It was discovered that the AppArmor policy compiler incorrectly generated
looser restrictions than expected for rules allowing mount operations. A
local attacker could possibly use this to bypass AppArmor restrictions in
applications where some mount operations were permitted.

Read More

FEDORA-2024-1c078a4771

Packages in this update:

znc-1.9.1-4.fc41
znc-clientbuffer-0-0.28.20190129git9766a4a.fc41
znc-push-2.0.0-10.20210311git4243934.fc41

Update description:

Fix CVE-2024-39844

https://wiki.znc.in/ChangeLog/1.9.0

Read More

FEDORA-2024-126d22c121

Packages in this update:

pgadmin4-8.9-3.fc40

Update description:

Fix CVE-2024-9014.

Read More

FEDORA-2024-4944ad2c87

Packages in this update:

pgadmin4-8.12-1.fc41

Update description:

Fix CVE-2024-9014.

Read More

Multiple vulnerabilities have been discovered in Google Chrome, the most severe of which could allow for arbitrary code execution. Successful exploitation of the most severe of these vulnerabilities could allow for arbitrary code execution in the context of the logged on user. Depending on the privileges associated with the user an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.

Read More

FEDORA-EPEL-2024-89511748af

Packages in this update:

chromium-129.0.6668.70-1.el9

Update description:

Update to 129.0.6668.70

* High CVE-2024-9120: Use after free in Dawn
* High CVE-2024-9121: Inappropriate implementation in V8
* High CVE-2024-9122: Type Confusion in V8
* High CVE-2024-9123: Integer overflow in Skia

Read More

FEDORA-2024-e60359f212

Packages in this update:

chromium-129.0.6668.70-1.fc39

Update description:

Update to 129.0.6668.70

* High CVE-2024-9120: Use after free in Dawn
* High CVE-2024-9121: Inappropriate implementation in V8
* High CVE-2024-9122: Type Confusion in V8
* High CVE-2024-9123: Integer overflow in Skia

Read More

FEDORA-EPEL-2024-5ec6a4bb83

Packages in this update:

chromium-129.0.6668.70-1.el8

Update description:

Update to 129.0.6668.70

* High CVE-2024-9120: Use after free in Dawn
* High CVE-2024-9121: Inappropriate implementation in V8
* High CVE-2024-9122: Type Confusion in V8
* High CVE-2024-9123: Integer overflow in Skia

Read More

FEDORA-2024-aaff7345b8

Packages in this update:

chromium-129.0.6668.70-1.fc40

Update description:

Update to 129.0.6668.70

* High CVE-2024-9120: Use after free in Dawn
* High CVE-2024-9121: Inappropriate implementation in V8
* High CVE-2024-9122: Type Confusion in V8
* High CVE-2024-9123: Integer overflow in Skia

Read More

The ca-certificates package contained outdated CA certificates. This update
refreshes the included certificates to those contained in the 2.64 version
of the Mozilla certificate authority bundle.

Read More