FEDORA-2022-c43235716e
Packages in this update:
mingw-expat-2.5.0-1.fc35
Update description:
Update to 2.5.0, fixes CVE-2022-43680.
mingw-expat-2.5.0-1.fc35
Update to 2.5.0, fixes CVE-2022-43680.
mingw-expat-2.5.0-1.fc37
Update to 2.5.0, fixes CVE-2022-43680.
mingw-pixman-0.42.2-1.fc37
Update to 0.42.2, fixes CVE-2022-44638 and CVE-2022-43680.
mingw-pixman-0.42.2-1.fc36
Update to 0.42.2, fixes CVE-2022-44638 and CVE-2022-43680.
mingw-pixman-0.42.2-1.fc35
Update to 0.42.2, fixes CVE-2022-44638 and CVE-2022-43680.
Yuchen Zeng and Eduardo Vela discovered a buffer overflow in NTFS-3G, a
read-write NTFS driver for FUSE, due to incorrect validation of some of
the NTFS metadata. A local user can take advantage of this flaw for
local root privilege escalation.
“IBM Security Guardium 10.5, 10.6, 11.0, 11.1, 11.2, 11.3, and 11.4 stores user credentials in plain clear text which can be read by a local privileged user. IBM X-Force ID: 215587.”
Multiple Insecure Direct Object References (IDOR) vulnerabilities in ExpressTech Quiz And Survey Master plugin <= 7.3.6 on WordPress.
OpenCart 3.0.3.7 allows users to obtain database information or read server files through SQL injection in the background.
MKCMS V6.2 has SQL injection via the /ucenter/active.php verify parameter.