Read Time:38 Second

It was discovered that the network queuing discipline implementation in the
Linux kernel contained a use-after-free vulnerability. A local attacker
could use this to cause a denial of service (system crash) or possibly
execute arbitrary code. (CVE-2023-1281)

It was discovered that the KVM VMX implementation in the Linux kernel did
not properly handle indirect branch prediction isolation between L1 and L2
VMs. An attacker in a guest VM could use this to expose sensitive
information from the host OS or other guest VMs. (CVE-2022-2196)

Thadeu Cascardo discovered that the io_uring subsystem contained a double-
free vulnerability in certain memory allocation error conditions. A local
attacker could possibly use this to cause a denial of service (system
crash). (CVE-2023-1032)

Read More

More Stories

webkitgtk-2.44.2-1.fc40

FEDORA-2024-1f37da80ec Packages in this update: webkitgtk-2.44.2-1.fc40 Update description: Make gamepads visible on axis movements, and not only on button presses....

webkitgtk-2.44.2-1.fc39

FEDORA-2024-3b912f1f3e Packages in this update: webkitgtk-2.44.2-1.fc39 Update description: Make gamepads visible on axis movements, and not only on button presses....

thunderbird-115.11.0-1.fc38

FEDORA-2024-22d4bc998d Packages in this update: thunderbird-115.11.0-1.fc38 Update description: Update to 115.11.0 https://www.mozilla.org/en-US/security/advisories/mfsa2024-23/ https://www.thunderbird.net/en-US/thunderbird/115.11.0/releasenotes/ Read More

chromium-125.0.6422.60-1.el8

FEDORA-EPEL-2024-1fb3cec2e0 Packages in this update: chromium-125.0.6422.60-1.el8 Update description: update to 125.0.6422.60 High CVE-2024-4947: Type Confusion in V8 High CVE-2024-4948: Use...

chromium-125.0.6422.60-1.el9

FEDORA-EPEL-2024-38d250bafc Packages in this update: chromium-125.0.6422.60-1.el9 Update description: update to 125.0.6422.60 High CVE-2024-4947: Type Confusion in V8 High CVE-2024-4948: Use...

Generated by Feedzy