FEDORA-2023-1c1be955d7

Packages in this update:

golang-github-onsi-ginkgo-2-2.13.2-3.fc40

Update description:

Automatic update for golang-github-onsi-ginkgo-2-2.13.2-3.fc40.

Changelog

* Sun Dec 31 2023 Mikel Olasagasti Uranga <mikel@olasagasti.info> – 2.13.2-3
– Update to 2.13.2 – Closes rhbz#2243007 rhbz#2248320
* Sun Dec 31 2023 Mikel Olasagasti Uranga <mikel@olasagasti.info>
– Update to 2.13.2 – Closes rhbz#2243007 rhbz#2248320
* Sun Dec 31 2023 Mikel Olasagasti Uranga <mikel@olasagasti.info> – 2.13.2-1
– Update to 2.13.2 – Closes rhbz#2243007 rhbz#2248320

Read More

FEDORA-2023-0355346550

Packages in this update:

doctl-1.102.0-3.fc40

Update description:

Automatic update for doctl-1.102.0-3.fc40.

Changelog

* Sun Dec 31 2023 Mikel Olasagasti Uranga <mikel@olasagasti.info>
– Update to 1.102.0 – Closes rhbz#2255468 rhbz#2255083

Read More

FEDORA-EPEL-2023-60e0cc89b7

Packages in this update:

perl-Spreadsheet-ParseExcel-0.6600-1.el7

Update description:

Fix for CVE-2023-7101 (unvalidated input can lead to arbitrary code execution vulnerability).

This update also rolls up a number of additional bug-fixes and enhancements since version 0.59, the original build of the package in EPEL-7. See package changelog for a list with references.

Read More

FEDORA-EPEL-2023-735fe09bcb

Packages in this update:

perl-Spreadsheet-ParseExcel-0.6600-1.el9

Update description:

Fix for CVE-2023-7101 (unvalidated input can lead to arbitrary code execution vulnerability).

Read More

FEDORA-EPEL-2023-c87fdba1fc

Packages in this update:

perl-Spreadsheet-ParseExcel-0.6600-1.el8

Update description:

Fix for CVE-2023-7101 (unvalidated input can lead to arbitrary code execution vulnerability).

Read More

FEDORA-2023-921f6975c2

Packages in this update:

perl-Spreadsheet-ParseExcel-0.6600-1.fc39

Update description:

Fix for CVE-2023-7101 (unvalidated input can lead to arbitrary code execution vulnerability).

Read More

FEDORA-2023-84d3cc47b1

Packages in this update:

perl-Spreadsheet-ParseExcel-0.6600-1.fc38

Update description:

Fix for CVE-2023-7101 (unvalidated input can lead to arbitrary code execution vulnerability).

Read More

FEDORA-2023-1f06098c71

Packages in this update:

python-aiohttp-3.9.1-1.fc38
python-pysqueezebox-0.5.5-11.fc38
python-wled-0.4.4-11.fc38

Update description:

Security fix for CVE-2023-49081, CVE-2023-49082.

Update python-aiohttp to 3.9.1.

Patch python-pysqeezebox and python-wled so they do not have an implicit dependency on python-async-timeout via python-aiohttp.

https://github.com/aio-libs/aiohttp/releases/tag/v3.9.0

https://github.com/aio-libs/aiohttp/releases/tag/v3.9.1

Read More

FEDORA-2023-a04cc349e1

Packages in this update:

python-aiohttp-3.9.1-1.fc39
python-pysqueezebox-0.5.5-11.fc39
python-wled-0.4.4-11.fc39

Update description:

Security fix for CVE-2023-49081, CVE-2023-49082.

Update python-aiohttp to 3.9.1.

Patch python-pysqeezebox and python-wled so they do not have an implicit dependency on python-async-timeout via python-aiohttp.

https://github.com/aio-libs/aiohttp/releases/tag/v3.9.0

https://github.com/aio-libs/aiohttp/releases/tag/v3.9.1

Read More

It was discovered that missing input sanitising in
libspreadsheet-parseexcel-perl, a Perl module to access information from
Excel Spreadsheets, may result in the execution of arbitrary commands if
a specially crafted document file is processed.

https://security-tracker.debian.org/tracker/DSA-5592-1

Read More