USN-6880-1: Tomcat vulnerability
Sam Shahsavar discovered that Apache Tomcat did not properly reject HTTP requests with an invalid Content-Length header. A remote attacker could possibly use this issue...
GLSA 202407-23: LIVE555 Media Server: Multiple Vulnerabilities
Post Content Read More
yt-dlp-2024.07.07-1.fc39
FEDORA-2024-c07c365ba7 Packages in this update: yt-dlp-2024.07.07-1.fc39 Update description: Update to 2024.07.07 Update to 2024.07.02 Read More
USN-6885-1: Apache HTTP Server vulnerabilities
Marc Stern discovered that the Apache HTTP Server incorrectly handled serving WebSocket protocol upgrades over HTTP/2 connections. A remote attacker could possibly use this issue...
krb5-1.21.2-6.fc41
FEDORA-2024-36514cd080 Packages in this update: krb5-1.21.2-6.fc41 Update description: Automatic update for krb5-1.21.2-6.fc41. Changelog * Mon Jul 8 2024 Julien Rische <jrische@redhat.com> - 1.21.2-6 - CVE-2024-37370...
USN-6884-1: Nova vulnerability
Martin Kaesberger discovered that Nova incorrectly handled QCOW2 image processing. An authenticated user could use this issue to access arbitrary files on the server, possibly...
USN-6883-1: OpenStack Glance vulnerability
Martin Kaesberger discovered that Glance incorrectly handled QCOW2 image processing. An authenticated user could use this issue to access arbitrary files on the server, possibly...
USN-6882-1: Cinder vulnerability
Martin Kaesberger discovered that Cinder incorrectly handled QCOW2 image processing. An authenticated user could use this issue to access arbitrary files on the server, possibly...
USN-6881-1: Exim vulnerability
It was discovered that Exim did not enforce STARTTLS sync point on client side. An attacker could possibly use this issue to perform response injection...
qt6-qtbase-6.7.2-3.fc40
FEDORA-2024-9bf3ff4133 Packages in this update: qt6-qtbase-6.7.2-3.fc40 Update description: Fix CVE-2024-39936. Read More