sysstat-12.5.6-2.fc35
FEDORA-2022-5adda2d05f Packages in this update: sysstat-12.5.6-2.fc35 Update description: Security fix for CVE-2022-39377 - arithmetic overflow in allocate_structures() on 32 bit systems Read More
USN-5720-1: Zstandard vulnerabilities
It was discovered that Zstandard was not properly managing file permissions when generating output files. A local attacker could possibly use this issue to cause...
USN-5719-1: OpenJDK vulnerabilities
It was discovered that OpenJDK incorrectly handled long client hostnames. An attacker could possibly use this issue to cause the corruption of sensitive information. (CVE-2022-21619)...
Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution
Multiple vulnerabilities have been discovered in Google Chrome, the most severe of which could allow for arbitrary code execution. Google Chrome is a web browser...
flatpak-runtime-f37-3720221025175532.3 flatpak-sdk-f37-3720221025175532.3
FEDORA-FLATPAK-2022-186c127e4b Packages in this update: flatpak-runtime-f37-3720221025175532.3 flatpak-sdk-f37-3720221025175532.3 Update description: Updated flatpak runtime and SDK, including latest Fedora 37 security and bug-fix errata. Read More
xen-4.16.2-4.fc37
FEDORA-2022-9f51d13fa3 Packages in this update: xen-4.16.2-4.fc37 Update description: x86: Multiple speculative security issues [XSA-422, CVE-2022-23824] x86: unintended memory sharing between guests [XSA-412, CVE-2022-42327] Xenstore: Guests...
CVE-2021-1050
In MMU_UnmapPages of the PowerVR kernel driver, there is a possible out of bounds write due to a missing bounds check. This could lead to...
CVE-2021-39661
In _PMRLogicalOffsetToPhysicalOffset of the PowerVR kernel driver, there is a possible out of bounds write due to a missing bounds check. This could lead to...
Critical Patches Issued for Microsoft Products, November 8, 2022
Multiple vulnerabilities have been discovered in Microsoft products, the most severe of which could allow for remote code execution in the context of the logged...
CVE-2021-40303 (perfex_crm)
perfex crm 1.10 is vulnerable to Cross Site Scripting (XSS) via /clients/profile. Read More