USN-5359-1 fixed vulnerabilities in rsync.
This update provides the corresponding updates for Ubuntu 16.04 ESM.
Original advisory details:
Danilo Ramos discovered that rsync incorrectly handled memory when
performing certain zlib deflating operations. An attacker could use this
issue to cause rsync to crash, resulting in a denial of service, or
possibly execute arbitrary code.
Han Zheng discovered that Liblouis incorrectly handled certain inputs.
An attacker could possibly use this issue to cause a crash. This issue was
addressed in Ubuntu 21.10 and Ubuntu 22.04 LTS. (CVE-2022-26981)
It was discovered that Liblouis incorrectly handled certain inputs.
An attacker could possibly use this issue to execute arbitrary code
or cause a crash. (CVE-2022-31783)
Multiple security issues were discovered in Firefox. If a user were
tricked into opening a specially crafted website, an attacker could
potentially exploit these to cause a denial of service, obtain sensitive
information, spoof the browser UI, conduct cross-site scripting (XSS)
attacks, bypass content security policy (CSP) restrictions, or execute
arbitrary code.
openssl-1.1.1o-1.fc35
Security fix for CVE-2022-1292
Upgrade to 1.1.1o, #2095817.
openssl1.1-1.1.1o-1.fc36
Security fix for CVE-2022-1292
Upgrade to 1.1.1o, rhbz#2095817.
openssl1.1-1.1.1o-1.fc37
Automatic update for openssl1.1-1.1.1o-1.fc37.
* Mon Jun 13 2022 Clemens Lang <cllang@redhat.com> – 1:1.1.1o-1
– Upgrade to 1.1.1o
Resolves: CVE-2022-1292
Related: rhbz#2095817
python-bottle-0.12.21-2.el8
Cookie test fix backported from upstream (0.12)
Security fix for CVE-2022-31799
python-bottle-0.12.21-2.el9
Cookie test fix backported from upstream (0.12)
Security fix for CVE-2022-31799
python-bottle-0.12.21-2.fc35
Cookie test fix backported from upstream (0.12)
Security fix for CVE-2022-31799
python-bottle-0.12.21-2.fc36
Cookie test fix backported from upstream (0.12)
Security fix for CVE-2022-3179
