Packages in this update:
Limit the number of fields and files when parsing multipart/form-data on the MultipartParser
🚨 This is a security fix. Please upgrade as soon as possible.
⬆ Upgrade Starlette to 0.25.0.
This solves a vulnerability that could allow denial of service attacks by using many small multipart fields/files (parts), consuming high CPU and memory.
Only applications using forms (e.g. file uploads) could be affected.
For most cases, upgrading won’t have any breaking changes.
FEDORA-2023-d525cf5272 Packages in this update: kernel-6.2.9-100.fc36 Update description: The 6.2.9 stable kernel update contains a number of important fixes across...
FEDORA-2023-98251cef79 Packages in this update: kernel-6.2.9-200.fc37 Update description: The 6.2.9 stable kernel update contains a number of important fixes across...
FEDORA-2023-c46eb02bbf Packages in this update: kernel-6.2.9-300.fc38 Update description: The 6.2.9 stable kernel update contains a number of important fixes across...
USN-5855-3: ImageMagick regression
USN-5855-2 fixed vulnerabilities in ImageMagick. Unfortunately an additional mitigation caused a regression. This update fixes the problem. We apologize for...
USN-5991-1: Linux kernel (GCP) vulnerabilities
It was discovered that the System V IPC implementation in the Linux kernel did not properly handle large shared memory...
FEDORA-EPEL-2023-7be8f2df20 Packages in this update: seamonkey-2.53.16-1.el7 Update description: Update to 2.53.16 Langpacks are now provided in the modern form of...