Read Time:27 Second

FEDORA-2023-3a9674404c

Packages in this update:

tpm2-tools-5.4-1.fc36
tpm2-tss-3.2.2-1.fc36

Update description:

Fixed:

A buffer overflow in tss2-rc as CVE-2023-22745.
The drv layer in tss2-rc should have been the policy layer.
Spec deviation in Fapi_GetDescription caused description to be NULL when it should be empty string. This is API breaking but considered a bug since it deviated from the FAPI spec
FAPI: undefined reference to curl_url_strerror when using curl less than 7.80.0.

USN-7469-2: Apache Tomcat vulnerability

USN-7469-1 fixed a vulnerability in Apache Traffic Server. This update provides the corresponding updates for Apache Tomcat. Original advisory details:...

April 28, 2025

USN-7469-1: Apache Traffic Server vulnerability

It was discovered that Apache Traffic Server exhibited poor server resource management in its HTTP/2 protocol. An attacker could possibly...

April 28, 2025

USN-7468-1: Linux kernel (Azure, N-Series) vulnerabilities

Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker...

April 28, 2025