Read Time:9 Second
Security issues were discovered in Chromium, which could result
in the execution of arbitrary code, denial of service or information
disclosure.
Category Archives: Advisories
USN-6775-2: Linux kernel vulnerabilities
Read Time:25 Second
Zheng Wang discovered that the Broadcom FullMAC WLAN driver in the Linux
kernel contained a race condition during device removal, leading to a use-
after-free vulnerability. A physically proximate attacker could possibly
use this to cause a denial of service (system crash). (CVE-2023-47233)
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
– MAC80211 subsystem;
– Tomoyo security module;
(CVE-2024-26622, CVE-2023-52530)
USN-6777-3: Linux kernel (GCP) vulnerabilities
Read Time:48 Second
Zheng Wang discovered that the Broadcom FullMAC WLAN driver in the Linux
kernel contained a race condition during device removal, leading to a use-
after-free vulnerability. A physically proximate attacker could possibly
use this to cause a denial of service (system crash). (CVE-2023-47233)
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
– Block layer subsystem;
– Userspace I/O drivers;
– Ceph distributed file system;
– Ext4 file system;
– JFS file system;
– NILFS2 file system;
– Bluetooth subsystem;
– Networking core;
– IPv4 networking;
– IPv6 networking;
– Logical Link layer;
– MAC80211 subsystem;
– Netlink;
– NFC subsystem;
– Tomoyo security module;
(CVE-2023-52524, CVE-2023-52530, CVE-2023-52601, CVE-2023-52439,
CVE-2024-26635, CVE-2023-52602, CVE-2024-26614, CVE-2024-26704,
CVE-2023-52604, CVE-2023-52566, CVE-2021-46981, CVE-2024-26622,
CVE-2024-26735, CVE-2024-26805, CVE-2024-26801, CVE-2023-52583)
mingw-python-requests-2.32.0-1.fc39
Read Time:8 Second
FEDORA-2024-7e4f058c2f
Packages in this update:
mingw-python-requests-2.32.0-1.fc39
Update description:
Update to requests-2.32.0, fixes CVE-2024-35195.
mingw-python-requests-2.32.0-1.fc40
Read Time:8 Second
FEDORA-2024-efc4802051
Packages in this update:
mingw-python-requests-2.32.0-1.fc40
Update description:
Update to requests-2.32.0, fixes CVE-2024-35195.
oci-cli-3.41.0-1.fc41 python-oci-2.126.4-1.fc41
Read Time:9 Second
FEDORA-2024-ee636be6ff
Packages in this update:
oci-cli-3.41.0-1.fc41
python-oci-2.126.4-1.fc41
Update description:
oci-cli 3.41.0
USN-6780-1: idna vulnerability
Read Time:9 Second
Guido Vranken discovered that idna did not properly manage certain inputs,
which could lead to significant resource consumption. An attacker could
possibly use this issue to cause a denial of service.
libreoffice-7.6.7.2-1.fc39
Read Time:6 Second
FEDORA-2024-7989718224
Packages in this update:
libreoffice-7.6.7.2-1.fc39
Update description:
7.6.7.2
USN-6781-1: Spreadsheet::ParseExcel vulnerability
Read Time:9 Second
Le Dinh Hai discovered that Spreadsheet::ParseExcel was passing unvalidated
input from a file into a string-type “eval”. An attacker could craft a
malicious file to achieve arbitrary code execution.
firefox-126.0-7.fc38
Read Time:12 Second
FEDORA-2024-b4b4426a4f
Packages in this update:
firefox-126.0-7.fc38
Update description:
Fixed DBus service to not run without Gnome search requests
new upstream update (126.0)
New upstream version (125.0.3)
Latest upstream release.