FEDORA-2022-e139f256f6
Packages in this update:
squirrel-2.2.5-25.fc36
Update description:
backport fixes for CVE-2021-41556 and CVE-2022-30292
squirrel-2.2.5-25.fc36
backport fixes for CVE-2021-41556 and CVE-2022-30292
libtiff-4.4.0-4.fc36
Security fix for CVE-2022-34526.
Multiple security vulnerabilities have been discovered in cURL, an URL
transfer library. These flaws may allow remote attackers to obtain sensitive
information, leak authentication or cookie header data or facilitate a
denial of service attack.
dovecot-2.3.19.1-3.fc35
fix possible privilege escalation in dovecot when similar master and non-master passdbs are used
dovecot-2.3.19.1-3.fc36
fix possible privilege escalation in dovecot when similar master and non-master passdbs are used
Several security vulnerabilities have been found in libpgjava, the official
PostgreSQL JDBC Driver.
webkit2gtk3-2.36.5-1.fc35
Add support for PAC proxy in the WebDriver implementation.
Fix video playback when loaded through custom URIs, this fixes video playback in the Yelp documentation browser.
Fix several crashes and rendering issues.
Security fixes: CVE-2022-32792, CVE-2022-32816
A vulnerability have been discovered in the Grails Framework which could allow for remote code execution. Grails is backend Apache Groovy framework. Successful exploitation of this vulnerability, could allow a user to execute code in the context of the Grails application.
Multiple vulnerabilities have been discovered in Samba, the most severe of which could allow for privilege escalation. Samba is the standard Windows interoperability suite of programs for Linux and Unix. Successful exploitation of the most severe of these vulnerabilities, could allow any user to escalate privileges to administrator, and gain total control over the domain.
Multiple security issues were discovered in Thunderbird, which could
result in spoofing.