Read Time:1 Second
Post Content
Category Archives: Advisories
GLSA 202407-15: GraphicsMagick: Multiple Vulnerabilities
GLSA 202407-14: TigerVNC: Multiple Vulnerabilities
GLSA 202407-16: GNU Coreutils: Buffer Overflow Vulnerability
GLSA 202407-17: BusyBox: Multiple Vulnerabilities
GLSA 202407-18: Stellarium: Arbitrary File Write
DSA-5726-1 krb5 – security update
Read Time:13 Second
Two vulnerabilities were discovered in the GSS message token handling in
krb5, the MIT implementation of Kerberos. An attacker can take advantage
of these flaws to bypass integrity protections or cause a denial of
service.
yarnpkg-1.22.22-2.fc40
Read Time:6 Second
FEDORA-2024-eef12396fc
Packages in this update:
yarnpkg-1.22.22-2.fc40
Update description:
Backport fix for CVE-2024-4067.
pgadmin4-7.8-7.fc39
Read Time:8 Second
FEDORA-2024-9820d9491f
Packages in this update:
pgadmin4-7.8-7.fc39
Update description:
Backport security fixes for CVE-2024-4216, CVE-2024-4068, CVE-2024-4067.
USN-6879-1: Virtuoso Open-Source Edition vulnerabilities
Read Time:34 Second
Jingzhou Fu discovered that Virtuoso Open-Source Edition incorrectly
handled certain crafted SQL statements. An attacker could possibly use
this issue to crash the program, resulting in a denial of service.
(CVE-2023-31620, CVE-2023-31622, CVE-2023-31624, CVE-2023-31626,
CVE-2023-31627, CVE-2023-31629, CVE-2023-31630, CVE-2023-31631,
CVE-2023-48951)
Jingzhou Fu discovered that Virtuoso Open-Source Edition incorrectly
handled certain crafted SQL statements. An attacker could possibly use
this issue to crash the program, resulting in a denial of service.
This issue only affects Ubuntu 22.04 LTS and Ubuntu 24.04 LTS.
(CVE-2023-48945, CVE-2023-48946, CVE-2023-48947, CVE-2023-48950)