Category: Advisories

FEDORA-2024-af07c0bb8c Packages in this update: python-urllib3-1.26.19-1.fc40 Update description: Update to 1.26.19 to fix CVE-2024-37891 (rhbz#2292790) Read More

FEDORA-2024-9283a3b879 Packages in this update: python-urllib3-1.26.19-1.fc41 Update description: Automatic update for python-urllib3-1.26.19-1.fc41. Changelog * Wed Jun 26 2024 Lumir Balhar <lbalhar@redhat.com> - 1.26.19-1 - Update...

Andreas Hasenack discovered that netplan incorrectly handled the permissions for netdev files containing wireguard configuration. An attacker could use this to obtain wireguard secret keys....

Alon Zahavi discovered that the NVMe-oF/TCP subsystem in the Linux kernel did not properly validate H2C PDU data, leading to a null pointer dereference vulnerability....

It was discovered that Ruby incorrectly handled the ungetbyte and ungetc methods. A remote attacker could use this issue to cause Ruby to crash, resulting...

It was discovered that Wget incorrectly handled semicolons in the userinfo subcomponent of a URI. A remote attacker could possibly trick a user into connecting...

Fabian Vogt discovered that Plasma Workspace incorrectly handled connections via ICE. A local attacker could possibly use this issue to gain access to another user's...

FEDORA-EPEL-2024-5f44a7efc2 Packages in this update: python-waitress-1.4.3-2.el8 Update description: Backport upstream fix for CVE-2022-24761. https://github.com/advisories/GHSA-4f7p-27jc-3c36 Read More

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Zen Cart. Authentication is not required to exploit this vulnerability. The ZDI...

It was discovered that OpenVPN incorrectly handled certain configurations with multiple authentication plugins. A remote attacker could possibly use this issue to bypass authentication using...