DSA-5739-1 wpa – security update
Rory McNamara reported a local privilege escalation in wpasupplicant: A user able to escalate to the netdev group can load arbitrary shared object files in...
microcode_ctl-2.1-61.1.fc40
FEDORA-2024-96f3c3f3d3 Packages in this update: microcode_ctl-2.1-61.1.fc40 Update description: Update to upstream 2.1-43. 20240531 Addition of 06-aa-04/0xe6 (MTL-H/U C0) microcode at revision 0x1c; Addition of 06-ba-08/0xe0...
microcode_ctl-2.1-58.1.fc39
FEDORA-2024-f3692f8528 Packages in this update: microcode_ctl-2.1-58.1.fc39 Update description: Update to upstream 2.1-43. 20240531 Addition of 06-aa-04/0xe6 (MTL-H/U C0) microcode at revision 0x1c; Addition of 06-ba-08/0xe0...
USN-6944-1: curl vulnerability
Dov Murik discovered that curl incorrectly handled parsing ASN.1 Generalized Time fields. A remote attacker could use this issue to cause curl to crash, resulting...
vim-9.1.660-1.fc39
FEDORA-2024-5e87ad4678 Packages in this update: vim-9.1.660-1.fc39 Update description: The newest upstream commit Security fixes for CVE-2024-41957, CVE-2024-41965 Read More
vim-9.1.660-1.fc40
FEDORA-2024-fe5420ed3f Packages in this update: vim-9.1.660-1.fc40 Update description: The newest upstream commit Security fixes for CVE-2024-41965, CVE-2024-41957 Read More
roundcubemail-1.6.8-1.fc40
FEDORA-2024-2e908e829a Packages in this update: roundcubemail-1.6.8-1.fc40 Update description: Version 1.6.8 Managesieve: Protect special scripts in managesieve_kolab_master mode Fix newmail_notifier notification focus in Chrome (#9467) Fix...
roundcubemail-1.6.8-1.fc39
FEDORA-2024-b60eb661a4 Packages in this update: roundcubemail-1.6.8-1.fc39 Update description: Version 1.6.8 Managesieve: Protect special scripts in managesieve_kolab_master mode Fix newmail_notifier notification focus in Chrome (#9467) Fix...
roundcubemail-1.5.8-1.el9
FEDORA-EPEL-2024-1b8e0ad5c2 Packages in this update: roundcubemail-1.5.8-1.el9 Update description: Version 1.5.8 Fix XSS vulnerability in post-processing of sanitized HTML content CVE-2024-42009 Fix XSS vulnerability in serving...
ZDI-24-1057: Trimble SketchUp Pro SKP File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Trimble SketchUp Pro. User interaction is required to exploit this vulnerability in...