Read Time:7 Second
FEDORA-2024-c16972785b
Packages in this update:
python3.6-3.6.15-39.fc40
Update description:
Security fix for CVE-2024-11168
Category Archives: Advisories
ZDI-24-1511: Microsoft Office PowerPoint PPTX File Parsing Use-After-Free Remote Code Execution Vulnerability
Read Time:17 Second
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Office PowerPoint. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2024-49032.
xen-4.17.5-3.fc39
Read Time:12 Second
FEDORA-2024-b043effc6a
Packages in this update:
xen-4.17.5-3.fc39
Update description:
Deadlock in x86 HVM standard VGA handling [XSA-463, CVE-2024-45818]
libxl leaks data to PVH guests via ACPI tables [XSA-464, CVE-2024-45819]
trafficserver-9.2.6-2.fc39
Read Time:12 Second
FEDORA-2024-589ea34c42
Packages in this update:
trafficserver-9.2.6-2.fc39
Update description:
Update to upstream 9.2.6
Backport fix for broken oubound TLS with OpenSSL 3.2+
Resolves CVE-2024-38479, CVE-2024-50305, CVE-2024-50306
trafficserver-9.2.6-2.fc40
Read Time:12 Second
FEDORA-2024-b3c4e8da81
Packages in this update:
trafficserver-9.2.6-2.fc40
Update description:
Update to upstream 9.2.6
Backport fix for broken oubound TLS with OpenSSL 3.2+
Resolves CVE-2024-38479, CVE-2024-50305, CVE-2024-50306
trafficserver-9.2.6-2.fc41
Read Time:12 Second
FEDORA-2024-f4dc07db08
Packages in this update:
trafficserver-9.2.6-2.fc41
Update description:
Update to upstream 9.2.6
Backport fix for broken oubound TLS with OpenSSL 3.2+
Resolves CVE-2024-38479, CVE-2024-50305, CVE-2024-50306
trafficserver-9.2.6-2.el9
Read Time:13 Second
FEDORA-EPEL-2024-23b122f235
Packages in this update:
trafficserver-9.2.6-2.el9
Update description:
Update to upstream 9.2.6
Backport fix for broken oubound TLS with OpenSSL 3.2+
Resolves CVE-2024-38479, CVE-2024-50305, CVE-2024-50306
trafficserver-9.2.6-2.el8
Read Time:13 Second
FEDORA-EPEL-2024-60dd7e7ad3
Packages in this update:
trafficserver-9.2.6-2.el8
Update description:
Update to upstream 9.2.6
Backport fix for broken oubound TLS with OpenSSL 3.2+
Resolves CVE-2024-38479, CVE-2024-50305, CVE-2024-50306
xen-4.18.3-3.fc40
Read Time:12 Second
FEDORA-2024-7c2cfa2fe5
Packages in this update:
xen-4.18.3-3.fc40
Update description:
Deadlock in x86 HVM standard VGA handling [XSA-463, CVE-2024-45818]
libxl leaks data to PVH guests via ACPI tables [XSA-464, CVE-2024-45819]
USN-7107-1: zlib vulnerability
Read Time:9 Second
It was discovered that Minizip in zlib incorrectly handled certain zip
header fields. An attacker could possibly use this issue to cause a denial
of service, or execute arbitrary code.