xen-4.16.4-3.fc37

Read Time:10 Second

FEDORA-2023-260668b8b9

Packages in this update:

xen-4.16.4-3.fc37

Update description:

bugfix for x86/AMD: Zenbleed [XSA-433, CVE-2023-20593]

x86/AMD: Zenbleed [XSA-433, CVE-2023-20593]

Read More

xen-4.17.1-8.fc38

Read Time:11 Second

FEDORA-2023-38f0879ef3

Packages in this update:

xen-4.17.1-8.fc38

Update description:

bugfix for x86/AMD: Zenbleed [XSA-433, CVE-2023-20593]

x86/AMD: Zenbleed [XSA-433]
omit OCaml 5 patch on fc38

Read More

USN-6242-2: OpenSSH vulnerability

Read Time:22 Second

USN-6242-1 fixed a vulnerability in OpenSSH. This update provides
the corresponding update for Ubuntu 14.04 LTS, Ubuntu 16.04 LTS,
and Ubuntu 18.04 LTS.

Original advisory details:

It was discovered that OpenSSH incorrectly handled loading certain PKCS#11
providers. If a user forwarded their ssh-agent to an untrusted system, a
remote attacker could possibly use this issue to load arbitrary libraries
from the user’s system and execute arbitrary code.

Read More

CVE-2020-36763

Read Time:9 Second

Cross Site Scripting (XSS) vulnerability in DuxCMS 2.1 allows remote attackers to run arbitrary code via the content, time, copyfrom parameters when adding or editing a post.

Read More