The following vulnerabilities have been discovered in the WebKitGTK
web engine:
Category Archives: Advisories
DSA-5209 net-snmp – security update
Yu Zhang and Nanyu Zhong discovered several vulnerabilities in net-snmp,
a suite of Simple Network Management Protocol applications, which could
result in denial of service or the execution of arbitrary code.
DSA-5208 epiphany-browser – security update
Michael Catanzaro discovered a buffer overflow in the Epiphany web browser.
CVE-2020-23622
** UNSUPPORTED WHEN ASSIGNED ** An issue in the UPnP protocol in 4thline cling 2.0.0 through 2.1.2 allows remote attackers to cause a denial of service via an unchecked CALLBACK parameter in the request header.
CVE-2020-21365
Directory traversal vulnerability in wkhtmltopdf through 0.12.5 allows remote attackers to read local files and disclose sensitive information via a crafted html file running with the default configurations.
CVE-2020-21641
Out-of-Band XML External Entity (OOB-XXE) vulnerability in Zoho ManageEngine Analytics Plus before 4.3.5 allows remote attackers to read arbitrary files, enumerate folders and scan internal ports via crafted XML license file.
CVE-2020-21642
Directory Traversal vulnerability ZDBQAREFSUBDIR parameter in /zropusermgmt API in Zoho ManageEngine Analytics Plus before 4350 allows remote attackers to run arbitrary code.
qemu-6.2.0-14.fc36
FEDORA-2022-baf3c3b781
Packages in this update:
qemu-6.2.0-14.fc36
Update description:
lsi53c895a: Do not abort when DMA requested and no data queued (#552)
lsi53c895a: Fix use-after-free in lsi_do_msgout (CVE-2022-0216) (rhbz#2070902)
dotnet6.0-6.0.108-1.fc35
FEDORA-2022-f2ba9be204
Packages in this update:
dotnet6.0-6.0.108-1.fc35
Update description:
This is the monthly update for .NET for August 2022. This updates the .NET SDK to 6.0.108 and .NET Runtime to 6.0.8.
This update includes a fix for CVE 2022-34716.
dotnet6.0-6.0.108-1.fc36
FEDORA-2022-0eded912f0
Packages in this update:
dotnet6.0-6.0.108-1.fc36
Update description:
This is the monthly update for .NET for August 2022. This updates the .NET SDK to 6.0.108 and .NET Runtime to 6.0.8.
This update includes a fix for CVE 2022-34716.