dropbear-2017.75-2.el7
FEDORA-EPEL-2022-f0317a13d8 Packages in this update: dropbear-2017.75-2.el7 Update description: Backport fix for CVE-2018-15599, resolves rhbz#1623177 Backport fix for CVE-2020-36254, resolves rhbz#1933067 Read More
DSA-5241 wpewebkit – security update
The following vulnerabilities have been discovered in the WPE WebKit web engine: Read More
DSA-5240 webkit2gtk – security update
The following vulnerabilities have been discovered in the WebKitGTK web engine: Read More
DSA-5243 lighttpd – security update
Several vulnerabilities were discovered in lighttpd, a fast webserver with minimal memory footprint. Read More
DSA-5242 maven-shared-utils – security update
It was discovered that the Commandline class in maven-shared-utils, a collection of various utility classes for the Maven build system, can emit double-quoted strings without...
DSA-5244 chromium – security update
Multiple security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure. Read More
CVE-2021-41433
SQL Injection vulnerability exists in version 1.0 of the Resumes Management and Job Application Website application login form by EGavilan Media that allows authentication bypass...
openssl3-3.0.1-41.el8.1
FEDORA-EPEL-2022-3bebee4625 Packages in this update: openssl3-3.0.1-41.el8.1 Update description: Sync with CentOS Stream 9's openssl to pick up CVE fixes Read More
CVE-2021-27854
Layer 2 network filtering capabilities such as IPv6 RA guard can be bypassed using combinations of VLAN 0 headers, LLC/SNAP headers, and converting frames from...
CVE-2021-27861
Layer 2 network filtering capabilities such as IPv6 RA guard can be bypassed using LLC/SNAP headers with invalid length (and optionally VLAN0 headers) Read More