Category: Advisories

FEDORA-2024-c8d21fe399 Packages in this update: flatpak-1.15.8-1.fc39 Update description: Update to 1.15.8 Fix CVE-2024-32462 Read More

FEDORA-2024-43ea98691e Packages in this update: flatpak-1.15.8-1.fc40 Update description: Update to 1.15.8 Fixes CVE-2024-32462 Read More

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but...

Gergo Koteles discovered that sandbox restrictions in Flatpak, an application deployment framework for desktop apps, could by bypassed in combination with xdg-desktop-portal. https://security-tracker.debian.org/tracker/DSA-5666-1 Read More

Several security vulnerabilities have been discovered in the Tomcat servlet and JSP engine. CVE-2023-46589 Tomcat 9 did not correctly parse HTTP trailer headers. A trailer...

FEDORA-2024-5d8f4f86b0 Packages in this update: chromium-124.0.6367.60-1.fc38 Update description: update to 124.0.6367.60 High CVE-2024-3832: Object corruption in V8 High CVE-2024-3833: Object corruption in WebAssembly High CVE-2024-3914:...

FEDORA-2024-12edb9dec8 Packages in this update: chromium-124.0.6367.60-2.fc39 Update description: update to 124.0.6367.60 High CVE-2024-3832: Object corruption in V8 High CVE-2024-3833: Object corruption in WebAssembly High CVE-2024-3914:...

FEDORA-2024-73644489ec Packages in this update: python-idna-3.7-1.fc38 Update description: Update to 3.7 (rhbz#2274439), security fix for CVE-2024-3651 Read More

FEDORA-2024-9176fdb518 Packages in this update: python-idna-3.7-1.fc39 Update description: Update to 3.7 (rhbz#2274439), security fix for CVE-2024-3651 Read More

Charles Fol discovered that the GNU C Library iconv feature incorrectly handled certain input sequences. An attacker could use this issue to cause the GNU...