FEDORA-FLATPAK-2024-5ad8ccec67
Packages in this update:
icecat-flatpak-115.18.0-2
Update description:
Updated patchset for CVE-2024-11693 CVE-2024-11697 CVE-2024-11692
icecat-flatpak-115.18.0-2
Updated patchset for CVE-2024-11693 CVE-2024-11697 CVE-2024-11692
mupdf-1.24.6-2.fc40
fix CVE-2024-46657 (rhbz#2331626)
mupdf-1.21.1-6.el9
fix CVE-2024-46657 (rhbz#2331625)
Two security issues have been discovered in FastNetMon, a fast DDoS
analyzer: Malformed Netflow/sFlow traffic could result in denial of
service.
Multiple vulnerabilities have been discovered in the Xen hypervisor,
which could result in privilege escalation, denial of service or
information leaks.
The following vulnerabilities have been discovered in the WebKitGTK
web engine:
CVE-2024-54479
Seunghyun Lee discovered that processing maliciously crafted web
content may lead to an unexpected process crash.
CVE-2024-54502
Brendon Tiszka discovered that processing maliciously crafted web
content may lead to an unexpected process crash.
CVE-2024-54505
Gary Kwong discovered that processing maliciously crafted web
content may lead to memory corruption.
CVE-2024-54508
linjy, chluo and Xiangwei Zhang discovered that processing
maliciously crafted web content may lead to an unexpected process
crash.
openjpeg2-2.5.3-1.fc40
Update to openjpeg-2.5.3
Fix 2 heap-buffer-overflow
libxml2-2.12.9-1.fc40
Update to 2.12.9
Fixes CVE-2024-40896
libxml2-2.12.9-1.fc41
Update to 2.12.9
Fixes CVE-2024-40896.
iwd-3.3-1.fc40
libell-0.71-1.fc40
iwd 3.3:
Fix issue with handling External Authentication.
iwd 3.2:
Fix issue with GCC 15 and -std=c23 build errors.
Add support for using PMKSA over SAE if available.
Add support for HighUtilization/StationCount thresholds.
Add support for disabling Multicast RX option.
ell 0.71:
Fix issue with GCC 15 and -std=c23 build errors.
ell 0.70:
Add support for helper function for safe memcpy.