valkey-8.0.2-1.fc40
update to 8.0.2
fixes CVE-2024-46981 – Lua script commands may lead to remote code execution
fixes CVE-2024-51741 – Denial-of-service due to malformed ACL selectors
mingw-python-jinja2-3.1.5-1.fc40
Update to jinja2-3.1.5.
mingw-python-jinja2-3.1.5-1.fc41
Update to jinja2-3.1.5.
seamonkey-2.53.20-2.el8
Fix bookmarks restoring from file.
Update to 2.53.20
seamonkey-2.53.20-2.fc40
Fix bookmarks restoring from file.
Update to 2.53.20
seamonkey-2.53.20-2.fc41
Fix bookmarks restoring from file.
Update to 2.53.20
It was discovered that Tinyproxy did not properly manage memory during the
parsing of HTTP connection headers. An attacker could use this issue to
cause a DoS or possibly execute arbitrary code.
This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Deep Security Agent. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. Subsequent user interaction on the part of an administrator is additionally required. The ZDI has assigned a CVSS rating of 6.7. The following CVEs are assigned: CVE-2024-55955.
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trend Micro Apex One. Authentication is required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.5. The following CVEs are assigned: CVE-2024-52047.
This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Apex One Security Agent. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2024-52049.
