FEDORA-EPEL-2024-775b3dac95
Packages in this update:
firmitas-0.1.3-1.el9
Update description:
Cryptography v42 is the new thing.
Please follow the steps provided here https://github.com/fedora-infra/firmitas/blob/main/README.md for testing.
References
https://github.com/fedora-infra/firmitas/security/dependabot/1
https://github.com/fedora-infra/firmitas/security/dependabot/2
https://github.com/fedora-infra/firmitas/security/dependabot/3
More Stories
USN-7023-1: Git vulnerabilities
Maxime Escourbiac and Yassine Bengana discovered that Git incorrectly handled some gettext machinery. An attacker could possibly use this issue...
Stored XSS in “Edit Profile” – htmlyv2.9.9
Posted by Andrey Stoykov on Sep 18 # Exploit Title: Stored XSS in "Edit Profile" - htmlyv2.9.9 # Date: 9/2024...
Stored XSS in “Menu Editor” – htmlyv2.9.9
Posted by Andrey Stoykov on Sep 18 # Exploit Title: Stored XSS in "Menu Editor" - htmlyv2.9.9 # Date: 9/2024...
Backdoor.Win32.BlackAngel.13 / Unauthenticated Remote Command Execution
Posted by malvuln on Sep 18 Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2024 Original source: https://malvuln.com/advisory/d1523df44da5fd40df92602b8ded59c8.txt Contact:...
Backdoor.Win32.CCInvader.10 / Authentication Bypass
Posted by malvuln on Sep 18 Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2024 Original source: https://malvuln.com/advisory/cb86af8daa35f6977c80814ec6e40d63.txt Contact:...
Backdoor.Win32.Delf.yj / Information Disclosure
Posted by malvuln on Sep 18 Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2024 Original source: https://malvuln.com/advisory/f991c25f1f601cc8d14dca4737415238.txt Contact:...