FEDORA-2023-540de58d84

Packages in this update:

slurm-22.05.11-2.fc38

Update description:

Update to 22.05.11
Closes CVE-2023-49933 through CVE-2023-49938

Read More

FEDORA-2023-9a74d212f8

Packages in this update:

slurm-22.05.11-2.fc39

Update description:

Update to 22.05.11
Closes CVE-2023-49933 through CVE-2023-49938

Read More

Fabian Baeumer, Marcus Brinkmann and Joerg Schwenk discovered that the
SSH protocol is prone to a prefix truncation attack, known as the
“Terrapin attack”. This attack allows a MITM attacker to effect a
limited break of the integrity of the early encrypted SSH transport
protocol by sending extra messages prior to the commencement of
encryption, and deleting an equal number of consecutive messages
immediately after encryption starts.

Details can be found at https://terrapin-attack.com/

https://security-tracker.debian.org/tracker/DSA-5588-1

Read More

FEDORA-EPEL-2023-f6ff23a804

Packages in this update:

chromium-120.0.6099.129-1.el8

Update description:

update to 120.0.6099.129

High CVE-2023-7024: Heap buffer overflow in WebRTC

Read More

FEDORA-2023-55800423a8

Packages in this update:

libssh-0.10.6-2.fc38

Update description:

Fix regression in IPv6 hosntames parsing

New upstream release fixing (CVE-2023-48795, CVE-2023-6004, CVE-2023-6918)

Read More

FEDORA-EPEL-2023-46203ab7be

Packages in this update:

chromium-120.0.6099.129-1.el7

Update description:

update to 120.0.6099.129

High CVE-2023-7024: Heap buffer overflow in WebRTC

Read More

Two security issues were discovered in Curl: Cookies were incorrectly
validated against the public suffix list of domains and in same cases
HSTS data could fail to save to disk.

https://security-tracker.debian.org/tracker/DSA-5587-1

Read More

Post Content

Read More