thunderbird-102.3.0-1.fc36
FEDORA-2022-feb7bdf6b2 Packages in this update: thunderbird-102.3.0-1.fc36 Update description: Update to 102.3.0 ; https://www.mozilla.org/en-US/security/advisories/mfsa2022-42/ ; https://www.thunderbird.net/en-US/thunderbird/102.3.0/releasenotes/ Read More
qemu-6.2.0-15.fc36
FEDORA-2022-f0a2695054 Packages in this update: qemu-6.2.0-15.fc36 Update description: nvme: Fix DMA reentrancy use-after-free (CVE-2021-3929) Read More
CVE-2022-0495 (koha_library_automation)
The library automation system product KOHA developed by Parantez Teknoloji before version 19.05.03 has an unauthenticated SQL Injection vulnerability. This has been fixed in the...
ZDI-22-1295: Apple macOS TIFF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. Interaction with the CoreGraphics framework is required to exploit this...
DSA-5232 tinygltf – security update
It was discovered that the wordexp() function of tinygltf, a library to load/save glTF (GL Transmission Format) files was susceptible to command execution when processing...
DSA-5234 fish – security update
An arbitrary code execution vulnerability was disovered in fish, a command line shell. When using the default configuraton of fish, changing to a directory automatically...
DSA-5233 e17 – security update
Maher Azzouzi discovered that missing input sanitising in the Enlightenment window manager may result in local privilege escalation to root. Read More
CVE-2020-36602
There is an out-of-bounds read and write vulnerability in some headset products. An unauthenticated attacker gets the device physically and crafts malformed message with specific...
CVE-2021-46834
A permission bypass vulnerability in Huawei cross device task management could allow an attacker to access certain resource in the attacked devices. Affected product versions...
webkitgtk-2.38.0-2.fc37
FEDORA-2022-0c00617967 Packages in this update: webkitgtk-2.38.0-2.fc37 Update description: Update to 2.38.0 Remove /usr/bin/WebKitWebDriver from webkit2gtk5.0 package to avoid conflict with webkit2gtk4.1 Security fixes: CVE-2022-32886 Read...