Security fixes for CVE-2024-33870, CVE-2024-29510
Posts Tagged Fedora Linux Distribution – Security Advisories
Backport fix for CVE-2024-6387 (rhbz#2294879) Backport fix for ObscureKeystrokeTiming logic error from OpenSSH 9.8
Backport fix for CVE-2024-6387 (rhbz#2294879)
Update to version 29.4, fixing CVE-2024-39331. Update to Emacs 29.4, fixing CVE-2024-39331.
Update to 4.15 for CVE-2024-3652
Update to gstreamer-1.22.9. Backport fix for CVE-2024-0444.
Update to 4.15 for CVE-2024-3652
Update to gstreamer-1.22.9. Backport fix for CVE-2024-0444.
Fix CVE-2024-2698 and CVE-2024-3183
rebuild for rhbz#2292712
Update to Emacs 29.4, fixing CVE-2024-39331.
The 6.9.6 stable kernel update contains a number of important fixes across the tree.
Update to upstream OpenVPN 2.6.11 CVE-2024-5594: control channel: refuse control channel messages with nonprintable characters in them CVE-2024-28882: only call schedule_exit() once (on a given peer)
Fix for multiple CVEs
update to 126.0.6478.126 High CVE-2024-6290: Use after free in Dawn High CVE-2024-6291: Use after free in Swiftshader High CVE-2024-6292: Use after free in Dawn High CVE-2024-6293: Use after free in Dawn
Fix CVE-2024-2698 and CVE-2024-3183
Update from 0.7.6 to 0.7.8 for more bug-fixes. https://lib.openmpt.org/libopenmpt/2024/06/09/security- update-0.7.8-releases-0.6.17-0.5.31-0.4.43/ https://lib.openmpt.org/libopenmpt/2024/05/12/releases-0.7.7-0.6.16-0.5.30- 0.4.42/
Update to 115.12.1 https://www.thunderbird.net/en-US/thunderbird/115.12.1/releasenotes/ https://www.mozilla.org/en-US/security/advisories/mfsa2024-28/
Update to upstream 1.3.2, including fix for CVE-2024-3727
Update to upstream 1.3.2, including fix for CVE-2024-3727
Fix CVE-2024-36048
This is the May 2024 release for .NET 8. This is a security update for .NET 8. Release notes: https://github.com/dotnet/core/blob/main/release- notes/8.0/8.0.5/8.0.5.md
fix CVE-2023-36308
update to 125.0.6422.141 High CVE-2024-5493: Heap buffer overflow in WebRTC High CVE-2024-5494: Use after free in Dawn High CVE-2024-5495: Use after free in Dawn High CVE-2024-5496: Use after free in Media Session
This update contains builds from a mini-mass-rebuild for Rust applications (and some C-style libraries). Rebuilding with the Rust 1.78 toolchain should fix incomplete debug information for the Rust standard library (and the resulting low-quality stack traces). Additionally, builds will have picked up fixes for some minor low-priority
Security fix for CVE-2024-21501
This update contains builds from a mini-mass-rebuild for Rust applications (and some C-style libraries). Rebuilding with the Rust 1.78 toolchain should fix incomplete debug information for the Rust standard library (and the resulting low-quality stack traces). Additionally, builds will have picked up fixes for some minor low-priority
CVE-2024-36041
Update cacti and cacti-spine to version 1.2.27. This includes the upstream fixes for many CVEs, including a critical remote code execution bug. https://github.com/Cacti/cacti/blob/release/1.2.27/CHANGELOG https://github.com/Cacti/spine/blob/release/1.2.27/CHANGELOG