FEDORA-2022-f3a939e960
Packages in this update:
mingw-pixman-0.42.2-1.fc37
Update description:
Update to 0.42.2, fixes CVE-2022-44638 and CVE-2022-43680.
mingw-pixman-0.42.2-1.fc37
Update to 0.42.2, fixes CVE-2022-44638 and CVE-2022-43680.
mingw-pixman-0.42.2-1.fc36
Update to 0.42.2, fixes CVE-2022-44638 and CVE-2022-43680.
mingw-pixman-0.42.2-1.fc35
Update to 0.42.2, fixes CVE-2022-44638 and CVE-2022-43680.
Yuchen Zeng and Eduardo Vela discovered a buffer overflow in NTFS-3G, a
read-write NTFS driver for FUSE, due to incorrect validation of some of
the NTFS metadata. A local user can take advantage of this flaw for
local root privilege escalation.
“IBM Security Guardium 10.5, 10.6, 11.0, 11.1, 11.2, 11.3, and 11.4 stores user credentials in plain clear text which can be read by a local privileged user. IBM X-Force ID: 215587.”
Multiple Insecure Direct Object References (IDOR) vulnerabilities in ExpressTech Quiz And Survey Master plugin <= 7.3.6 on WordPress.
OpenCart 3.0.3.7 allows users to obtain database information or read server files through SQL injection in the background.
MKCMS V6.2 has SQL injection via the /ucenter/active.php verify parameter.
MKCMS V6.2 has SQL injection via the /ucenter/repass.php name parameter.