FEDORA-2024-3bf131ce13

Packages in this update:

thunderbird-115.10.0-1.fc38

Update description:

Update to 115.10.0

https://www.thunderbird.net/en-US/thunderbird/115.10.0/releasenotes/

Read More

FEDORA-2024-8580c06716

Packages in this update:

golang-github-prometheus-alertmanager-0.27.0-1.fc41

Update description:

Automatic update for golang-github-prometheus-alertmanager-0.27.0-1.fc41.

Changelog

* Thu Apr 18 2024 Mikel Olasagasti Uranga <mikel@olasagasti.info> – 0.27.0-1
– Update to 0.27.0 – Closes rhbz#2064711 rhbz#2248329 rhbz#2260773
rhbz#2261192
* Sun Feb 11 2024 Maxwell G <maxwell@gtmx.me> – 0.23.0-20
– Rebuild for golang 1.22.0
* Wed Jan 24 2024 Fedora Release Engineering <releng@fedoraproject.org> – 0.23.0-19
– Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Sat Jan 20 2024 Fedora Release Engineering <releng@fedoraproject.org> – 0.23.0-18
– Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Thu Jul 20 2023 Fedora Release Engineering <releng@fedoraproject.org> – 0.23.0-16
– Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild

Read More

FEDORA-2024-c2f6576348

Packages in this update:

httpd-2.4.59-2.fc38

Update description:

This update includes httpd version 2.4.59, fixing various security issues and bugs. See https://downloads.apache.org/httpd/CHANGES_2.4.59 for complete details of the changes in this release

Read More

FEDORA-2024-971a3a4ef7

Packages in this update:

golang-opentelemetry-contrib-1.17.0-2.fc41
golang-opentelemetry-otel-1.17.0-1.fc41

Update description:

Update opentelemetry stack to 1.17

Read More

Multiple vulnerabilities have been discovered in Oracle products, the most severe of which could allow for remote code execution.

Read More

Multiple vulnerabilities have been discovered in Ivanti Avalanche, the most severe of which could allow for remote code execution. Ivanti Avalanche is a mobile device management system. Network security features allow one to manage wireless settings (including encryption and authentication), and apply those settings on a schedule throughout the network. Successful exploitation could allow for remote code execution in the context of the system. Depending on the privileges associated with the system, an attacker could then install programs; view, change, or delete data.

Read More

FEDORA-2024-937be154d8

Packages in this update:

httpd-2.4.59-2.fc40

Update description:

This update includes httpd version 2.4.59, fixing various security issues and bugs. See https://downloads.apache.org/httpd/CHANGES_2.4.59 for complete details of the changes in this release.

Read More

FEDORA-2024-d0dccd6b96

Packages in this update:

httpd-2.4.59-2.fc39

Update description:

This update includes httpd version 2.4.59, fixing various security issues and bugs. See https://downloads.apache.org/httpd/CHANGES_2.4.59 for complete details of the changes in this release.

Read More

USN-6729-1 fixed several vulnerabilities in Apache. This update provides
the corresponding update for Ubuntu 16.04 LTS and Ubuntu 18.04 LTS.

Original advisory details:

Orange Tsai discovered that the Apache HTTP Server incorrectly handled
validating certain input. A remote attacker could possibly use this
issue to perform HTTP request splitting attacks. (CVE-2023-38709)

Keran Mu and Jianjun Chen discovered that the Apache HTTP Server
incorrectly handled validating certain input. A remote attacker could
possibly use this issue to perform HTTP request splitting attacks.
(CVE-2024-24795)

Bartek Nowotarski discovered that the Apache HTTP Server HTTP/2 module
incorrectly handled endless continuation frames. A remote attacker could
possibly use this issue to cause the server to consume resources, leading
to a denial of service. This issue was addressed only in Ubuntu 18.04 LTS.
(CVE-2024-27316)

Read More

FEDORA-2024-b72bc39c00

Packages in this update:

python-pip-23.2.1-2.fc39

Update description:

Security fix for CVE-2023-5752

Read More