DSA-5752-1 dovecot – security update
Two vulnerabilities have been discovered in the IMAP implementation of the Dovecot mail server: Excessive numbers of address headers or very large headers can result...
USN-6944-2: curl vulnerability
USN-6944-1 fixed CVE-2024-7264 for Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu 24.04 LTS. This update provides the corresponding fix for Ubuntu 14.04 LTS, Ubuntu...
USN-6970-1: exfatprogs vulnerability
It was discovered that exfatprogs incorrectly handled certain memory operations. If a user or automated system were tricked into handling specially crafted exfat partitions, a...
USN-6969-1: Cacti vulnerabilities
It was discovered that Cacti did not properly apply checks to the "Package Import" feature. An attacker could possibly use this issue to perform arbitrary...
python3.6-3.6.15-35.fc39
FEDORA-2024-a7af4e0ea2 Packages in this update: python3.6-3.6.15-35.fc39 Update description: Security fix for CVE-2024-6923 Read More
python3.6-3.6.15-35.fc40
FEDORA-2024-254c31b144 Packages in this update: python3.6-3.6.15-35.fc40 Update description: Security fix for CVE-2024-6923 Read More
ZDI-24-1154: Autel MaxiCharger AC Elite Business C50 AppAuthenExchangeRandomNum Stack-Based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Autel MaxiCharger AC Elite Business C50 EV chargers. Authentication is not required...
ZDI-24-1153: Autodesk AutoCAD DWF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that...
ZDI-24-1152: Phoenix Contact CHARX SEC-3100 Improper Access Control Authentication Bypass Vulnerability
This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of Phoenix Contact CHARX SEC-3100 devices. Authentication is not required to exploit this vulnerability....
USN-6967-1: Intel Microcode vulnerabilities
It was discovered that some Intel® Core™ Ultra Processors did not properly isolate the stream cache. A local authenticated user could potentially use this to...