chromium-100.0.4896.127-1.fc36
100 Chromium releases! Of course, at the rate they release now, we’ll probably be at 150 before the end of the year. Anyway, here’s the update.
Fixes:
CVE-2022-1232 CVE-2022-1305 CVE-2022-1306 CVE-2022-1307 CVE-2022-1308 CVE-2022-1309 CVE-2022-1310 CVE-2022-1311 CVE-2022-1312 CVE-2022-1313 CVE-2022-1314 CVE-2022-1364
Several vulnerabilities have been discovered in the FFmpeg multimedia
framework, which could result in denial of service or potentially the
execution of arbitrary code if malformed files/streams are processed.
zxing-cpp-1.2.0-4.fc36
rebuild for CVE-2022-28041
CuraEngine-4.13.1-2.fc35
Security fix for CVE-2022-28041
CuraEngine-4.13.1-2.fc36
Security fix for CVE-2022-28041
CuraEngine-4.13.1-2.fc34
Security fix for CVE-2022-28041
Posted by sec-advisory on Apr 22
SexyPolling SQL Injection
====================
| Identifier: | AIT-SA-20220208-01|
| Target: | Sexy Polling ( Joomla Extension) |
| Vendor: | 2glux |
| Version: | all versions below version 2.1.8 |
| CVE: | Not yet |
| Accessibility: | Remote |
| Severity: | Critical |
| Author: | Wolfgang Hotwagner (AIT Austrian Institute of Technology) |
Summary
========
[Sexy Polling is a Joomla Extension for votes.](https://2glux.com/projects/sexypolling…
Posted by Heiko Feldhusen via Fulldisclosure on Apr 22
—————————————————————
—————————————————————
—————————————————————
—————————————————————
—————————————————————
—————————————————————…
esh-0.3.2-1.fc36
Honor umask of existing file or parent process when using -o option
Make trap rm -f more robust, resistant to Command Injection attack
esh-0.3.2-1.fc35
Honor umask of existing file or parent process when using -o option
Make trap rm -f more robust, resistant to Command Injection attack
