FEDORA-EPEL-2024-762aef7cb1

Packages in this update:

chromium-123.0.6312.122-1.el8

Update description:

update to 123.0.6312.122

High CVE-2024-3157: Out of bounds write in Compositing
High CVE-2024-3516: Heap buffer overflow in ANGLE
High CVE-2024-3515: Use after free in Dawn

Read More

FEDORA-EPEL-2024-2445965799

Packages in this update:

chromium-123.0.6312.122-1.el9

Update description:

update to 123.0.6312.122

High CVE-2024-3157: Out of bounds write in Compositing
High CVE-2024-3516: Heap buffer overflow in ANGLE
High CVE-2024-3515: Use after free in Dawn

Read More

FEDORA-EPEL-2024-9bc8e80200

Packages in this update:

chromium-123.0.6312.122-1.el7

Update description:

update to 123.0.6312.122

High CVE-2024-3157: Out of bounds write in Compositing
High CVE-2024-3516: Heap buffer overflow in ANGLE
High CVE-2024-3515: Use after free in Dawn

Read More

Bartek Nowotarski discovered that Apache Traffic Server, a reverse and
forward proxy server, was susceptible to denial of service via HTTP2
continuation frames.

https://security-tracker.debian.org/tracker/DSA-5659-1

Read More

FEDORA-2024-f93cdd8831

Packages in this update:

kernel-6.8.6-200.fc39

Update description:

The 6.8.6 stable kernel update contains a number of important fixes across the tree.

Read More

Several vulnerabilities have been discovered in the Linux kernel that
may lead to a privilege escalation, denial of service or information
leaks.

https://security-tracker.debian.org/tracker/DSA-5658-1

Read More

What is the vulnerability/attack?
A critical unauthenticated remote code injection vulnerability in the PAN-OS GlobalProtect Gateway was discovered. This vulnerability tracked under CVE-2024-3400 has a CVSS rating of 10.0. The GlobalProtect Gateway provides security solution for roaming users by extending the same next-generation firewall-based policies. According to the vendor advisory, active exploitation is on-going.

What is the recommended Mitigation?

The vendor has released a threat prevention signature and is currently developing a hotfix releases of PAN-OS.

What FortiGuard Coverage is available?
As the situation is still developing; the FortiGuard team will update the threat signal and provide more information on related protections as they are released. FortiGuard Incident Response team can be engaged to help with any suspected compromise.

Read More

FEDORA-2024-5bfa220621

Packages in this update:

unbound-1.19.3-1.fc38

Update description:

Use the origin (DNAME) TTL for synthesized CNAMEs as per RFC 6672.
Bug fixes

https://nlnetlabs.nl/projects/unbound/download/#unbound-1-19-3

Read More

FEDORA-2024-3b173364d4

Packages in this update:

unbound-1.19.3-1.fc39

Update description:

Use the origin (DNAME) TTL for synthesized CNAMEs as per RFC 6672.
Bug fixes

https://nlnetlabs.nl/projects/unbound/download/#unbound-1-19-3

Read More

FEDORA-2024-8b20de41f0

Packages in this update:

unbound-1.19.3-1.fc40

Update description:

Use the origin (DNAME) TTL for synthesized CNAMEs as per RFC 6672.
Bug fixes

https://nlnetlabs.nl/projects/unbound/download/#unbound-1-19-3

CVE-2024-1931 – Fix trim of EDE text from large udp responses from spinning cpu.

Read More