Category: Advisories

Qian Chen discovered that Open vSwitch incorrectly handled certain Organization Specific TLVs. A remote attacker could use this issue to cause Open vSwitch to crash,...

It was discovered that ZoneMinder was not properly sanitizing URL parameters for certain views. An attacker could possibly use this issue to perform a cross-site...

FEDORA-2023-424636c7cb Packages in this update: perl-HTTP-Daemon-6.16-1.fc37 Update description: 6.16 2023-02-24 03:07:14Z Bump LWP::UserAgent to 6.37 in TestSuggests (GH#65) (Olaf Alders) 6.15 2023-02-22 22:02:46Z Fix CVE-2022-31081:...

FEDORA-2023-c230cc08c4 Packages in this update: perl-HTTP-Daemon-6.16-1.fc36 Update description: 6.16 2023-02-24 03:07:14Z Bump LWP::UserAgent to 6.37 in TestSuggests (GH#65) (Olaf Alders) 6.15 2023-02-22 22:02:46Z Fix CVE-2022-31081:...

Simon Scannell discovered that ClamAV incorrectly handled parsing HFS+ files. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in...

FEDORA-2023-a48406ecd2 Packages in this update: cairo-1.17.8-2.fc38 freetype-2.13.0-2.fc38 harfbuzz-7.0.1-2.fc38 qt6-qtwebengine-6.4.2-3.fc38 Update description: Security fix for CVE-2023-25193 Update of HarfBuzz to 7.0.1 version (#2169172) Update of freetype...

Erik C. Bjorge discovered that some Intel(R) Atom and Intel Xeon Scalable Processors did not properly implement access controls for out-of-band management. This may allow...

Ronald Crane discovered integer overflow vulnerabilities in the Apache Portable Runtime (APR) that could potentially result in memory corruption. A remote attacker could possibly use...

Patrick Monnerat discovered that Curl's support for chained HTTP compression algorithms was susceptible to denial of service. Read More

FEDORA-EPEL-2023-06f86f0ae3 Packages in this update: radare2-5.8.2-2.el9 Update description: fix sdb generation from messon update to 5.8.2, fixes several CVE issues Read More