This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe After Effects. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2023-48633.

Read More

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Lexmark CX331adwe printers. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 8.8. The following CVEs are assigned: CVE-2023-50739.

Read More

FEDORA-2024-29120efcc4

Packages in this update:

et-6.2.1-15.fc38

Update description:

Unbundle cpp-httlib, fixing CVE-2023-26130

Read More

FEDORA-2024-a09bfceb28

Packages in this update:

et-6.2.1-15.fc39

Update description:

Unbundle cpp-httlib, fixing CVE-2023-26130

Read More

FEDORA-2024-cd94b2df32

Packages in this update:

et-6.2.1-15.fc40

Update description:

Unbundle cpp-httlib, fixing CVE-2023-26130

Read More

FEDORA-2024-34474f346b

Packages in this update:

clamav-1.0.6-1.fc40

Update description:

ClamAV 1.0.6 is a critical patch release with the following fixes:

Updated select Rust dependencies to the latest versions. This resolved Cargo audit complaints and included PNG parser bug fixes.

GitHub pull requesthttps://github.com/Cisco-Talos/clamav/pull/1225

Fixed a bug causing some text to be truncated when converting from UTF-16.

GitHub pull requesthttps://github.com/Cisco-Talos/clamav/pull/1232

Fixed assorted complaints identified by Coverity static analysis.

GitHub pull requesthttps://github.com/Cisco-Talos/clamav/pull/1237

Fixed a bug causing CVDs downloaded by the DatabaseCustomURL Freshclam config option to be pruned and then re-downloaded with every update.

GitHub pull requesthttps://github.com/Cisco-Talos/clamav/pull/1240

Added the new ‘valhalla’ database name to the list of optional databases in preparation for future work.

GitHub pull requesthttps://github.com/Cisco-Talos/clamav/pull/1240

Silenced a warning “Unexpected early end-of-file” that occured when scanning some PNG files.

GitHub pull requesthttps://github.com/Cisco-Talos/clamav/pull/1216

Read More

FEDORA-2024-1a79c2ef63

Packages in this update:

clamav-1.0.6-1.fc39

Update description:

ClamAV 1.0.6 is a critical patch release with the following fixes:

Updated select Rust dependencies to the latest versions. This resolved Cargo audit complaints and included PNG parser bug fixes.

GitHub pull requesthttps://github.com/Cisco-Talos/clamav/pull/1225

Fixed a bug causing some text to be truncated when converting from UTF-16.

GitHub pull requesthttps://github.com/Cisco-Talos/clamav/pull/1232

Fixed assorted complaints identified by Coverity static analysis.

GitHub pull requesthttps://github.com/Cisco-Talos/clamav/pull/1237

Fixed a bug causing CVDs downloaded by the DatabaseCustomURL Freshclam config option to be pruned and then re-downloaded with every update.

GitHub pull requesthttps://github.com/Cisco-Talos/clamav/pull/1240

Added the new ‘valhalla’ database name to the list of optional databases in preparation for future work.

GitHub pull requesthttps://github.com/Cisco-Talos/clamav/pull/1240

Silenced a warning “Unexpected early end-of-file” that occured when scanning some PNG files.

GitHub pull requesthttps://github.com/Cisco-Talos/clamav/pull/1216

Read More

FEDORA-EPEL-2024-25c9732d41

Packages in this update:

clamav-1.0.6-1.el9

Update description:

ClamAV 1.0.6 is a critical patch release with the following fixes:

Updated select Rust dependencies to the latest versions. This resolved Cargo audit complaints and included PNG parser bug fixes.

GitHub pull requesthttps://github.com/Cisco-Talos/clamav/pull/1225

Fixed a bug causing some text to be truncated when converting from UTF-16.

GitHub pull requesthttps://github.com/Cisco-Talos/clamav/pull/1232

Fixed assorted complaints identified by Coverity static analysis.

GitHub pull requesthttps://github.com/Cisco-Talos/clamav/pull/1237

Fixed a bug causing CVDs downloaded by the DatabaseCustomURL Freshclam config option to be pruned and then re-downloaded with every update.

GitHub pull requesthttps://github.com/Cisco-Talos/clamav/pull/1240

Added the new ‘valhalla’ database name to the list of optional databases in preparation for future work.

GitHub pull requesthttps://github.com/Cisco-Talos/clamav/pull/1240

Silenced a warning “Unexpected early end-of-file” that occured when scanning some PNG files.

GitHub pull requesthttps://github.com/Cisco-Talos/clamav/pull/1216

Read More

FEDORA-2024-92b8ac25a5

Packages in this update:

clamav-1.0.6-1.fc38

Update description:

ClamAV 1.0.6 is a critical patch release with the following fixes:

Updated select Rust dependencies to the latest versions. This resolved Cargo audit complaints and included PNG parser bug fixes.

GitHub pull requesthttps://github.com/Cisco-Talos/clamav/pull/1225

Fixed a bug causing some text to be truncated when converting from UTF-16.

GitHub pull requesthttps://github.com/Cisco-Talos/clamav/pull/1232

Fixed assorted complaints identified by Coverity static analysis.

GitHub pull requesthttps://github.com/Cisco-Talos/clamav/pull/1237

Fixed a bug causing CVDs downloaded by the DatabaseCustomURL Freshclam config option to be pruned and then re-downloaded with every update.

GitHub pull requesthttps://github.com/Cisco-Talos/clamav/pull/1240

Added the new ‘valhalla’ database name to the list of optional databases in preparation for future work.

GitHub pull requesthttps://github.com/Cisco-Talos/clamav/pull/1240

Silenced a warning “Unexpected early end-of-file” that occured when scanning some PNG files.

GitHub pull requesthttps://github.com/Cisco-Talos/clamav/pull/1216

Read More

Security issues were discovered in Chromium, which could result
in the execution of arbitrary code, denial of service or information
disclosure.

https://security-tracker.debian.org/tracker/DSA-5675-1

Read More