Improper input validation in the firmware for some Intel(R) Server Board M10JNP Family before version 7.216 may allow a privileged user to potentially enable an escalation of privilege via local access.

Read More

FEDORA-2022-2c37647a9c

Packages in this update:

dotnet6.0-6.0.110-2.fc37

Update description:

This is the October 2022 monthly update for .NET 6.

It updates the SDK to 6.0.110 and the Runtime to 6.0.10.

This update includes a fix for CVE 2022-41032

Read More

FEDORA-2022-cae8089f93

Packages in this update:

python3.6-3.6.15-14.fc37

Update description:

Security fix for CVE-2022-37454.

Read More

FEDORA-2022-17bc21cf38

Packages in this update:

python3.6-3.6.15-14.fc38

Update description:

Security fix for CVE-2022-37454.

Read More

It was discovered that WavPack was not properly performing checks
when dealing with memory. If a user were tricked into decompressing a
specially crafted WavPack Audio File, an attacker could possibly use
this issue to cause the WavPack decompressor to crash, resulting in a
denial of service.

Read More

xpdfreader 4.03 is vulnerable to Buffer Overflow.

Read More

mm-wki v0.2.1 is vulnerable to Cross Site Scripting (XSS).

Read More

FEDORA-MODULAR-2022-3e72c6af14

Packages in this update:

nginx-1.20-3620221110171337.5e5ad4a0

Update description:

Backported fixes for CVE-2022-41741 and CVE-2022-41742.

Read More

FEDORA-MODULAR-2022-4f8cc50239

Packages in this update:

nginx-1.20-3520221110171337.f27b74a8

Update description:

Backported fixes for CVE-2022-41741 and CVE-2022-41742.

Read More

FEDORA-MODULAR-2022-d50a9f774e

Packages in this update:

nginx-1.20-3720221110171337.9e842022

Update description:

Backported fixes for CVE-2022-41741 and CVE-2022-41742.

Read More