use after free in Web Authentication * Medium CVE-2024-9956: Inappropriate implementation in Web Authentication * Medium CVE-2024-9957: Use after free in UI
Fixes possible denial of service attack on untrusted input
Automatic update for buildah-1.37.5-1.fc41. Changelog for buildah * Fri Oct 18 2024 Packit
Automatic update for buildah-1.37.5-1.fc41. Changelog for buildah * Fri Oct 18 2024 Packit
Automatic update for buildah-1.37.5-1.fc41. Changelog for buildah * Fri Oct 18 2024 Packit
Update the hyper-rustls crate to version 0.27.3. Update the reqwest crate to version 0.12.8. Update the rustls-native-certs crate to version 0.8.0 and add a compat package for version 0.7. Update the tonic, tonic-build, and tonic-types crates to version 0.12.3.
Fix for CVE-2024-48957 Automatic update for libarchive-3.7.2-6.fc40.
Update to 130.0.6723.58 * High CVE-2024-9954: Use after free in AI * Medium CVE-2024-9955: Use after free in Web Authentication * Medium CVE-2024-9956: Inappropriate implementation in Web Authentication * Medium CVE-2024-9957: Use after free in UI
Update to latest upstream
Update to latest upstream
Prevent command injection by quoting template strings in activation scripts
Prevent command injection by quoting template strings in activation scripts
update to 8.0.1 fixes (CVE-2024-31449) Lua library commands may lead to stack overflow and potential RCE. (CVE-2024-31227) Potential Denial-of-service due to malformed ACL selectors.
Update to latest upstream
update to 8.0.1 fixes (CVE-2024-31449) Lua library commands may lead to stack overflow and potential RCE. (CVE-2024-31227) Potential Denial-of-service due to malformed ACL selectors.
Update to latest upstream
Update to 2.46.1
Fixes for memory vulnerabilities.
Update to 129.0.6668.100 * CVE-2024-9602: Type Confusion in V8 * CVE-2024-9603: Type Confusion in V
Automatic update for buildah-1.37.4-1.fc41, podman-5.2.4-1.fc41. Changelog for buildah * Mon Oct 07 2024 Packit
60 queries. 9 mb Memory usage. 1.601 seconds.