– update to 9.0.9 tagged upstream community sources, see CHANGELOG – resolve CVE-2022-35957 grafana: Escalation from admin to server admin when auth proxy is used (rhbz#2128565)
Comment
Posts Tagged Fedora Linux Distribution – Security Advisories
2746 results.
**Redis 7.0.5** – Released Wed Sep 21 20:00:00 IST 2022 Upgrade urgency: SECURITY, contains fixes to security issues. Security Fixes: * (**CVE-2022-35951**) Executing a XAUTOCLAIM command on a stream key in a specific state, with a specially crafted COUNT argument, may cause an integer overflow, a subsequent heap overflow, and potentially lead to remote code
Update Gajim to 1.5.1 (and python-nbxmpp to 3.2.2)
Update to 102.3.0 ; https://www.mozilla.org/en- US/security/advisories/mfsa2022-42/ ; https://www.thunderbird.net/en- US/thunderbird/102.3.0/releasenotes/
Update Gajim to 1.5.1 (and python-nbxmpp to 3.2.2)
Update to bugfix/security release 2022-07-29a. Includes security fix for CVE-2022-3123.
Update to bugfix/security release 2022-07-29a. Includes security fix for CVE-2022-3123.
nvme: Fix DMA reentrancy use-after-free (CVE-2021-3929)
Update to 102.3.0 ; https://www.mozilla.org/en- US/security/advisories/mfsa2022-42/ ; https://www.thunderbird.net/en- US/thunderbird/102.3.0/releasenotes/
Backport fix for CVE-2022-38784.
Backport fix for CVE-2022-38784.
Patch for CVE-2022-40320
Latest update.
Update to new stable release, v2022-07-31a “Igor”. Includes security fix for CVE-2022-3123.
– Rebase to upstream version 0.4.1 to fix some security issues
– control code in cookie denial of service (CVE-2022-35252)
6.0.8, fixes CVE-2022-40626
Security fix for CVE-2022-2309
Update to latest upstream release
Package new upstream version open-vm-tools-12.1.0-20219665. —- Security fix for CVE-2022-31676
– Fixed ruby socket permissions
**Wordpress 5.9.4 Security Release**
Fix for the CVE-2022-37434
– Update to 20.10.18. – Mitigates CVE-2022-36109 / GHSA-rc4r-wh2q-q6c4
– Update to 0.9.70 (rhbz#2042724). – Mitigates CVE-2022-31214 (rhbz#2095070).
Security fix for CVE-2022-3099
Update to latest LTS release
Fix CVE-2022-22728.
Fix CVE-2022-22728.
Update to 2.36.7: * Fix several crashes and rendering issues. * Security fixes: CVE-2022-32793 —- Add provides for webkit2gtk4.0 webkit2gtk3 is getting renamed to webkit2gtk4.0 in F37+. Add provides for the new names to make it easier for other packages to depend on webkitgtk without having to conditionalize their spec files.