Post Content
Category Archives: Advisories
DSA-5688-1 atril – security update
It was discovered that missing input sanitising in the Atril document
viewer could result in writing arbitrary files in the users home directory
if a malformed epub document is opened.
chromium-124.0.6367.201-1.el9
FEDORA-EPEL-2024-6f1c3198f5
Packages in this update:
chromium-124.0.6367.201-1.el9
Update description:
update to 124.0.6367.201
* High CVE-2024-4671: Use after free in Visuals
update to 124.0.6367.155
High CVE-2024-4558: Use after free in ANGLE
High CVE-2024-4559: Heap buffer overflow in WebAudio
update to 124.0.6367.118
* High CVE-2024-4331: Use after free in Picture In Picture
* High CVE-2024-4368: Use after free in Dawn
update to 124.0.6367.91
update to 124.0.6367.78
* Critical CVE-2024-4058: Type Confusion in ANGLE
* High CVE-2024-4059: Out of bounds read in V8 API
* High CVE-2024-4060: Use after free in Dawn
update to 124.0.6367.60
High CVE-2024-3832: Object corruption in V8
High CVE-2024-3833: Object corruption in WebAssembly
High CVE-2024-3914: Use after free in V8
High CVE-2024-3834: Use after free in Downloads
Medium CVE-2024-3837: Use after free in QUIC
Medium CVE-2024-3838: Inappropriate implementation in Autofill
Medium CVE-2024-3839: Out of bounds read in Fonts
Medium CVE-2024-3840: Insufficient policy enforcement in Site Isolation
Medium CVE-2024-3841: Insufficient data validation in Browser Switcher
Medium CVE-2024-3843: Insufficient data validation in Downloads
Low CVE-2024-3844: Inappropriate implementation in Extensions
Low CVE-2024-3845: Inappropriate implementation in Network
Low CVE-2024-3846: Inappropriate implementation in Prompts
Low CVE-2024-3847: Insufficient policy enforcement in WebUI
update to 123.0.6312.122
High CVE-2024-3157: Out of bounds write in Compositing
High CVE-2024-3516: Heap buffer overflow in ANGLE
High CVE-2024-3515: Use after free in Dawn
chromium-124.0.6367.201-1.fc38
FEDORA-2024-df7e365b4a
Packages in this update:
chromium-124.0.6367.201-1.fc38
Update description:
update to 124.0.6367.201
* High CVE-2024-4671: Use after free in Visuals
update to 124.0.6367.155
High CVE-2024-4558: Use after free in ANGLE
High CVE-2024-4559: Heap buffer overflow in WebAudio
update to 124.0.6367.118
* High CVE-2024-4331: Use after free in Picture In Picture
* High CVE-2024-4368: Use after free in Dawn
update to 124.0.6367.91
chromium-124.0.6367.201-1.el8
FEDORA-EPEL-2024-e94a7220f2
Packages in this update:
chromium-124.0.6367.201-1.el8
Update description:
update to 124.0.6367.201
* High CVE-2024-4671: Use after free in Visuals
update to 124.0.6367.155
High CVE-2024-4558: Use after free in ANGLE
High CVE-2024-4559: Heap buffer overflow in WebAudio
update to 124.0.6367.118
High CVE-2024-4331: Use after free in Picture In Picture
High CVE-2024-4368: Use after free in Dawn
chromium-124.0.6367.201-1.fc39
FEDORA-2024-1bc17d6ec7
Packages in this update:
chromium-124.0.6367.201-1.fc39
Update description:
update to 124.0.6367.201
* High CVE-2024-4671: Use after free in Visuals
chromium-124.0.6367.201-1.fc40
FEDORA-2024-5f84678c08
Packages in this update:
chromium-124.0.6367.201-1.fc40
Update description:
update to 124.0.6367.201
* High CVE-2024-4671: Use after free in Visuals
unbound-1.20.0-1.fc39
FEDORA-2024-9df760819c
Packages in this update:
unbound-1.20.0-1.fc39
Update description:
Unbound 1.20.0
https://github.com/NLnetLabs/unbound/releases/tag/release-1.20.0
DNSBomb limitation fixes
unbound-1.20.0-1.fc40
FEDORA-2024-68626e0eb5
Packages in this update:
unbound-1.20.0-1.fc40
Update description:
Unbound 1.20.0
https://github.com/NLnetLabs/unbound/releases/tag/release-1.20.0
DNSBomb limitation fixes
podman-5.0.3-1.fc40
FEDORA-2024-20393c122f
Packages in this update:
podman-5.0.3-1.fc40
Update description:
Security fix for CVE-2024-3727