Month: February 2023

Patrick Monnerat discovered that Curl's support for chained HTTP compression algorithms was susceptible to denial of service. Read More

FEDORA-EPEL-2023-06f86f0ae3 Packages in this update: radare2-5.8.2-2.el9 Update description: fix sdb generation from messon update to 5.8.2, fixes several CVE issues Read More

FEDORA-2023-c17427d18a Packages in this update: rust-sequoia-octopus-librnp-1.4.1-5.fc37 rust-sequoia-sop-0.26.1-5.fc37 rust-sequoia-sq-0.26.0-5.fc37 Update description: Rebuild for bzip2 0.4.4 (CVE-2023-22895 / RUSTSEC-2023-0004). Read More

FEDORA-2023-c08ee112f6 Packages in this update: rust-sequoia-octopus-librnp-1.4.1-5.fc38 rust-sequoia-sop-0.26.1-5.fc38 rust-sequoia-sq-0.26.0-5.fc38 Update description: Rebuild for bzip2 0.4.4 (CVE-2023-22895 / RUSTSEC-2023-0004). Read More

FEDORA-2023-7bd6fbb5fa Packages in this update: rust-sequoia-octopus-librnp-1.4.1-5.fc36 rust-sequoia-sop-0.26.1-5.fc36 rust-sequoia-sq-0.26.0-5.fc36 Update description: Rebuild for bzip2 0.4.4 (CVE-2023-22895 / RUSTSEC-2023-0004). Read More

FEDORA-2023-ac5e1832f9 Packages in this update: usd-22.03-10.fc36 Update description: Rebuilt with fix for null pointer dereference in stb_image (https://github.com/nothings/stb/issues/1452). Read More

FEDORA-2023-80fbbe0f3c Packages in this update: usd-22.05b-13.fc37 Update description: Rebuilt with fix for null pointer dereference in stb_image (https://github.com/nothings/stb/issues/1452). Read More

FEDORA-2023-8b700042ac Packages in this update: golang-github-projectdiscovery-chaos-client-0.4.0-3.fc37 Update description: Update to 0.4.0 Read More

FEDORA-2023-94e61ade80 Packages in this update: usd-22.05b-24.fc38 Update description: Rebuilt with fix for null pointer dereference in stb_image (https://github.com/nothings/stb/issues/1452). Read More

Ronald Crane discovered that missing input sanitizing in the apr_base64 functions of apr-util, the Apache Portable Runtime utility library, may result in denial of service...