A heap-based buffer overflow vulnerability was discovered in gdal, a
Geospatial Data Abstraction Library, which could result in denial of
service or potentially the execution of arbitrary code, if a specially
crafted file is processed with the PCIDSK driver.
A tenant administrator Hitachi Content Platform (HCP) may modify the configuration in another tenant without authorization, potentially allowing unauthorized access to data in the other tenant. Also, a tenant user (non-administrator) may view configuration in another tenant without authorization. This issue affects: Hitachi Vantara Hitachi Content Platform versions prior to 8.3.7; 9.0.0 versions prior to 9.2.3.
An HTTP response splitting attack in web application in ASUS RT-AX88U before v3.0.0.4.388.20558 allows an attacker to craft a specific URL that if an authenticated victim visits it, the URL will give access to the cloud storage of the attacker.
You may also notice that there is not an EL7 build. This is due to newer Chromium having a dependency that is not available in EL7/EPEL7. As soon as that package arrives in EPEL7, I will start making EL7 builds again.
You may also notice that there is not an EL7 build. This is due to newer Chromium having a dependency that is not available in EL7/EPEL7. As soon as that package arrives in EPEL7, I will start making EL7 builds again.