FEDORA-2022-2dc2d8cb7c

Packages in this update:

samba-4.15.11-0.fc35

Update description:

Update to version 4.15.11 – Security fixes for CVE-2022-3437

Read More

FEDORA-2022-de515f765f

Packages in this update:

nodejs-16.18.1-1.fc35

Update description:

November 2022 Security Updates

https://nodejs.org/en/blog/vulnerability/november-2022-security-releases/

September Security Updates for Node.js

Update to Node.js 16.17.0

https://github.com/nodejs/node/blob/main/doc/changelogs/CHANGELOG_V16.md#16.17.0

Fix dependency typo

Update to 16.15.0

Update to Node.js 16.14.1

Note that we will be skipping 16.14.2 since the only changes were in the bundled copy of OpenSSL, which we do not use. The relevant security patches are handled in Fedora’s openssl package.

Read More

FEDORA-2022-1667f7b60a

Packages in this update:

nodejs-18.12.1-1.fc37

Update description:

November 2022 Security Updates

https://nodejs.org/en/blog/vulnerability/november-2022-security-releases/

Update to 18.10.0

https://github.com/nodejs/node/blob/main/doc/changelogs/CHANGELOG_V18.md#18.10.0

September Security Updates for Node.js

Update to 18.9.0

https://github.com/nodejs/node/blob/main/doc/changelogs/CHANGELOG_V18.md#18.9.0

Read More

FEDORA-2022-52dec6351a

Packages in this update:

nodejs-16.18.1-1.fc36

Update description:

November 2022 Security Updates

https://nodejs.org/en/blog/vulnerability/november-2022-security-releases/

September Security Updates for Node.js

Update to Node.js 16.17.0

https://github.com/nodejs/node/blob/main/doc/changelogs/CHANGELOG_V16.md#16.17.0

Fix dependency typo

Update to 16.15.0

Update to Node.js 16.14.1

Note that we will be skipping 16.14.2 since the only changes were in the bundled copy of OpenSSL, which we do not use. The relevant security patches are handled in Fedora’s openssl package.

Read More

In s::can moni::tools in versions below 4.2 an unauthenticated attacker could get any file from the device by path traversal in the camera-file module.

Read More

FEDORA-2022-28d38313c8

Packages in this update:

etcd-3.5.5-1.fc38~bootstrap

Update description:

Automatic update for etcd-3.5.5-1.fc38~bootstrap.

Changelog

* Sun Nov 6 2022 Robert-André Mauchin <zebob.m@gmail.com> 3.5.5-1
– Bootstrap
* Wed Aug 10 2022 Maxwell G <gotmax@e.email> 3.5.0-11
– Rebuild to fix FTBFS
* Wed Aug 10 2022 Maxwell G <gotmax@e.email> 3.5.0-10
– Rebuild to fix FTBFS
* Thu Jul 21 2022 Fedora Release Engineering <releng@fedoraproject.org> 3.5.0-9
– Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Tue Jul 19 2022 Maxwell G <gotmax@e.email> 3.5.0-8
– Rebuild for
CVE-2022-{1705,32148,30631,30633,28131,30635,30632,30630,1962} in golang
* Thu Jun 23 2022 Maxwell G <gotmax@e.email> 3.5.0-7
– Rebuild to mitigate CVE-2022-21698 (rhbz#2067400).
* Sun Jun 19 2022 Robert-André Mauchin <zebob.m@gmail.com> 3.5.0-6
– Rebuilt for CVE-2022-1996, CVE-2022-24675, CVE-2022-28327,
CVE-2022-27191, CVE-2022-29526, CVE-2022-30629
* Thu Jan 20 2022 Fedora Release Engineering <releng@fedoraproject.org> 3.5.0-5
– Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild

Read More

FEDORA-2022-7f14b7d45e

Packages in this update:

android-tools-33.0.3p1-2.fc35

Update description:

Merge branch ‘rawhide’ into f35
Security fix for CVE-2022-20128 CVE-2022-3168

Read More

FEDORA-2022-9a9a638d09

Packages in this update:

android-tools-33.0.3p1-1.fc36

Update description:

Update to 33.0.3p1
Security fix for CVE-2022-20128 CVE-2022-3168

Read More

FEDORA-2022-6716cd0da2

Packages in this update:

android-tools-33.0.3p1-1.fc37

Update description:

Update to 33.0.3p1
Security fix for CVE-2022-20128 CVE-2022-3168

Read More

Multiple vulnerabilities have been discovered in the Xen hypervisor, which
could result in privilege escalation, denial of service or information leaks.

Read More