It was discovered that an incorrect implementation of AES GCM decryption
in cjose, a C library implementing the JOSE standard, may allow an attacker
to provide a truncated Authentication Tag and modify the JWE object.
It was discovered that authenticated API users of Orthanc, a DICOM server
for medical imaging, could overwrite arbitrary files and in some setups
execute arbitrary code.
Multiple vulnerabilities have been discovered in Google Android OS, the most severe of which could allow for remote code execution. Android is an operating system developed by Google for mobile devices, including, but not limited to, smartphones, tablets, and watches. Successful exploitation of the most severe of these vulnerabilities could allow for remote code execution. Depending on the privileges associated with the exploited component, an attacker could then install programs; view, change, or delete data; or create new accounts with full rights.
golang-github-opencontainers-runc-1.1.8-2.fc38
Add commit c0be1aa2d101dcd3074b5a0e486d58d3f9568d81 as a patch for github.com/containers/common
Security fix for CVE-2023-27561
Update to 1.1.8
golang-github-opencontainers-runc-1.1.8-2.fc37
Add commit c0be1aa2d101dcd3074b5a0e486d58d3f9568d81 as a patch for github.com/containers/common
Security fix for CVE-2023-27561
Update to 1.1.8
golang-github-opencontainers-runc-1.1.8-1.fc37
Security fix for CVE-2023-27561
Update to 1.1.8
golang-github-opencontainers-runc-1.1.8-1.fc38
Security fix for CVE-2023-27561
Update to 1.1.8
java-latest-openjdk-20.0.2.0.9-1.rolling.el8
updated to July security update 20.0.2.9 portables
Prospect Medical Holdings took its systems offline on Friday and initiated an investigation
McAfee said the library registers device information and drains battery life and mobile data
