USN-5887-1: ClamAV vulnerabilities
Simon Scannell discovered that ClamAV incorrectly handled parsing HFS+ files. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in...
cairo-1.17.8-2.fc38 freetype-2.13.0-2.fc38 harfbuzz-7.0.1-2.fc38 qt6-qtwebengine-6.4.2-3.fc38
FEDORA-2023-a48406ecd2 Packages in this update: cairo-1.17.8-2.fc38 freetype-2.13.0-2.fc38 harfbuzz-7.0.1-2.fc38 qt6-qtwebengine-6.4.2-3.fc38 Update description: Security fix for CVE-2023-25193 Update of HarfBuzz to 7.0.1 version (#2169172) Update of freetype...
USN-5886-1: Intel Microcode vulnerabilities
Erik C. Bjorge discovered that some Intel(R) Atom and Intel Xeon Scalable Processors did not properly implement access controls for out-of-band management. This may allow...
When Low-Tech Hacks Cause High-Impact Breaches
Web hosting giant GoDaddy made headlines this month when it disclosed that a multi-year breach allowed intruders to steal company source code, siphon customer and...
USN-5885-1: APR vulnerability
Ronald Crane discovered integer overflow vulnerabilities in the Apache Portable Runtime (APR) that could potentially result in memory corruption. A remote attacker could possibly use...
The cloud’s worst kept secret? Vulnerabilities
Graham Cluley Security News is sponsored this week by the folks at Sysdig. Thanks to the great team there for their support! The unmanageable number...
DSA-5365 curl – security update
Patrick Monnerat discovered that Curl's support for chained HTTP compression algorithms was susceptible to denial of service. Read More
radare2-5.8.2-2.el9
FEDORA-EPEL-2023-06f86f0ae3 Packages in this update: radare2-5.8.2-2.el9 Update description: fix sdb generation from messon update to 5.8.2, fixes several CVE issues Read More
rust-sequoia-octopus-librnp-1.4.1-5.fc37 rust-sequoia-sop-0.26.1-5.fc37 rust-sequoia-sq-0.26.0-5.fc37
FEDORA-2023-c17427d18a Packages in this update: rust-sequoia-octopus-librnp-1.4.1-5.fc37 rust-sequoia-sop-0.26.1-5.fc37 rust-sequoia-sq-0.26.0-5.fc37 Update description: Rebuild for bzip2 0.4.4 (CVE-2023-22895 / RUSTSEC-2023-0004). Read More
rust-sequoia-octopus-librnp-1.4.1-5.fc38 rust-sequoia-sop-0.26.1-5.fc38 rust-sequoia-sq-0.26.0-5.fc38
FEDORA-2023-c08ee112f6 Packages in this update: rust-sequoia-octopus-librnp-1.4.1-5.fc38 rust-sequoia-sop-0.26.1-5.fc38 rust-sequoia-sq-0.26.0-5.fc38 Update description: Rebuild for bzip2 0.4.4 (CVE-2023-22895 / RUSTSEC-2023-0004). Read More