USN-5355-1 fixed a vulnerability in zlib. This update provides
the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM.
Original advisory details:
Danilo Ramos discovered that zlib incorrectly handled memory when
performing certain deflating operations. An attacker could use this issue
to cause zlib to crash, resulting in a denial of service, or possibly
execute arbitrary code.
chromium-99.0.4844.84-1.el7
Minor update for CVE-2022-1096.
Also fixes dependency issues for chrome-remote-desktop and sizing issues where some libraries/binaries were not being stripped.
chromium-99.0.4844.84-1.el8
Minor update for CVE-2022-1096.
Also fixes dependency issues for chrome-remote-desktop and sizing issues where some libraries/binaries were not being stripped.
chromium-99.0.4844.84-1.fc35
Minor update for CVE-2022-1096.
Also fixes dependency issues for chrome-remote-desktop and sizing issues where some libraries/binaries were not being stripped.
chromium-99.0.4844.84-1.fc34
Minor update for CVE-2022-1096.
Also fixes dependency issues for chrome-remote-desktop and sizing issues where some libraries/binaries were not being stripped.
chromium-99.0.4844.84-1.fc36
Minor update for CVE-2022-1096.
Also fixes dependency issues for chrome-remote-desktop and sizing issues where some libraries/binaries were not being stripped.
A flaw was found in the Linux kernels implementation of audit rules, where a syscall can unexpectedly not be correctly not be logged by the audit subsystem
In createBluetoothDeviceSlice of ConnectedDevicesSliceProvider.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-185190688
In createGeneralSlice of ConnectedDevicesSliceProvider.java.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-185247656
Alexandre Bartel discovered that DOSBox incorrectly handled
long lines in certain files. An attacker could possibly use
this issue to execute arbitrary code. (CVE-2019-7165)
Alexandre Bartel discovered that DOSBox incorrectly performed
access control over certain directories. An attacker could
possibly use this issue to execute arbitrary code.
(CVE-2019-12594)
