FEDORA-2024-6712c699fc

Packages in this update:

strongswan-5.9.14-1.fc40

Update description:

Fixes CVE-2023-41913 buffer overflow and possible RCE, various IKEv2 improvements

Read More

Several vulnerabilities have been discovered in the Linux kernel that
may lead to a privilege escalation, denial of service or information
leaks.

https://security-tracker.debian.org/tracker/DSA-5703-1

Read More

FEDORA-EPEL-2024-d00a65eda0

Packages in this update:

chromium-125.0.6422.141-1.el8

Update description:

update to 125.0.6422.141

High CVE-2024-5493: Heap buffer overflow in WebRTC
High CVE-2024-5494: Use after free in Dawn
High CVE-2024-5495: Use after free in Dawn
High CVE-2024-5496: Use after free in Media Session
High CVE-2024-5497: Out of bounds memory access in Keyboard Inputs
High CVE-2024-5498: Use after free in Presentation API
High CVE-2024-5499: Out of bounds write in Streams API

Read More

FEDORA-EPEL-2024-35fab49640

Packages in this update:

chromium-125.0.6422.141-1.el9

Update description:

update to 125.0.6422.141

High CVE-2024-5493: Heap buffer overflow in WebRTC
High CVE-2024-5494: Use after free in Dawn
High CVE-2024-5495: Use after free in Dawn
High CVE-2024-5496: Use after free in Media Session
High CVE-2024-5497: Out of bounds memory access in Keyboard Inputs
High CVE-2024-5498: Use after free in Presentation API
High CVE-2024-5499: Out of bounds write in Streams API

Read More

FEDORA-EPEL-2024-f1162cb3bf

Packages in this update:

chromium-125.0.6422.141-1.el7

Update description:

update to 125.0.6422.141

High CVE-2024-5493: Heap buffer overflow in WebRTC
High CVE-2024-5494: Use after free in Dawn
High CVE-2024-5495: Use after free in Dawn
High CVE-2024-5496: Use after free in Media Session
High CVE-2024-5497: Out of bounds memory access in Keyboard Inputs
High CVE-2024-5498: Use after free in Presentation API
High CVE-2024-5499: Out of bounds write in Streams API

Read More

FEDORA-2024-dc9e695c3a

Packages in this update:

strongswan-5.9.14-1.fc41

Update description:

Automatic update for strongswan-5.9.14-1.fc41.

Changelog

* Fri May 31 2024 Paul Wouters <paul.wouters@aiven.io> – 5.9.14-1
– Resolves: rhbz#2254560 CVE-2023-41913 buffer overflow and possible RCE
– Resolved: rhbz#2250666 Update to 5.9.14 (IKEv2 OCSP extensions, seqno/regno overflow handling
– Update to 5.9.13 (OCSP nonce set regression configuration option charon.ocsp_nonce_len)
– Update to 5.9.12 (CVE-2023-41913 fix, various IKEv2 fixes)

Read More

An integer overflow in the EXIF metadata parsing was discovered in the
GStreamer media framework, which may result in denial of service or
potentially the execution of arbitrary code if a malformed file is
processed.

https://security-tracker.debian.org/tracker/DSA-5702-1

Read More

FEDORA-2024-bb52629e6c

Packages in this update:

chromium-125.0.6422.141-1.fc40

Update description:

update to 125.0.6422.141

High CVE-2024-5493: Heap buffer overflow in WebRTC
High CVE-2024-5494: Use after free in Dawn
High CVE-2024-5495: Use after free in Dawn
High CVE-2024-5496: Use after free in Media Session
High CVE-2024-5497: Out of bounds memory access in Keyboard Inputs
High CVE-2024-5498: Use after free in Presentation API
High CVE-2024-5499: Out of bounds write in Streams API

Read More

FEDORA-2024-4e0ea1c22e

Packages in this update:

chromium-125.0.6422.141-1.fc39

Update description:

update to 125.0.6422.141

High CVE-2024-5493: Heap buffer overflow in WebRTC
High CVE-2024-5494: Use after free in Dawn
High CVE-2024-5495: Use after free in Dawn
High CVE-2024-5496: Use after free in Media Session
High CVE-2024-5497: Out of bounds memory access in Keyboard Inputs
High CVE-2024-5498: Use after free in Presentation API
High CVE-2024-5499: Out of bounds write in Streams API

Read More

FEDORA-EPEL-2024-9ef042c689

Packages in this update:

syncthing-1.27.7-1.el8

Update description:

Update to version 1.27.7.

Read More