The newest upstream commit Security fixes for CVE-2023-48706, CVE-2023-46246
Posts Tagged Fedora Linux Distribution – Security Advisories
Security fix for CVE-2023-47038
Update to 2.53.18
Security fix for CVE-2023-47038
Update to 1.18 and security fix for CVE-2023-49297
This is the November 2023 update for .NET 6. It includes fixes for multiple CVEs. Release Notes: https://github.com/dotnet/core/blob/main/release- notes/6.0/6.0.25/6.0.25.md
– fix HSTS long file name clears contents (CVE-2023-46219) – fix cookie mixed case PSL bypass (CVE-2023-46218)
This is the November 2023 monthly update for .NET 7. It includes several security fixes. Release Notes: https://github.com/dotnet/core/blob/main/release-notes/7.0/7.0.14/7.0.14.md
The 6.6.6 stable kernel update reverts the problematic cfg80211 patch that was brought into the 6.6.5 kernel —- The 6.6.5 stable kernel update contains a number of important fixes across the tree.
Update to 0.080 Fix CVE-2019-17362 in bundled libtomcrypt
7.5.9.2
7.5.9.2
Update to 2.53.18
updated to jdk8u392+b08
* Install default input.conf/network.conf * Add mitigation for CVE-2023-45866
– fix HSTS long file name clears contents (CVE-2023-46219) – fix cookie mixed case PSL bypass (CVE-2023-46218)
Update to 120.0.6099.62, upstream release fixes follow security issues: * High CVE-2023-6508: Use after free in Media Stream * High CVE-2023-6509: Use after free in Side Panel Search * Medium CVE-2023-6510: Use after free in Media Capture * Low CVE-2023-6511: Inappropriate implementation in Autofill * Low CVE-2023-6512: Inappropriate implementation in Web Browser UI
* Install default input.conf/network.conf * Add mitigation for CVE-2023-45866
Update to 120.0.6099.62, upstream release fixes follow security issues: * High CVE-2023-6508: Use after free in Media Stream * High CVE-2023-6509: Use after free in Side Panel Search * Medium CVE-2023-6510: Use after free in Media Capture * Low CVE-2023-6511: Inappropriate implementation in Autofill * Low CVE-2023-6512: Inappropriate implementation in Web Browser UI
upgrade to v0.10.7, CVE-2023-39325
upgrade to v0.10.7, close rhbz#2249798
Affected applications were rebuilt against version 0.10.60 of the the `openssl` crate (the Rust bindings for OpenSSL) to address two security advisories: – https://rustsec.org/advisories/RUSTSEC-2023-0044.html – https://rustsec.org/advisories/RUSTSEC-2023-0072.html
Affected applications were rebuilt against version 0.10.60 of the the `openssl` crate (the Rust bindings for OpenSSL) to address two security advisories: – https://rustsec.org/advisories/RUSTSEC-2023-0044.html – https://rustsec.org/advisories/RUSTSEC-2023-0072.html
Affected applications were rebuilt against version 0.10.60 of the the `openssl` crate (the Rust bindings for OpenSSL) to address two security advisories: – https://rustsec.org/advisories/RUSTSEC-2023-0044.html – https://rustsec.org/advisories/RUSTSEC-2023-0072.html
– Updated to latest upstream (120.0.1) —- – Fixed freezes on Google Maps —- – Updated to latest upstream (120.0)
update to 119.0.6045.199, upstream security release * High CVE-2023-6345: Integer overflow in Skia * High CVE-2023-6346: Use after free in WebAudio * High CVE-2023-6347: Use after free in Mojo * High CVE-2023-6348: Type Confusion in Spellcheck * High CVE-2023-6350: Out of bounds memory access in libavif * High CVE-2023-6351: Use after free in libavif
Update to 4.18.9 – Security fix for CVE-2018-14628
The 6.6.3 stable kernel update contains a number of important fixes across the tree.
Update to version 4.19.3 – Security fix for CVE-2018-14628
Security fix for CVE-2022-41717