New upstream release (123.0)
Posts Tagged Fedora Linux Distribution – Security Advisories
Update to latest upstream. Fixes CVE-2023-50387 and CVE-2023-50868
Update the git2 crate to version 0.18.2. Update the libgit2-sys crate to version 0.16.2. Version 0.16.2 of the libgit2-sys crate includes an update of the bundled copy of libgit2 to version 1.7.2 to address CVE-2024-24575 and CVE-2024-24577. Since the libgit2 bindings cause applications that use them to statically link
The 6.7.5 stable kernel update contains a number of important fixes across the tree.
Update to version 1.27.3. Release notes: https://github.com/syncthing/syncthing/releases/tag/v1.27.3 This update also addresses CVE-2023-49295 in quic-go: https://github.com/quic- go/quic-go/security/advisories/GHSA-ppxx-5m9h-6vxf
Patch for CVE-2024-24258 and CVE-2024-24259
Update the git2 crate to version 0.18.2. Update the libgit2-sys crate to version 0.16.2. Version 0.16.2 of the libgit2-sys crate includes an update of the bundled copy of libgit2 to version 1.7.2 to address CVE-2024-24575 and CVE-2024-24577. Since the libgit2 bindings cause applications that use them to statically link
Stack buffer overflow in virtio_net_flush_tx (CVE-2023-6693) (rhbz#2256436)
Update to the latest upstream version, which includes a fix for CVE-2023-45142. https://github.com/caddyserver/caddy/releases/tag/v2.7.6
Rabase to 1.9.15p5
Fix CVE-2024-25580: potential buffer overflow when reading KTX images.
Update to 2.11.5
Update to 1.7.2 Resolves: CVE-2024-24577 Resolves: CVE-2024-24575
Update to 1.6.5 Resolves: CVE-2024-24577 Resolves: CVE-2024-24575
Update to 1.6.5 Resolves: CVE-2024-24577 Resolves: CVE-2024-24575
Rebase to version 2.6.0
update to 1.26.2
Security fix for CVE-2024-22667 enable building without GPM support – build with GPM in Fedora 2262371 – gvim: symbol lookup error: gvim: undefined symbol: g_once_init_enter_pointer The newest upstream commit
Update to 1.0.5
Update rust-vmm components and their consumers to address CVE-2023-50711
Update to 1.0.5
Update to the latest stable version: Features Implement a new plugin manager from scratch to replace Yapsy, which does not work on Python 3.12 due to Python 3.12 carelessly removing parts of the standard library (Issue #3719)
Update to 121.0.6167.160 High CVE-2024-1284: Use after free in Mojo High CVE-2024-1283: Heap buffer overflow in Skia
Apply fix for CVE-2023-28531
Fix webkit_web_context_allow_tls_certificate_for_host to handle IPv6 URIs produced by SoupURI. Ignore stops with offset zero before last one when rendering gradients with cairo. Write bwrapinfo.json to disk for xdg-desktop-portal.
New version 4.0.12. Includes fixes for CVE-2023-5371, CVE-2023-6174, CVE-2023-6175, CVE-2024-0208.
Update rust-vmm components and their consumers to address CVE-2023-50711
Update rust-vmm components and their consumers to address CVE-2023-50711
Security update for CVE-2024-23334 and CVE-2024-23829 https://github.com/aio-libs/aiohttp/releases/tag/v3.9.2 https://github.com/aio-libs/aiohttp/releases/tag/v3.9.3
fix gcc14 build error and another epub crash use https://github.com/mate-desktop/atril/commit/479e927 use https://github.com/mate-desktop/atril/commit/d901a9d update to 1.26.2 fix security security advisory