Posted by SEC Consult Vulnerability Lab via Fulldisclosure on May 27

SEC Consult Vulnerability Lab Security Advisory < 20240527-0 >
=======================================================================
title: Multiple vulnerabilities
product: HAWKI (Interaction Design Team at the University of Applied
Sciences and Arts in Hildesheim/Germany)
vulnerable version: 1.0.0-beta.1, versions before commit 146967f
    fixed version: Github commit 146967f…

Read More

Posted by SEC Consult Vulnerability Lab via Fulldisclosure on May 27

SEC Consult Vulnerability Lab Security Advisory < 20240524-0 >
=======================================================================
title: Exposed Serial Shell on multiple PLCs
product: Siemens CP-XXXX Series (CP-2014, CP-2016, CP-2017, CP-2019, CP-5014)
vulnerable version: All hardware revisions
fixed version: Hardware is EOL, no fix
CVE number: –
impact: Low…

Read More

FEDORA-2024-bfb8617ba3

Packages in this update:

fcitx5-qt-5.1.6-2.fc40
python-pyqt6-6.7.0-2.fc40
qadwaitadecorations-0.1.5-3.fc40
qgnomeplatform-0.9.2-14.fc40
qt6-6.7.1-1.fc40
qt6-qt3d-6.7.1-1.fc40
qt6-qt5compat-6.7.1-1.fc40
qt6-qtbase-6.7.1-2.fc40
qt6-qtcharts-6.7.1-1.fc40
qt6-qtcoap-6.7.1-1.fc40
qt6-qtconnectivity-6.7.1-1.fc40
qt6-qtdatavis3d-6.7.1-1.fc40
qt6-qtdeclarative-6.7.1-2.fc40
qt6-qtgraphs-6.7.1-1.fc40
qt6-qtgrpc-6.7.1-1.fc40
qt6-qthttpserver-6.7.1-1.fc40
qt6-qtimageformats-6.7.1-1.fc40
qt6-qtlanguageserver-6.7.1-2.fc40
qt6-qtlocation-6.7.1-1.fc40
qt6-qtlottie-6.7.1-1.fc40
qt6-qtmqtt-6.7.1-1.fc40
qt6-qtmultimedia-6.7.1-1.fc40
qt6-qtnetworkauth-6.7.1-1.fc40
qt6-qtopcua-6.7.1-1.fc40
qt6-qtpositioning-6.7.1-1.fc40
qt6-qtquick3d-6.7.1-1.fc40
qt6-qtquick3dphysics-6.7.1-1.fc40
qt6-qtquicktimeline-6.7.1-1.fc40
qt6-qtremoteobjects-6.7.1-1.fc40
qt6-qtscxml-6.7.1-1.fc40
qt6-qtsensors-6.7.1-1.fc40
qt6-qtserialbus-6.7.1-1.fc40
qt6-qtserialport-6.7.1-1.fc40
qt6-qtshadertools-6.7.1-2.fc40
qt6-qtspeech-6.7.1-1.fc40
qt6-qtsvg-6.7.1-1.fc40
qt6-qttools-6.7.1-1.fc40
qt6-qttranslations-6.7.1-1.fc40
qt6-qtvirtualkeyboard-6.7.1-1.fc40
qt6-qtwayland-6.7.1-1.fc40
qt6-qtwebchannel-6.7.1-1.fc40
qt6-qtwebengine-6.7.1-1.fc40
qt6-qtwebsockets-6.7.1-1.fc40
qt6-qtwebview-6.7.1-1.fc40
zeal-0.7.0-10.fc40

Update description:

Qt 6.7.1 bugfix update.

Read More

USN-6673-1 provided a security update for python-cryptography.
This update provides the corresponding update for Ubuntu 24.04 LTS.

Original advisory details:

It was discovered that python-cryptography incorrectly handled memory
operations when processing mismatched PKCS#12 keys. A remote attacker could
possibly use this issue to cause python-cryptography to crash, leading to a
denial of service. This issue only affected Ubuntu 23.10. (CVE-2024-26130)

Read More

FEDORA-2024-b15a51292f

Packages in this update:

libarchive-3.7.1-2.fc39

Update description:

Fix for CVE-2024-26256

Read More

FEDORA-2024-cbb72aad83

Packages in this update:

libarchive-3.7.2-4.fc40

Update description:

Automatic update for libarchive-3.7.2-4.fc40.

Read More

FEDORA-2024-6e8ef99d77

Packages in this update:

qt5-qtnetworkauth-5.15.13-2.fc40

Update description:

Fix CVE-2024-36048

Read More

FEDORA-2024-3936682805

Packages in this update:

qt5-qtnetworkauth-5.15.13-2.fc39

Update description:

Fix CVE-2024-36048

Read More

FEDORA-2024-25b47765c6

Packages in this update:

kitty-0.31.0-2.fc39

Update description:

fix CVE-2023-36308

Read More

FEDORA-2024-b8e474fbd3

Packages in this update:

glances-4.0.5-2.fc40

Update description:

Security fix for CVE-2024-21501

Read More