Ike.ninja

zgrep applied to a crafted file name with two or more newlines can no longer overwrite an arbitrary, attacker-selected file. reproducer: $ touch foo.gz $ echo foo | gzip > “$(printf ‘|\n;e touch pwned\n#.gz’)” $ zgrep foo *.gz (the unfixed version of zgrep creates the file called pwned)

Security fix for CVE-2021-28021, CVE-2021-42715, CVE-2021-42716, and CVE-2022-28041

Rebuild for CVE-2022-27191

– Update to 20.10.14. Fixes rhbz#2063052. – Mitigate CVE-2022-24769.

– Update to 20.10.14. Fixes rhbz#2063052. – Mitigate CVE-2022-24769.

The 5.17.4 kernel rebase contains new features, improved hardware support, and a number of important fixes across the tree.

The 5.17.4 kernel rebase contains new features, improved hardware support, and a number of important fixes across the tree.

Security fix for [CVE-2022-1227]

Backport fix for possible DOS by regex assigned as CVE-2022-24836.

verify upstream GPG signature

Security fix for CVE-2022-26126.

Security fix for CVE-2021-25220 New version 4.4.3 Add keama migration utility

– Update to 1.2.20 Release notes: https://www.cacti.net/info/changelog/1.2.20

– Update to 1.2.20 Release notes: https://www.cacti.net/info/changelog/1.2.20

Rebase on upstream version 42.2.25. This rebase fixes CVE-2022-21724.