FEDORA-2022-3826c8f549
Packages in this update:
moby-engine-20.10.14-1.fc36
Update description:
Update to 20.10.14. Fixes rhbz#2063052.
Mitigate CVE-2022-24769.
moby-engine-20.10.14-1.fc36
Update to 20.10.14. Fixes rhbz#2063052.
Mitigate CVE-2022-24769.
moby-engine-20.10.14-1.fc35
Update to 20.10.14. Fixes rhbz#2063052.
Mitigate CVE-2022-24769.
htmldoc-1.9.15-1.fc34
Update to the latest stable bugfix release
gerbv-2.8.2-1.fc36
Project is forked. Now maintained in GitHub. Contains security fixes.
It was discovered that klibc did not properly perform
some mathematical operations, leading to an integer overflow.
An attacker could possibly use this issue to cause a crash,
resulting in a denial of service, or possibly execute
arbitrary code. (CVE-2021-31870)
It was discovered that klibc did not properly handled some
memory allocations on 64 bit systems. An attacker could
possibly use this issue to cause a crash, resulting in a
denial of service, or possibly execute arbitrary code.
(CVE-2021-31871)
It was discovered that klibc did not properly handled some file
sizes values on 32 bit systems. An attacker could possibly use
this issue to cause a crash, resulting in a denial of service,
or possibly execute arbitrary code. (CVE-2021-31872)
It was discovered that klibc did not properly handled some
memory allocations. An attacker could possibly use this issue
to cause a crash, resulting in a denial of service, or possibly
execute arbitrary code. (CVE-2021-31873)
plantuml-1.2022.4-1.fc37
Automatic update for plantuml-1.2022.4-1.fc37.
* Mon Apr 18 2022 Sandipan Roy <bytehackr@fedoraproject.org> – 1:1.2022.4-1
– Updated version to 1.2022.4
– Added fix for rhbz#2076162
– Added fix for rhbz#2076163
plantuml-1.2022.2-1.fc35
notes=Security fix for [CVE-2022-1231]
cleemy desu wayo reported that incorrect handling of filenames by xzgrep
in xz-utils, the XZ-format compression utilities, can result in
overwrite of arbitrary files or execution of arbitrary code if a file
with a specially crafted filename is processed.
cleemy desu wayo reported that incorrect handling of filenames by zgrep
in gzip, the GNU compression utilities, can result in overwrite of
arbitrary files or execution of arbitrary code if a file with a
specially crafted filename is processed.
xz-5.2.5-9.fc36
verify upstream GPG signature