** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2020. Notes: none.

Read More

In LibRaw, there is an out-of-bounds write vulnerability within the “new_node()” function (librawsrcx3fx3f_utils_patched.cpp) that can be triggered via a crafted X3F file.

Read More

In LibRaw, an out-of-bounds read vulnerability exists within the get_huffman_diff() function (librawsrcx3fx3f_utils_patched.cpp) when reading data from an image file.

Read More

In LibRaw, an out-of-bounds read vulnerability exists within the “simple_decode_row()” function (librawsrcx3fx3f_utils_patched.cpp) which can be triggered via an image with a large row_stride field.

Read More

FEDORA-2022-e8e79b8dbf

Packages in this update:

thunderbird-102.2.1-1.fc37

Update description:

Update to 102.2.1 ;
https://www.mozilla.org/en-US/security/advisories/mfsa2022-38/

Read More

FEDORA-2022-8bf22a684b

Packages in this update:

thunderbird-102.2.1-1.fc36

Update description:

Update to 102.2.1 ;
https://www.mozilla.org/en-US/security/advisories/mfsa2022-38/

Read More

FEDORA-2022-4fcde117f2

Packages in this update:

thunderbird-102.2.1-1.fc35

Update description:

Update to 102.2.1 ;
https://www.mozilla.org/en-US/security/advisories/mfsa2022-38/

Read More

FEDORA-EPEL-2022-83ed996f1e

Packages in this update:

rubygem-rack-2.2.4-1.el8

Update description:

Update to Rack 2.2.4 – Resolves: rhbz#2099525 – Resolves: CVE-2022-30123

Read More

FEDORA-2022-35d9bdb7dc

Packages in this update:

vim-9.0.348-1.fc35

Update description:

Security fix for CVE-3037

Read More

FEDORA-2022-221bd89404

Packages in this update:

vim-9.0.348-1.fc36

Update description:

Security fix for CVE-3037

Read More