Read Time:8 Second
FEDORA-EPEL-2022-6319bfdcaa
Packages in this update:
python-dnslib-0.9.21-1.el8
Update description:
Update to latest upstream release 0.9.21
Category Archives: Advisories
python-dnslib-0.9.21-1.fc38
Read Time:19 Second
FEDORA-2022-96c31cc8f6
Packages in this update:
python-dnslib-0.9.21-1.fc38
Update description:
Automatic update for python-dnslib-0.9.21-1.fc38.
Changelog
* Tue Sep 27 2022 Fabian Affolter <mail@fabian-affolter.ch> – 0.9.21-1
– Update to latest upstream release 0.9.21
– Fix for CVE-2022-22846 (closes rhbz#2042610, closes rhbz#2042611)
DSA-5239 gdal – security update
Read Time:12 Second
A heap-based buffer overflow vulnerability was discovered in gdal, a
Geospatial Data Abstraction Library, which could result in denial of
service or potentially the execution of arbitrary code, if a specially
crafted file is processed with the PCIDSK driver.
DSA-5238 thunderbird – security update
Read Time:6 Second
Multiple security issues were discovered in Thunderbird, which could
result in denial of service or the execution of arbitrary code.
scala-2.13.9-1.fc36
Read Time:12 Second
FEDORA-2022-34acf878fb
Packages in this update:
scala-2.13.9-1.fc36
Update description:
Security fix for CVE-2022-36944.
See https://github.com/scala/scala/releases/tag/v2.13.9 for other changes in scala 2.13.9.
scala-2.13.9-1.fc35
Read Time:12 Second
FEDORA-2022-07dd9375b2
Packages in this update:
scala-2.13.9-1.fc35
Update description:
Security fix for CVE-2022-36944.
See https://github.com/scala/scala/releases/tag/v2.13.9 for other changes in scala 2.13.9.
CVE-2021-28052
Read Time:19 Second
A tenant administrator Hitachi Content Platform (HCP) may modify the configuration in another tenant without authorization, potentially allowing unauthorized access to data in the other tenant. Also, a tenant user (non-administrator) may view configuration in another tenant without authorization. This issue affects: Hitachi Vantara Hitachi Content Platform versions prior to 8.3.7; 9.0.0 versions prior to 9.2.3.
CVE-2021-41437
Read Time:14 Second
An HTTP response splitting attack in web application in ASUS RT-AX88U before v3.0.0.4.388.20558 allows an attacker to craft a specific URL that if an authenticated victim visits it, the URL will give access to the cloud storage of the attacker.
chromium-105.0.5195.125-2.el9
Read Time:1 Minute, 21 Second
FEDORA-EPEL-2022-4c5aee9b50
Packages in this update:
chromium-105.0.5195.125-2.el9
Update description:
Update to chromium-105.0.5195.125. Fixes the following security issues:
CVE-2022-2007 CVE-2022-2008 CVE-2022-2010 CVE-2022-2011 CVE-2022-2603 CVE-2022-2604 CVE-2022-2605 CVE-2022-2606 CVE-2022-2607 CVE-2022-2608 CVE-2022-2609 CVE-2022-2610 CVE-2022-2611 CVE-2022-2612 CVE-2022-2613 CVE-2022-2614 CVE-2022-2615 CVE-2022-2616 CVE-2022-2617 CVE-2022-2618 CVE-2022-2619 CVE-2022-2620 CVE-2022-2621 CVE-2022-2622 CVE-2022-2623 CVE-2022-2624 CVE-2022-2852 CVE-2022-2854 CVE-2022-2855 CVE-2022-2857 CVE-2022-2858 CVE-2022-2853 CVE-2022-2856 CVE-2022-2859 CVE-2022-2860 CVE-2022-2861 CVE-2022-3038 CVE-2022-3039 CVE-2022-3040 CVE-2022-3041 CVE-2022-3042 CVE-2022-3043 CVE-2022-3044 CVE-2022-3045 CVE-2022-3046 CVE-2022-3071 CVE-2022-3047 CVE-2022-3048 CVE-2022-3049 CVE-2022-3050 CVE-2022-3051 CVE-2022-3052 CVE-2022-3053 CVE-2022-3054 CVE-2022-3055 CVE-2022-3056 CVE-2022-3057 CVE-2022-3058 CVE-2022-3075 CVE-2022-3195 CVE-2022-3196 CVE-2022-3197 CVE-2022-3198 CVE-2022-3199 CVE-2022-3200 CVE-2022-3201
You may also notice that there is not an EL7 build. This is due to newer Chromium having a dependency that is not available in EL7/EPEL7. As soon as that package arrives in EPEL7, I will start making EL7 builds again.
chromium-105.0.5195.125-2.el8
Read Time:1 Minute, 21 Second
FEDORA-EPEL-2022-9f67252d52
Packages in this update:
chromium-105.0.5195.125-2.el8
Update description:
Update to chromium-105.0.5195.125. Fixes the following security issues:
CVE-2022-2007 CVE-2022-2008 CVE-2022-2010 CVE-2022-2011 CVE-2022-2603 CVE-2022-2604 CVE-2022-2605 CVE-2022-2606 CVE-2022-2607 CVE-2022-2608 CVE-2022-2609 CVE-2022-2610 CVE-2022-2611 CVE-2022-2612 CVE-2022-2613 CVE-2022-2614 CVE-2022-2615 CVE-2022-2616 CVE-2022-2617 CVE-2022-2618 CVE-2022-2619 CVE-2022-2620 CVE-2022-2621 CVE-2022-2622 CVE-2022-2623 CVE-2022-2624 CVE-2022-2852 CVE-2022-2854 CVE-2022-2855 CVE-2022-2857 CVE-2022-2858 CVE-2022-2853 CVE-2022-2856 CVE-2022-2859 CVE-2022-2860 CVE-2022-2861 CVE-2022-3038 CVE-2022-3039 CVE-2022-3040 CVE-2022-3041 CVE-2022-3042 CVE-2022-3043 CVE-2022-3044 CVE-2022-3045 CVE-2022-3046 CVE-2022-3071 CVE-2022-3047 CVE-2022-3048 CVE-2022-3049 CVE-2022-3050 CVE-2022-3051 CVE-2022-3052 CVE-2022-3053 CVE-2022-3054 CVE-2022-3055 CVE-2022-3056 CVE-2022-3057 CVE-2022-3058 CVE-2022-3075 CVE-2022-3195 CVE-2022-3196 CVE-2022-3197 CVE-2022-3198 CVE-2022-3199 CVE-2022-3200 CVE-2022-3201
You may also notice that there is not an EL7 build. This is due to newer Chromium having a dependency that is not available in EL7/EPEL7. As soon as that package arrives in EPEL7, I will start making EL7 builds again.