It was discovered that Vim incorrectly handled memory when opening certain
files. If an attacker could trick a user into opening a specially crafted
file, it could cause Vim to crash, or possibly execute arbitrary code. This
issue only affected Ubuntu 22.04 LTS. (CVE-2022-3235, CVE-2022-3278,
CVE-2022-3297, CVE-2022-3491)

It was discovered that Vim incorrectly handled memory when opening certain
files. If an attacker could trick a user into opening a specially crafted
file, it could cause Vim to crash, or possibly execute arbitrary code. This
issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, and Ubuntu 22.04
LTS. (CVE-2022-3352, CVE-2022-4292)

It was discovered that Vim incorrectly handled memory when replacing in
virtualedit mode. An attacker could possibly use this issue to cause a
denial of service. This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04
LTS, and Ubuntu 22.04 LTS. (CVE-2022-3234)

It was discovered that Vim incorrectly handled memory when autocmd changes
mark. An attacker could possibly use this issue to cause a denial of
service. (CVE-2022-3256)

It was discovered that Vim did not properly perform checks on array index
with negative width window. An attacker could possibly use this issue to
cause a denial of service, or execute arbitrary code. (CVE-2022-3324)

It was discovered that Vim did not properly perform checks on a put command
column with a visual block. An attacker could possibly use this issue to
cause a denial of service. This issue only affected Ubuntu 20.04 LTS, and
Ubuntu 22.04 LTS. (CVE-2022-3520)

It was discovered that Vim incorrectly handled memory when using autocommand
to open a window. An attacker could possibly use this issue to cause a
denial of service. (CVE-2022-3591)

It was discovered that Vim incorrectly handled memory when updating buffer
of the component autocmd handler. An attacker could possibly use this issue
to cause a denial of service. This issue only affected Ubuntu 20.04 LTS,
and Ubuntu 22.04 LTS. (CVE-2022-3705)

It was discovered that Vim incorrectly handled floating point comparison
with incorrect operator. An attacker could possibly use this issue to cause
a denial of service. This issue only affected Ubuntu 20.04 LTS. and Ubuntu
22.04 LTS. (CVE-2022-4293)

Read More

FEDORA-2023-09ec498a2a

Packages in this update:

firefox-118.0.1-7.fc37

Update description:

This update is intended to fix all the issues with broken launchers and KDE crashes that were caused by changes to the .desktop files in recent Firefox updates. Please report any remaining issues.

This update provides the latest release of Firefox, with an important security fix. We highly recommend you install this update immediately and restart all Firefox instances.

Read More

Post Content

Read More

Post Content

Read More

Post Content

Read More

Post Content

Read More

Post Content

Read More

FEDORA-2023-28cff1a2de

Packages in this update:

golang-x-image-0.13.0-1.fc39

Update description:

Update to 0.13.0
Security fix for CVE-2023-29408
Security fix for CVE-2023-29407
Security fix for CVE-2022-41727

Read More

FEDORA-2023-4d95d44e7b

Packages in this update:

golang-x-image-0.13.0-1.fc38

Update description:

Update to 0.13.0
Security fix for CVE-2023-29408
Security fix for CVE-2023-29407
Security fix for CVE-2022-41727

Read More

FEDORA-2023-c862a1e289

Packages in this update:

golang-x-image-0.13.0-1.fc37

Update description:

Update to 0.13.0
Security fix for CVE-2023-29408
Security fix for CVE-2023-29407
Security fix for CVE-2022-41727

Read More