golang-1.21.6-1.fc39
Automatic update for golang-1.21.6-1.fc39.
* Mon Jan 15 2024 Packit <hello@packit.dev> – 1.21.6-1
– [packit] 1.21.6 upstream release
Fabian Bäumer, Marcus Brinkmann, Jörg Schwenk discovered that the SSH
protocol was vulnerable to a prefix truncation attack. If a remote attacker
was able to intercept SSH communications, extension negotiation messages
could be truncated, possibly leading to certain algorithms and features
being downgraded. This issue is known as the Terrapin attack. This update
adds protocol extensions to mitigate this issue.
Philipp Jeitner and Haya Shulman discovered that Libspf2 incorrectly handled
certain inputs. If a user or an automated system were tricked into opening a
specially crafted input file, a remote attacker could possibly use this issue
to cause a denial of service or execute arbitrary code. (CVE-2021-20314)
It was discovered that Libspf2 incorrectly handled certain inputs. If a user or
an automated system were tricked into opening a specially crafted input file, a
remote attacker could possibly use this issue to cause a denial of service or
execute arbitrary code. This issue only affected Ubuntu 18.04 LTS and
Ubuntu 20.04 LTS. (CVE-2021-33912, CVE-2021-33913)
Netscout found a spike from 10,000 to 143,957 devices in scans between December 2023 and early January 2024
US senators have accused the SEC of failing to properly secure its social media accounts after hackers comprised its X account and posted a fake Bitcoin announcement
ImageMagick-7.1.1.26-2.fc38
fix PKG_CONFIG_LIBDIR
Update to 7.1.1.26 (#2239345)
ImageMagick-7.1.1.26-2.fc39
fix PKG_CONFIG_LIBDIR
Update to 7.1.1.26 (#2239345)
Discovered by the SentinelLabs team, FBot targets web servers, cloud services and SaaS platforms
Hundreds of pet owners across the UK have reported that they have received blackmail threats from scammers who claim to have found their lost pooches and missing moggies.
Read more in my article on the Hot for Security blog.
ImageMagick-7.1.1.26-1.fc38
Update to 7.1.1.26 (#2239345)
