Read Time:6 Second
FEDORA-2024-250a5263f8
Packages in this update:
firefox-130.0-3.fc41
Update description:
New upstream update (130.0)
Daily Archives: September 5, 2024
firefox-130.0-3.fc40
Read Time:6 Second
FEDORA-2024-9922206495
Packages in this update:
firefox-130.0-3.fc40
Update description:
New upstream update (130.0)
firefox-130.0-3.fc39
Read Time:6 Second
FEDORA-2024-1304d7f338
Packages in this update:
firefox-130.0-3.fc39
Update description:
New upstream update (130.0)
mingw-python3-3.11.9-2.fc41
Read Time:7 Second
FEDORA-2024-48fd84da22
Packages in this update:
mingw-python3-3.11.9-2.fc41
Update description:
Backport patch for CVE-2024-8088
USN-6994-1: Netty vulnerabilities
Read Time:18 Second
It was discovered that Netty did not properly sanitize its input
parameters. A remote attacker could possibly use this issue to cause a
crash. (CVE-2023-34462)
It was discovered that Netty incorrectly handled request cancellation. A
remote attacker could possibly use this issue to cause Netty to consume
resources, leading to a denial of service. (CVE-2023-44487)
USN-6991-1: AIOHTTP vulnerability
Read Time:11 Second
It was discovered that AIOHTTP did not properly restrict file access when
the ‘follow_symlinks’ option was set to True. A remote attacker could
possibly use this issue to access unauthorized files on the system.
thunderbird-128.2.0-1.fc40
Read Time:9 Second
FEDORA-2024-a27e8b69a0
Packages in this update:
thunderbird-128.2.0-1.fc40
Update description:
Update to 128.2.0
https://www.thunderbird.net/en-US/thunderbird/128.2.0esr/releasenotes/
thunderbird-128.2.0-1.fc41
Read Time:9 Second
FEDORA-2024-194cb0840b
Packages in this update:
thunderbird-128.2.0-1.fc41
Update description:
Update to 128.2.0
https://www.thunderbird.net/en-US/thunderbird/128.2.0esr/releasenotes/
thunderbird-115.15.0-1.fc39
Read Time:9 Second
FEDORA-2024-e77ad5f585
Packages in this update:
thunderbird-115.15.0-1.fc39
Update description:
Update to 115.15.0
https://www.thunderbird.net/en-US/thunderbird/115.15.0esr/releasenotes/
Multiple Vulnerabilities in Veeam Products Could Allow for Remote Code Execution
Read Time:38 Second
Multiple vulnerabilities have been discovered in Veeam Products, the most severe of which could allow for remote code execution.
Veeam Backup & Replication is a proprietary backup app.
Veeam ONE is a solution for managing virtual and data protection environments.
Veeam Service Provider Console provides centralized monitoring and management capabilities for Veeam protected virtual, Microsoft 365, and public cloud workloads.
Veeam Agent for Linux is a backup agent that’s designed Linux Instances.
Veeam Backup for Nutanix.
Veeam Backup for Oracle Linux Virtualization Manager and Red Hat Virtualization.
Successful exploitation of the most severe of these vulnerabilities could allow for remote code execution in the context of the system. Depending on the privileges associated with the system, an attacker could then install programs; view, change, or delete data.