A vulnerability, which was classified as problematic, has been found in Solare Solar-Log 2.8.4-56/3.5.2-85. Affected by this issue is some unknown functionality. The manipulation leads to cross site request forgery. The attack may be launched remotely. Upgrading to version 3.5.3-86 is able to address this issue. It is recommended to upgrade the affected component.
python3.10-3.10.5-2.fc36
python3-docs-3.10.5-1.fc36
This is the fourth maintenance release of Python 3.10.
https://docs.python.org/3.10/whatsnew/changelog.html#python-3-10-5-final
Security fix for CVE-2015-20107
python3.10-3.10.5-2.fc37
Automatic update for python3.10-3.10.5-2.fc37.
* Thu Jun 9 2022 Charalampos Stratakis <cstratak@redhat.com> – 3.10.5-2
– Security fix for CVE-2015-20107
Resolves: rhbz#2075390
kernel-5.17.14-200.fc35
The 5.17.14 stable kernel update contains a number of important fixes across the tree.
kernel-5.17.14-300.fc36
The 5.17.14 stable kernel update contains a number of important fixes across the tree.
A vulnerability, which was classified as critical, was found in MONyog Ultimate 6.63. This affects an unknown part of the component Cookie Handler. The manipulation of the argument HasServerEdit/IsAdmin leads to privilege escalation. It is possible to initiate the attack remotely.
A vulnerability was found in CoreHR Core Portal up to 27.0.7. It has been classified as problematic. Affected is an unknown function. The manipulation leads to cross site request forgery. It is possible to launch the attack remotely. Upgrading to version 27.0.8 is able to address this issue. It is recommended to upgrade the affected component.
A vulnerability was found in OpenNetAdmin 18.1.1. It has been rated as critical. Affected by this issue is some unknown functionality. The manipulation leads to privilege escalation. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
A vulnerability has been found in ajenti 2.1.31 and classified as critical. This vulnerability affects unknown code of the component API. The manipulation leads to privilege escalation. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 2.1.32 is able to address this issue. The name of the patch is 7aa146b724e0e20cfee2c71ca78fafbf53a8767c. It is recommended to upgrade the affected component.
A vulnerability, which was classified as critical, was found in Podman and Varlink 1.5.1. This affects an unknown part of the component API. The manipulation leads to Privilege Escalation. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
