Multiple code execution vulnerabilities exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. A specially crafted malformed file can lead to an out-of-bounds read and type confusion, which could lead to code execution. An attacker can provide malicious input to trigger any of these vulnerabilities. An oob read vulnerability exists in Nef_2/PM_io_parser.h PM_io_parser<PMDEC>::read_hedge() e->set_next().
A flaw exists in WordPress related to the ‘wp-admin/press-this.php ‘script improperly checking user permissions when publishing posts. This may allow a user with ‘Contributor-level’ privileges to post as if they had ‘publish_posts’ permission.
In the Linux kernel through 3.1 there is an information disclosure issue via /proc/stat.
plantuml-1.2022.4-1.fc36
notes=Security fix for [CVE-2022-1231]
zchunk-1.2.2-1.fc36
Fix various small issues highlighted by Coverity
zchunk-1.2.2-1.fc35
Fix various small issues highlighted by Coverity
zchunk-1.2.2-1.el8
Fix various small issues highlighted by Coverity
zchunk-1.2.2-1.fc34
Fix various small issues highlighted by Coverity
zchunk-1.2.2-1.el7
Fix various small issues highlighted by Coverity
moby-engine-20.10.14-1.fc34
Update to 20.10.14. Fixes rhbz#2063052.
Mitigate CVE-2022-24769.
