Martin Kaesberger discovered that Glance incorrectly handled QCOW2 image
processing. An authenticated user could use this issue to access arbitrary
files on the server, possibly exposing sensitive information.

Read More

Martin Kaesberger discovered that Cinder incorrectly handled QCOW2 image
processing. An authenticated user could use this issue to access arbitrary
files on the server, possibly exposing sensitive information.

Read More

It was discovered that Exim did not enforce STARTTLS sync point on client
side. An attacker could possibly use this issue to perform response
injection during MTA SMTP sending.

Read More

FEDORA-2024-9bf3ff4133

Packages in this update:

qt6-qtbase-6.7.2-3.fc40

Update description:

Fix CVE-2024-39936.

Read More

FEDORA-2024-5b06c85574

Packages in this update:

golang-1.21.12-1.fc39

Update description:

This update fixes CVE-2024-24791

Read More

FEDORA-2024-96a7a68962

Packages in this update:

golang-1.22.5-1.fc40

Update description:

This update fixes CVE-2024-24791

Read More

FEDORA-2024-a8d7972ef6

Packages in this update:

erlang-jose-1.11.10-1.fc40

Update description:

Re-reviewed Jose ver. 1.11.10

Read More

FEDORA-2024-9484b6915b

Packages in this update:

erlang-jose-1.11.10-1.fc39

Update description:

Re-reviewed Jose ver. 1.11.10

Read More

FEDORA-2024-d1c276c860

Packages in this update:

jpegxl-0.8.3-1.fc40

Update description:

update to 0.8.3

Read More

FEDORA-2024-35ce4d5a74

Packages in this update:

jpegxl-0.8.3-1.fc39

Update description:

update to 0.8.3

Read More