FEDORA-EPEL-2022-18ac3af1c8
Packages in this update:
varnish-4.0.5-3.el7
Update description:
This release includes a security update with mitigation instructions for VSV00008 aka CVE-2022-23959
PLEASE NOTE: varnish-4.0.5 is marked END OF LIFE from the Varnish Cache upstream project. Please consider upgrading to varnish-6.0 LTS. See https://varnish-cache.org/ for updated packages compatible with VCL 4.0 on el7.
Other updates:
– Workaround for systemd race
– Dropped el6 support
A security update. Includes mitigation instructions for VSV00008 aka CVE-2022-23959
PLEASE NOTE: varnish-4.0.5 is marked END OF LIFE from the Varnish Cache upstream project. Please consider upgrading to varnish-6.0 LTS. See https://varnish-cache.org/ for updated packages compatible with VCL 4.0 on el7.
More Stories
webkitgtk-2.46.0-1.fc40
FEDORA-2024-00448ce92b Packages in this update: webkitgtk-2.46.0-1.fc40 Update description: Use Skia instead of cairo for 2D rendering and enable GPU rendering...
webkitgtk-2.46.0-2.fc41
FEDORA-2024-711db299ed Packages in this update: webkitgtk-2.46.0-2.fc41 Update description: Use Skia instead of cairo for 2D rendering and enable GPU rendering...
USN-7019-1: Linux kernel vulnerabilities
Ziming Zhang discovered that the DRM driver for VMware Virtual GPU did not properly handle certain error conditions, leading to...
Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution
Multiple vulnerabilities have been discovered in Google Chrome, the most severe of which could allow for arbitrary code execution. Successful...
USN-7018-1: OpenSSL vulnerabilities
Robert Merget, Marcus Brinkmann, Nimrod Aviram, and Juraj Somorovsky discovered that certain Diffie-Hellman ciphersuites in the TLS specification and implemented...
USN-7017-1: Quagga vulnerability
Iggy Frankovic discovered that Quagga incorrectly handled certain BGP messages. A remote attacker could possibly use this issue to cause...