FEDORA-2022-06dfb760b2
Packages in this update:
dovecot-2.3.19.1-3.fc35
Update description:
fix possible privilege escalation in dovecot when similar master and non-master passdbs are used
dovecot-2.3.19.1-3.fc35
fix possible privilege escalation in dovecot when similar master and non-master passdbs are used
dovecot-2.3.19.1-3.fc36
fix possible privilege escalation in dovecot when similar master and non-master passdbs are used
Several security vulnerabilities have been found in libpgjava, the official
PostgreSQL JDBC Driver.
webkit2gtk3-2.36.5-1.fc35
Add support for PAC proxy in the WebDriver implementation.
Fix video playback when loaded through custom URIs, this fixes video playback in the Yelp documentation browser.
Fix several crashes and rendering issues.
Security fixes: CVE-2022-32792, CVE-2022-32816
A vulnerability have been discovered in the Grails Framework which could allow for remote code execution. Grails is backend Apache Groovy framework. Successful exploitation of this vulnerability, could allow a user to execute code in the context of the Grails application.
Multiple vulnerabilities have been discovered in Samba, the most severe of which could allow for privilege escalation. Samba is the standard Windows interoperability suite of programs for Linux and Unix. Successful exploitation of the most severe of these vulnerabilities, could allow any user to escalate privileges to administrator, and gain total control over the domain.
Multiple security issues were discovered in Thunderbird, which could
result in spoofing.
libldb-2.4.4-1.fc35
samba-4.15.9-0.fc35
Update to version 4.15.9 to address security fixes for CVE-2022-32742, CVE-2022-32744, CVE-2022-32745, CVE-2022-32746
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2016-4982. Reason: This candidate is a duplicate of CVE-2016-4982. Notes: All CVE users should reference CVE-2016-4982 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.
webkit2gtk3-2.36.5-1.fc36
Add support for PAC proxy in the WebDriver implementation.
Fix video playback when loaded through custom URIs, this fixes video playback in the Yelp documentation browser.
Fix several crashes and rendering issues.
Security fixes: CVE-2022-32792, CVE-2022-32816