Read Time:8 Second
Noah Misch discovered that PostgreSQL incorrectly handled certain
SQL objects. An attacker could possibly use this issue to execute
arbitrary SQL functions as the superuser.
Category Archives: Advisories
python3.6-3.6.15-35.fc41
Read Time:15 Second
FEDORA-2024-96ed485f6d
Packages in this update:
python3.6-3.6.15-35.fc41
Update description:
Automatic update for python3.6-3.6.15-35.fc41.
Changelog
* Fri Aug 16 2024 Tomáš Hrnčiar <thrnciar@redhat.com> – 3.6.15-35
– Security fix for CVE-2024-6923 (rhbz#2303161)
python3.6-3.6.15-35.fc42
Read Time:15 Second
FEDORA-2024-945226bee4
Packages in this update:
python3.6-3.6.15-35.fc42
Update description:
Automatic update for python3.6-3.6.15-35.fc42.
Changelog
* Fri Aug 16 2024 Tomáš Hrnčiar <thrnciar@redhat.com> – 3.6.15-35
– Security fix for CVE-2024-6923 (rhbz#2303161)
USN-6966-1: Firefox vulnerabilities
Read Time:1 Minute, 2 Second
Multiple security issues were discovered in Firefox. If a user were
tricked into opening a specially crafted website, an attacker could
potentially exploit these to cause a denial of service, obtain sensitive
information across domains, or execute arbitrary code. (CVE-2024-7518,
CVE-2024-7521, CVE-2024-7524, CVE-2024-7526, CVE-2024-7527, CVE-2024-7528,
CVE-2024-7529, CVE-2024-7530, CVE-2024-7531)
It was discovered that Firefox did not properly manage certain memory
operations when processing graphics shared memory. An attacker could
potentially exploit this issue to escape the sandbox. (CVE-2024-7519)
Nan Wang discovered that Firefox did not properly handle type check in
WebAssembly. An attacker could potentially exploit this issue to execute
arbitrary code. (CVE-2024-7520)
Irvan Kurniawan discovered that Firefox did not properly check an attribute
value in the editor component, leading to an out-of-bounds read
vulnerability. An attacker could possibly use this issue to cause a denial
of service or expose sensitive information. (CVE-2024-7522)
Rob Wu discovered that Firefox did not properly check permissions when
creating a StreamFilter. An attacker could possibly use this issue to
modify response body of requests on any site using a web extension.
(CVE-2024-7525)
USN-6837-2: Rack vulnerabilities
Read Time:34 Second
It was discovered that Rack incorrectly parsed certain media types. A
remote attacker could possibly use this issue to cause Rack to consume
resources, leading to a denial of service. This issue only affected
Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. (CVE-2024-25126)
It was discovered that Rack incorrectly handled certain Range headers. A
remote attacker could possibly use this issue to cause Rack to create
large responses, leading to a denial of service. (CVE-2024-26141)
It was discovered that Rack incorrectly handled certain crafted headers. A
remote attacker could possibly use this issue to cause Rack to consume
resources, leading to a denial of service. (CVE-2024-26146)
DSA-5751-1 squid – security update
Read Time:9 Second
Joshua Rogers that incorrect parsing of ESI variables in the Squid proxy
caching server could result in memory corruption.
dotnet8.0-8.0.108-1.fc39
Read Time:22 Second
FEDORA-2024-8eff1bffb1
Packages in this update:
dotnet8.0-8.0.108-1.fc39
Update description:
This is the August 2024 monthly update for .NET 8. This includes a fix for CVE-2024-38167
Release Notes:
SDK: https://github.com/dotnet/core/blob/main/release-notes/8.0/8.0.8/8.0.108.md
Runtime: https://github.com/dotnet/core/blob/main/release-notes/8.0/8.0.8/8.0.8.md
dotnet8.0-8.0.108-1.fc40
Read Time:22 Second
FEDORA-2024-f4eb809b49
Packages in this update:
dotnet8.0-8.0.108-1.fc40
Update description:
This is the August 2024 monthly update for .NET 8. This includes a fix for CVE-2024-38167
Release Notes:
SDK: https://github.com/dotnet/core/blob/main/release-notes/8.0/8.0.8/8.0.108.md
Runtime: https://github.com/dotnet/core/blob/main/release-notes/8.0/8.0.8/8.0.8.md
webkit2gtk4.0-2.44.3-2.fc40
Read Time:6 Second
FEDORA-2024-1f1c0537d3
Packages in this update:
webkit2gtk4.0-2.44.3-2.fc40
Update description:
Update to 2.44.3
restic-0.17.0-1.fc41
Read Time:16 Second
FEDORA-2024-e34ffb3c13
Packages in this update:
restic-0.17.0-1.fc41
Update description:
Automatic update for restic-0.17.0-1.fc41.
Changelog
* Sun Aug 18 2024 Mikel Olasagasti Uranga <mikel@olasagasti.info> – 0.17.0-1
– Update to 0.17.0 – Closes rhbz#2258380 rhbz#2292718 rhbz#2255107