Monthly Archives: April 2024

Advisories

python-pydantic-1.10.14-1.el9

Read Time:15 Second

FEDORA-EPEL-2024-3a714d30a3

Packages in this update:

python-pydantic-1.10.14-1.el9

Update description:

Security fix for CVE-2024-3772 (regular expression denial of service via crafted email string). Update to latest 1.10.x release: https://github.com/pydantic/pydantic/blob/v1.10.14/HISTORY.md

Read More

Advisories

etcd-3.5.13-1.fc41

Read Time:25 Second

FEDORA-2024-cc8fcab025

Packages in this update:

etcd-3.5.13-1.fc41

Update description:

Automatic update for etcd-3.5.13-1.fc41.

Changelog

* Tue Apr 16 2024 Mikel Olasagasti Uranga <mikel@olasagasti.info> – 3.5.13-1
– Update to 3.5.13 – Closes rhbz#2225797 rhbz#2171486 rhbz#2170782
rhbz#2236640 rhbz#2243321 rhbz#2248266 rhbz#2251230
* Tue Apr 16 2024 Pete Zaitcev <zaitcev@kotori.zaitcev.us> – 3.5.11-1
– Update to 3.5.11

Read More

Advisories

Multiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution

Read Time:36 Second

Multiple vulnerabilities have been discovered in Mozilla products, the most severe of which could allow for arbitrary code execution.

Mozilla Firefox is a web browser used to access the Internet.
Mozilla Firefox ESR is a version of the web browser intended to be deployed in large organizations.
Mozilla Thunderbird is an email client.

Successful exploitation of the most severe of these vulnerabilities could allow for arbitrary code execution. Depending on the privileges associated with the user an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.

Read More