A use-after-free was discovered when removing an XSLT parameter in some
circumstances. If a user were tricked into opening a specially crafted
website, an attacker could exploit this to cause a denial of service, or
execute arbitrary code. (CVE-2022-26485)
A use-after-free was discovered in the WebGPU IPC framework. If a user
were tricked into opening a specially crafted website, an attacker could
exploit this to cause a denial of service, or execute arbitrary code.
(CVE-2022-26486)
More Stories
USN-7555-3: Django vulnerability
USN-7555-1 fixed a vulnerability in Django. This update provides an additional fix for Ubuntu 18.04 LTS. Original advisory details: It...
spdlog-1.14.1-4.fc41
FEDORA-2025-7d5c7fe0c7 Packages in this update: spdlog-1.14.1-4.fc41 Update description: Backported the upstream CVE-2025-6140 fix. Read More
dotnet8.0-8.0.117-1.fc41
FEDORA-2025-433fb98ceb Packages in this update: dotnet8.0-8.0.117-1.fc41 Update description: This is the June 2025 monthly update for .NET 8. Release Notes:...
dotnet8.0-8.0.117-1.fc42
FEDORA-2025-fa1fdd193f Packages in this update: dotnet8.0-8.0.117-1.fc42 Update description: This is the June 2025 monthly update for .NET 8. Release Notes:...
USN-7571-1: c3p0 vulnerability
Aaron Massey discovered that c3p0 could be made to crash when parsing certain input. An attacker able to modify the...
python-setuptools-69.2.0-10.fc41
FEDORA-2025-1746085e78 Packages in this update: python-setuptools-69.2.0-10.fc41 Update description: Security fix for CVE-2025-47273 Read More