The 5.18.11 stable kernel update contains a number of important fixes across the tree. In addition to the 5.18.11 stable patches, this build contains the retbleed patches scheduled for 5.18.12 kernels.
Posts Tagged Fedora Linux Distribution – Security Advisories
The newest upstream commit Security fixes for CVE-2022-2257, CVE-2022-2284, CVE-2022-2285, CVE-2022-2286, CVE-2022-2287, CVE-2022-2288, CVE-2022-2289, CVE-2022-2264, CVE-2022-2304.
Linux disk/nic frontends data leaks [XSA-403, CVE-2022-26365, CVE-2022-33740, CVE-2022-33741, CVE-2022-3374]
* feature – image push * feature – container commit * using images.GetImage function for image inspect * show confirmation dialog in the center of different views * disk usage dialog table headers color update * Esc key shall not close dialogs if its dropdown widgets has focus * infobar + help color update for headers * image history dialog update * update button labels based on their
upstream release 2.9.2
The 5.18.10 stable kernel update contains a number of important fixes across the tree.
**Changelog** “` * Tue Jul 05 2022 Clemens Lang
The 5.18.10 stable kernel update contains a number of important fixes across the tree.
Security fix for CVE-2015-20107
Security fix for CVE-2015-20107
Fedora 35: matrix-synapse 2022-1a2312e4d6
Update to v1.61.1 Fix CVE-2022-31052
Security fix for CVE-2015-20107
Fix for CVE-2022-34903 (#2103242)
This is the June 2022 monthly update for .NET Core 3.1. It updates the SDK to version 3.1.420 and Runtime to 3.1.26 It includes fixes for CVE-2022-30184 Upstream release notes for .NET Core 3.1.26: https://github.com/dotnet/core/blob/main/release-notes/3.1/3.1.26/3.1.26.md
“` * Thu Jun 30 2022 Clemens Lang
Update to 91.11.0
Fedora 36: golang-github-intel-goresctrl 2022-fae3ecee19
Rebuilt for CVE-2022-1996, CVE-2022-24675, CVE-2022-28327, CVE-2022-27191, CVE-2022-29526, CVE-2022-30629 Rebuild to mitigate CVE-2022-21698 (rhbz#2067400). —- Update to 1.1.0 —- Disable package_note on arm too —- update to 0.44.1 rhbz#2007854 —- Add missing archive —- Update to 0.0.31 – Close: rhbz#1963535 —- Rebuilt for CVE-2022-1996,
Fedora 36: golang-github-spf13-cobra 2022-fae3ecee19
Rebuilt for CVE-2022-1996, CVE-2022-24675, CVE-2022-28327, CVE-2022-27191, CVE-2022-29526, CVE-2022-30629 Rebuild to mitigate CVE-2022-21698 (rhbz#2067400). —- Update to 1.1.0 —- Disable package_note on arm too —- update to 0.44.1 rhbz#2007854 —- Add missing archive —- Update to 0.0.31 – Close: rhbz#1963535 —- Rebuilt for CVE-2022-1996,
Fedora 36: golang-github-etcd-io-gofail 2022-fae3ecee19
Rebuilt for CVE-2022-1996, CVE-2022-24675, CVE-2022-28327, CVE-2022-27191, CVE-2022-29526, CVE-2022-30629 Rebuild to mitigate CVE-2022-21698 (rhbz#2067400). —- Update to 1.1.0 —- Disable package_note on arm too —- update to 0.44.1 rhbz#2007854 —- Add missing archive —- Update to 0.0.31 – Close: rhbz#1963535 —- Rebuilt for CVE-2022-1996,
Fedora 36: golang-k8s-pod-security-admission 2022-fae3ecee19
Rebuilt for CVE-2022-1996, CVE-2022-24675, CVE-2022-28327, CVE-2022-27191, CVE-2022-29526, CVE-2022-30629 Rebuild to mitigate CVE-2022-21698 (rhbz#2067400). —- Update to 1.1.0 —- Disable package_note on arm too —- update to 0.44.1 rhbz#2007854 —- Add missing archive —- Update to 0.0.31 – Close: rhbz#1963535 —- Rebuilt for CVE-2022-1996,
Update to 102.0.5005.115. Fixes: CVE-2022-1633 CVE-2022-1634 CVE-2022-1635 CVE-2022-1636 CVE-2022-1637 CVE-2022-1638 CVE-2022-1639 CVE-2022-1640 CVE-2022-1641 CVE-2022-1853 CVE-2022-1854 CVE-2022-1855 CVE-2022-1856 CVE-2022-1857 CVE-2022-1858 CVE-2022-1859 CVE-2022-1860 CVE-2022-1861 CVE-2022-1862 CVE-2022-1863 CVE-2022-1864 CVE-2022-1865 CVE-2022-1866
Fedora 36: golang-github-vultr-govultr-2 2022-e674d52438
Update govultr/vultr-cli —- Update to latest
– fix unpreserved file permissions (CVE-2022-32207) – fix Set-Cookie denial of service (CVE-2022-32205) – fix HTTP compression denial of service (CVE-2022-32206) – fix FTP-KRB bad message verification (CVE-2022-32208)
x86: MMIO Stale Data vulnerabilities [XSA-404, CVE-2022-21123, CVE-2022-21125, CVE-2022-21166]
– Update to new upstream (102.0)
Update to 91.11.0
– Update to new upstream (102.0)
Security fixes for CVE-2022-2124, CVE-2022-2129, CVE-2022-2125, CVE-2022-2126, CVE-2022-1720, CVE-2022-2175, CVE-2022-2182, CVE-2022-2183, CVE-2022-2231, CVE-2022-2210, CVE-2022-2208, CVE-2022-2207, CVE-2022-2206
Security fix for CVE-2022-1292 Upgrade to 1.1.1o, #2095817. See https://www.openssl.org/news/secadv/20220503.txt.
uboot-tools-2022.04-2: * Fixes for Pine64 Pinebook Pro * Fix for CVE-2022-30767 (NFSv2) * Fix for CVE-2018-25032 (zlib)