FEDORA-2023-154d731f46
Packages in this update:
oggvideotools-0.9.1-13.fc37
Update description:
Trivial rebuild with a patch for the CVE.
oggvideotools-0.9.1-13.fc37
Trivial rebuild with a patch for the CVE.
oggvideotools-0.9.1-15.fc40
Automatic update for oggvideotools-0.9.1-15.fc40.
* Sun Aug 27 2023 Zbigniew Jędrzejewski-Szmek <zbyszek@in.waw.pl> – 0.9.1-15
– Add patch for CVE-2020-21724 (rhbz#2234728)
python-pyramid-2.0.2-1.fc38
Update to 2.0.2
Fixes CVE-2023-40587
python-pyramid-2.0.2-1.fc39
Update to 2.0.2
Fixes CVE-2023-40587
exercism-3.2.0-1.fc39
Update to latest version (#2228145)
Security fix for CVE-2022-3064, CVE-2022-41717
exercism-3.2.0-1.fc38
Update to latest version (#2228145)
Security fix for CVE-2022-3064, CVE-2022-41717
exercism-3.2.0-1.fc37
Update to latest version (#2228145)
Security fix for CVE-2022-3064, CVE-2022-41717
Zac Sims discovered a directory traversal in the URL decoder of librsvg,
a SAX-based renderer library for SVG files, which could result in read
of arbitrary files when processing a specially crafted SVG file with an
XInclude element.
China imposed a “pilot program banning fishing in parts of the south-west Atlantic Ocean from July to October, and parts of the eastern Pacific Ocean from September to December.” However, the conservation group Oceana analyzed the data and figured out that the Chinese weren’t fishing in those areas in those months, anyway.
<
blockquote>In the south-west Atlantic moratorium area, Oceana found there had been no fishing conducted by Chinese fleets in the same time period in 2019. Between 1,800 and 8,500 fishing hours were detected in the zone in each of the five years to 2019. In the eastern Pacific zone, China’s fishing fleet appeared to fish only 38 hours in the year before the ban’s introduction.
“Ending squid fishing in areas where there is no fishing does nothing to protect squid,” said Oceana’s campaign director, Max Valentine.
<
blockquote>
As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered.
Read my blog posting guidelines here.
Stormshield Network Security (SNS) VPN SSL Client 2.1.0 through 2.8.0 has Insecure Permissions.