Read Time:6 Second
FEDORA-2024-2ac7273bab
Packages in this update:
libgsf-1.14.53-1.fc40
Update description:
Fixes for memory vulnerabilities.
Category Archives: Advisories
chromium-129.0.6668.100-1.fc41
Read Time:11 Second
FEDORA-2024-a59306afa3
Packages in this update:
chromium-129.0.6668.100-1.fc41
Update description:
Update to 129.0.6668.100
* CVE-2024-9602: Type Confusion in V8
* CVE-2024-9603: Type Confusion in V
chromium-129.0.6668.100-1.el8
Read Time:11 Second
FEDORA-EPEL-2024-599b158d30
Packages in this update:
chromium-129.0.6668.100-1.el8
Update description:
Update to 129.0.6668.100
* CVE-2024-9602: Type Confusion in V8
* CVE-2024-9603: Type Confusion in V
chromium-129.0.6668.100-1.fc39
Read Time:11 Second
FEDORA-2024-5ee2c7c696
Packages in this update:
chromium-129.0.6668.100-1.fc39
Update description:
Update to 129.0.6668.100
* CVE-2024-9602: Type Confusion in V8
* CVE-2024-9603: Type Confusion in V
chromium-129.0.6668.100-1.fc40
Read Time:11 Second
FEDORA-2024-4ab266b9ca
Packages in this update:
chromium-129.0.6668.100-1.fc40
Update description:
Update to 129.0.6668.100
* CVE-2024-9602: Type Confusion in V8
* CVE-2024-9603: Type Confusion in V
chromium-129.0.6668.100-1.el9
Read Time:11 Second
FEDORA-EPEL-2024-ad170ba14e
Packages in this update:
chromium-129.0.6668.100-1.el9
Update description:
Update to 129.0.6668.100
* CVE-2024-9602: Type Confusion in V8
* CVE-2024-9603: Type Confusion in V
yarnpkg-1.22.22-4.fc41
Read Time:7 Second
FEDORA-2024-b0fc600c3c
Packages in this update:
yarnpkg-1.22.22-4.fc41
Update description:
Update bundled elliptic to fix CVE-2024-48949.
yarnpkg-1.22.22-4.fc40
Read Time:7 Second
FEDORA-2024-6955bcc801
Packages in this update:
yarnpkg-1.22.22-4.fc40
Update description:
Update bundled elliptic to fix CVE-2024-48949.
USN-7020-4: Linux kernel vulnerabilities
Read Time:18 Second
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
– GPU drivers;
– Network drivers;
– SCSI drivers;
– F2FS file system;
– BPF subsystem;
– IPv4 networking;
(CVE-2024-42228, CVE-2024-42154, CVE-2024-42160, CVE-2024-42159,
CVE-2024-41009, CVE-2024-42224)
ZDI-24-1335: SonicWALL Connect Tunnel Link Following Denial-of-Service Vulnerability
Read Time:18 Second
This vulnerability allows local attackers to create a denial-of-service condition on affected installations of SonicWALL Connect Tunnel. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The ZDI has assigned a CVSS rating of 6.1. The following CVEs are assigned: CVE-2024-45315.