FEDORA-2022-6835ddb6d8
Packages in this update:
kernel-5.19.6-100.fc35
Update description:
The 5.19.6 stable kernel update contains a number of important fixes across the tree.
kernel-5.19.6-100.fc35
The 5.19.6 stable kernel update contains a number of important fixes across the tree.
kernel-5.19.6-300.fc37
The 5.19.6 stable kernel update contains a number of important fixes across the tree.
kernel-5.19.6-200.fc36
The 5.19.6 stable kernel update contains a number of important fixes across the tree.
Multiple vulnerabilities have been discovered in Google Chrome, the most severe of which could allow for arbitrary code execution. Google Chrome is a web browser used to access the internet. Successful exploitation of the most severe of these vulnerabilities could allow for arbitrary code execution in the context of the logged on user. Depending on the privileges associated with the user an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.
Multiple vulnerabilities have been discovered in Google Chrome, the most severe of which could allow for arbitrary code execution. Google Chrome is a web browser used to access the internet. Successful exploitation of the most severe of these vulnerabilities could allow for arbitrary code execution in the context of the logged on user. Depending on the privileges associated with the user an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.
A crafted input file could cause a null pointer dereference in jcopy_sample_rows() when processed by libjpeg-turbo.
In gcc, a crafted input source file could cause g++ to crash during compilation when provided certain optimization flags. The problem resides in the ipcp_store_vr_results function in gcc/ipa-cp.c.
In gcc, an internal compiler error in match_reload function at lra-constraints.c may cause a crash through a crafted input file.
Initial infection begins with a phishing email containing a Microsoft Office attachment
The firm said the tools used to attack Cisco were also deployed to compromise one of its clients