libsndfile-1.2.2-5.fc42
Automatic update for libsndfile-1.2.2-5.fc42.
* Mon Nov 18 2024 Michal Hlavinka <mhlavink@redhat.com> – 1.2.2-5
– fix crash in in ogg vorbis (rhbz#2322326) (CVE-2024-50612)
libsndfile-1.2.2-4.fc40
fix crash in in ogg vorbis (rhbz#2322326) (CVE-2024-50612)
It was discovered that Glib incorrectly handled certain trailing
characters. An attacker could possibly use this issue to cause
a crash or other undefined behavior.
It was discovered that curl could overwrite the HSTS expiry of the parent
domain with the subdomain’s HSTS entry. This could lead to curl switching
back to insecure HTTP earlier than otherwise intended, resulting in
information exposure.
Several security issues were discovered in the WebKitGTK Web and JavaScript
engines. If a user were tricked into viewing a malicious website, a remote
attacker could exploit a variety of issues related to web browser security,
including cross-site scripting attacks, denial of service attacks, and
arbitrary code execution.
mingw-python3-3.11.10-2.fc40
Backport fix for CVE-2024-9287
Update to python-3.11.0.
mingw-python3-3.11.10-2.fc41
Backport fix for CVE-2024-9287
Update to python-3.11.0.
mingw-libsoup-2.74.3-8.fc40
Backport fixes for CVE-2024-52530 and CVE-2024-52532.
mingw-libsoup-2.74.3-8.fc41
Backport fixes for CVE-2024-52530 and CVE-2024-52532.
mingw-glib2-2.82.2-1.fc41
Update to 2.82.2, fixes CVE-2024-52533.
