Read Time:28 Second

FEDORA-EPEL-2022-e05ac11f9b

Packages in this update:

openssl11-1.1.1k-4.el7

Update description:

backport from 1.1.1k-7: CVE-2022-2097: AES OCB fails to encrypt some bytes on 32-bit x86

Resolves: CVE-2022-2097

backport from 1.1.1k-7: Update expired certificates used in the testsuite

Resolves: rhbz#2100554

backport from 1.1.1k-7: CVE-2022-1292: openssl: c_rehash script allows command injection

Resolves: rhbz#2090371

backport from 1.1.1k-7: CVE-2022-2068: the c_rehash script allows command injection

Resolves: rhbz#2098278

USN-7455-4: Linux kernel (Oracle) vulnerabilities

Jann Horn discovered that the watch_queue event notification subsystem in the Linux kernel contained an out-of-bounds write vulnerability. A local...

April 25, 2025

ZDI-CAN-26945: NI

A CVSS score 7.8 AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H severity vulnerability discovered by 'Rocco Calvi (@TecR0c) with TecSecurity' was reported to the affected vendor...

April 25, 2025

Commvault Command Center Path Traversal Vulnerability (CVE-2025-34028)

What is the Vulnerability?A critical path traversal vulnerability has been identified in Commvault's Command Center Innovation Release. The vulnerability, tracked...

April 25, 2025