Category Archives: Advisories

micropython-1.23.0-1.fc42

Read Time:19 Second

FEDORA-2024-81b8dc2197

Packages in this update:

micropython-1.23.0-1.fc42

Update description:

Automatic update for micropython-1.23.0-1.fc42.

Changelog

* Thu Oct 17 2024 Charalampos Stratakis <cstratak@redhat.com> – 1.23.0-1
– Update to 1.23.0
– Security fixes for CVE-2024-8946, CVE-2024-8947, CVE-2024-8948
Resolves: rhbz#2312926, rhbz#2312923, rhbz#2312921

Read More

USN-7080-1: Unbound vulnerability

Read Time:12 Second

Toshifumi Sakaguchi discovered that Unbound incorrectly handled name
compression for large RRsets, which could lead to excessive CPU usage.
An attacker could potentially use this issue to cause a denial of service
by sending specially crafted DNS responses.

Read More

NetworkManager-libreswan-1.2.24-1.fc39

Read Time:15 Second

FEDORA-2024-d20b38c63f

Packages in this update:

NetworkManager-libreswan-1.2.24-1.fc39

Update description:

This is an update to 1.2.24 release of NetworkManager-libreswan, the IPSec VPN plugin for NetworkManager. It fixes a local privilege escalation bug due to improper escaping of Libreswan configuration. (CVE-2024-9050)

Read More

NetworkManager-libreswan-1.2.24-1.fc40

Read Time:15 Second

FEDORA-2024-e88cc97dba

Packages in this update:

NetworkManager-libreswan-1.2.24-1.fc40

Update description:

This is an update to 1.2.24 release of NetworkManager-libreswan, the IPSec VPN plugin for NetworkManager. It fixes a local privilege escalation bug due to improper escaping of Libreswan configuration. (CVE-2024-9050)

Read More

NetworkManager-libreswan-1.2.24-1.fc41

Read Time:15 Second

FEDORA-2024-2e8944621e

Packages in this update:

NetworkManager-libreswan-1.2.24-1.fc41

Update description:

This is an update to 1.2.24 release of NetworkManager-libreswan, the IPSec VPN plugin for NetworkManager.
It fixes a local privilege escalation bug due to improper escaping of Libreswan configuration. (CVE-2024-9050)

Read More

USN-7079-1: WebKitGTK vulnerabilities

Read Time:15 Second

Several security issues were discovered in the WebKitGTK Web and JavaScript
engines. If a user were tricked into viewing a malicious website, a remote
attacker could exploit a variety of issues related to web browser security,
including cross-site scripting attacks, denial of service attacks, and
arbitrary code execution.

Read More