Category: Advisories

FEDORA-2022-080ea50338 Packages in this update: firefox-101.0-1.fc36 Update description: New upstream update (101.0) Fixed missing popups in some scenarios on Wayland (https://bugzilla.mozilla.org/show_bug.cgi?id=1771104) Read More

FEDORA-2022-c05acca28d Packages in this update: webkit2gtk3-2.36.3-1.fc35 Update description: Update to 2.36.3: Support capturing already encoded video streams, which takes advantage of encoding done in hardware...

FEDORA-2022-e883576e1c Packages in this update: webkit2gtk3-2.36.3-1.fc36 Update description: Update to 2.36.3: Support capturing already encoded video streams, which takes advantage of encoding done in hardware...

Jeffrey Bencteux reported two vulnerabilities in cifs-utils, the Common Internet File System utilities, which can result in escalation of privileges (CVE-2022-27239) or an information leak...

Aurélien Aptel discovered that cifs-utils invoked a shell when requesting a password. In certain environments, a local attacker could possibly use this issue to escalate...

FEDORA-2022-396c568c5e Packages in this update: buildah-1.23.4-1.fc35 Update description: bump to v1.23.4, security fix for CVE-2022-21698 Add missing container networking dependencies (#2081834) Read More

SQL injection and Local File Inclusion (LFI) vulnerabilities in MaxBoard can cause information leakage and privilege escalation. This vulnerabilities can be exploited by manipulating a...

SQL injection and file upload attacks are possible due to insufficient validation of input values in some parameters and variables of files compromising Maxboard, which...

In the code that verifies the file size in the ark library, it is possible to manipulate the offset read from the target file due...

Missing input validation in internal/db/repo_editor.go in Gogs before 0.12.8 allows an attacker to execute code remotely. An unprivileged attacker (registered user) can overwrite the Git...