Category Archives: Advisories

Advisories

CVE-2020-15853

Read Time:9 Second

supybot-fedora implements the command ‘refresh’, that refreshes the cache of all users from FAS. This takes quite a while to run, and zodbot stops responding to requests during this time.

Read More

Advisories

USN-5685-1: FRR vulnerabilities

Read Time:22 Second

It was discovered that FRR incorrectly handled parsing certain BGP
messages. A remote attacker could possibly use this issue to cause FRR to
crash, resulting in a denial of service. (CVE-2022-37032)

It was discovered that FRR incorrectly handled processing certain BGP
messages. A remote attacker could possibly use this issue to cause FRR to
crash, resulting in a denial of service, obtain sensitive information,
or execute arbitrary code. (CVE-2022-37035)

Read More

Advisories

wordpress-5.1.15-1.el7

Read Time:32 Second

FEDORA-EPEL-2022-42745d5b54

Packages in this update:

wordpress-5.1.15-1.el7

Update description:

WordPress 5.1.15 Security Release

Security updates included in this release

Media: Refactor search by filename within the admin,
REST API: Lockdown post parameter of the terms endpoint,
Customize: Escape blogname option in underscores templates,
Query: Validate relation in WP_Date_Query,
Posts, Post types: Apply KSES to post-by-email content,
General: Validate host on “Are you sure?” screen,
Posts, Post types: Remove emails from post-by-email logs,
Pings/trackbacks: Apply KSES to all trackbacks,
Mail: Reset PHPMailer properties between use,
Widgets: Escape RSS error messages for display.

Read More