Multiple vulnerabilities have been discovered in Google Chrome, the most severe of which could allow for arbitrary code execution. Google Chrome is a web browser used to access the internet. Successful exploitation of the most severe of these vulnerabilities could allow for arbitrary code execution in the context of the logged on user. Depending on the privileges associated with the user an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.

Read More

This vulnerability allows remote attackers to execute arbitrary code on affected installations of 7-Zip. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

Read More

This vulnerability allows remote attackers to execute arbitrary code on affected installations of 7-Zip. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

Read More

This vulnerability allows network-adjacent attackers to disclose sensitive information on affected ASUS RT-AX92U routers. Authentication is not required to exploit this vulnerability.

Read More

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Ivanti Avalanche. Authentication is not required to exploit this vulnerability.

Read More

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Zabbix Web Service. Authentication is not required to exploit this vulnerability.

Read More

FEDORA-2023-29a012c0db

Packages in this update:

subscription-manager-1.29.37-1.fc38

Update description:

Automatic update for subscription-manager-1.29.37-1.fc38.

Changelog for subscription-manager

* Wed Aug 23 2023 Packit <hello@packit.dev> – 1.29.37-1
– Automatic commit of package [subscription-manager] release [1.29.37-1]. (Pino Toscano)
– Translated using Weblate (Korean) (김인수)
– Update translation files (Weblate)
– 2225446: Hotfix of D-Bus policy (Jiri Hnidek)
– TESTING: Update testing requirements (Matyas Horky)
– Use Fedora registry to pull container images (Matyas Horky)
– 2232316: dbus: check “force” again from the registration option (Pino Toscano)
– dbus: run EntCertActionInvoker on PoolAttach (Pino Toscano)
– ENT-5624: Properly translate error strings (Matyas Horky)
– Mock IOError for Insights fact collection tests (Matyas Horky)
– New extraction for translatable strings (Pino Toscano)

Read More

FEDORA-2023-0f2f9bc779

Packages in this update:

subscription-manager-1.29.37-1.fc37

Update description:

Automatic update for subscription-manager-1.29.37-1.fc37.

Changelog for subscription-manager

* Wed Aug 23 2023 Packit <hello@packit.dev> – 1.29.37-1
– Automatic commit of package [subscription-manager] release [1.29.37-1]. (Pino Toscano)
– Translated using Weblate (Korean) (김인수)
– Update translation files (Weblate)
– 2225446: Hotfix of D-Bus policy (Jiri Hnidek)
– TESTING: Update testing requirements (Matyas Horky)
– Use Fedora registry to pull container images (Matyas Horky)
– 2232316: dbus: check “force” again from the registration option (Pino Toscano)
– dbus: run EntCertActionInvoker on PoolAttach (Pino Toscano)
– ENT-5624: Properly translate error strings (Matyas Horky)
– Mock IOError for Insights fact collection tests (Matyas Horky)
– New extraction for translatable strings (Pino Toscano)

Read More