USN-6937-1: OpenSSL vulnerabilities
It was discovered that OpenSSL incorrectly handled TLSv1.3 sessions when certain non-default TLS server configurations were in use. A remote attacker could possibly use this...
USN-6935-1: Prometheus Alertmanager vulnerability
It was discovered that prometheus-alertmanager didn't properly sanitize input it received through an API endpoint. An attacker with permission to send requests to this endpoint...
frr-9.1.1-1.fc40
FEDORA-2024-e60ca8feb0 Packages in this update: frr-9.1.1-1.fc40 Update description: New version 9.1.1. Includes fixes for CVE-2024-31950, CVE-2024-31951 and CVE-2024-31949. Read More
USN-6934-1: MySQL vulnerabilities
Multiple security issues were discovered in MySQL and this update includes new upstream MySQL versions to fix these issues. MySQL has been updated to 8.0.39...
USN-6933-1: ClickHouse vulnerabilities
It was discovered that ClickHouse incorrectly handled memory, leading to a heap out-of-bounds data read. An attacker could possibly use this issue to cause a...
hostapd-2.11-1.fc40 wpa_supplicant-2.11-1.fc40
FEDORA-2024-73626281d8 Packages in this update: hostapd-2.11-1.fc40 wpa_supplicant-2.11-1.fc40 Update description: Update to upstream version 2.11. Read More
USN-6932-1: OpenJDK 21 vulnerabilities
It was discovered that the Hotspot component of OpenJDK 21 was not properly performing bounds when handling certain UTF-8 strings, which could lead to a...
USN-6931-1: OpenJDK 17 vulnerabilities
It was discovered that the Hotspot component of OpenJDK 17 was not properly performing bounds when handling certain UTF-8 strings, which could lead to a...
USN-6930-1: OpenJDK 11 vulnerabilities
It was discovered that the Hotspot component of OpenJDK 11 was not properly performing bounds when handling certain UTF-8 strings, which could lead to a...
ZDI-24-1040: Apple macOS AppleVADriver Out-Of-Bounds Read Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. User interaction is required to exploit this vulnerability in that...