Fedora 30: kernel-headers FEDORA-2019-6817686c4d
Update to v5.1.15 —- Update to v5.1.14
Update to v5.1.15 —- Update to v5.1.14
Update to v5.1.15 —- Update to v5.1.14
– https://www.drupal.org/project/uuid/releases/7.x-1.3 – https://www.drupal.org/sa-contrib-2019-052
## php-typo3-phar-stream-wrapper2 ### v2.1.2 Handling mime-type & Windows paths #### Resolved Issues – \#34: Normalize resolved Windows path to Unix-style – \#42: Avoid analysing non-phar files on alias resolving – \#40: Add Windows tests using AppVeyor – \#33: Add alternative mime-type resolving (without ext- fileinfo) ### v2.1.1 Phar Alias Handling & Performance Releases v3.1.1 and
## php-typo3-phar-stream-wrapper2 ### v2.1.2 Handling mime-type & Windows paths #### Resolved Issues – \#34: Normalize resolved Windows path to Unix-style – \#42: Avoid analysing non-phar files on alias resolving – \#40: Add Windows tests using AppVeyor – \#33: Add alternative mime-type resolving (without ext- fileinfo) ### v2.1.1 Phar Alias Handling & Performance Releases v3.1.1 and
– https://www.drupal.org/project/uuid/releases/7.x-1.3 – https://www.drupal.org/sa-contrib-2019-052
This update includes a rebase from 9.0.13 up to 9.0.21 which resolves two CVEs along with various other bugs/features: * rhbz#1673856 tomcat-9.0.21 is available * rhbz#1713279 CVE-2019-0221 tomcat: XSS in SSI printenv * rhbz#1693326 CVE-2019-0199 tomcat: Apache Tomcat HTTP/2 DoS
Update to latest upstream version.
Fix CVE-2019-11707 Fix CVE-2019-11708
Fix CVE-2019-11707 Fix CVE-2019-11708
Update to 1.1.33 and fix CVE-2019-11068
Security fix for CVE-2019-11459.
Update to jQueryUI 6.0.1. This fixes CVE-2016-7103.
Security fix for CVE-2019-8383, CVE-2019-8379
This fixes several issues with the systemd certificate generation and logrotation.
Update to v1.13.5 (CVE-2019-1002101 – Mishandling of symlinks allows for arbitrary file write via `kubectl cp`)
Resolves rhbz#1670364 Fixes CVE-2019-6690
Update to 1.12.16 Fix CVE-2019-12749
Update to 1.1.33 Fix CVE-2016-1841, CVE-2016-4607, CVE-2016-4608, CVE-2016-4610, CVE-2016-4609, CVE-2019-11068, CVE-2016-1684, CVE-2016-1683, CVE-2016-4738.
Update to 2.8.1 bugfix release. Sync up dependencies with upstream. Fix CVE-2019-10156
glib 2.60.4 release: * Fixes to improved network status detection with NetworkManager * Leak fixes to some `glib-genmarshal` generated code * Further fixes to the Happy Eyeballs (RFC 8305) implementation * File system permissions fix to clamp down permissions in a small time window when copying files (CVE-2019-12450)
do not install /usr/libexec/crio – conflicts with crio —- Resolves: #1715668 – CVE-2019-10152
Resolves: #1715758 – CVE-2019-9946
https://lists.wikimedia.org/pipermail/mediawiki-announce/2019-June/000230.html
Upstream announcement: Welcome to **phpMyAdmin 4.9.0.1**, a bugfix release that includes important security fixes. This release fixes two security vulnerabilities: * PMASA-2019-3 is an SQL injection flaw in the Designer feature * PMASA-2019-4 is a CSRF attack that’s possible through the ‘cookie’ login form Upgrading is highly recommended for all users. Using the ‘http’
Update to [3.3.8](https://github.com/vakata/jstree/compare/3.3.5…3.3.8).
Update to 1.1.33 and fix CVE-2019-11068
Security fix for CVE-2019-11459.
1717503 – Security issue: patch 8.1.1365: source command doesn’t check for the sandbox
60 queries. 8.75 mb Memory usage. 1.353 seconds.