FEDORA-2024-5bfa220621

Packages in this update:

unbound-1.19.3-1.fc38

Update description:

Use the origin (DNAME) TTL for synthesized CNAMEs as per RFC 6672.
Bug fixes

https://nlnetlabs.nl/projects/unbound/download/#unbound-1-19-3

Read More

FEDORA-2024-3b173364d4

Packages in this update:

unbound-1.19.3-1.fc39

Update description:

Use the origin (DNAME) TTL for synthesized CNAMEs as per RFC 6672.
Bug fixes

https://nlnetlabs.nl/projects/unbound/download/#unbound-1-19-3

Read More

FEDORA-2024-8b20de41f0

Packages in this update:

unbound-1.19.3-1.fc40

Update description:

Use the origin (DNAME) TTL for synthesized CNAMEs as per RFC 6672.
Bug fixes

https://nlnetlabs.nl/projects/unbound/download/#unbound-1-19-3

CVE-2024-1931 – Fix trim of EDE text from large udp responses from spinning cpu.

Read More

FEDORA-2024-5f32029828

Packages in this update:

unbound-1.19.3-1.fc41

Update description:

Automatic update for unbound-1.19.3-1.fc41.

Changelog

* Fri Apr 12 2024 Petr Menšík <pemensik@redhat.com> – 1.19.3-1
– Update to 1.19.3 (rhbz#2268404)
– Fix CVE-2024-1931, Denial of service when trimming EDE text on positive
replies. (rhbz#2268419)
– Use the origin (DNAME) TTL for synthesized CNAMEs as per RFC 6672.
– Bug fixes
* Sat Mar 9 2024 Paul Wouters <paul.wouters@aiven.io> – 1.19.1-4
– Add spec file comment

Read More

FEDORA-2024-4d2d73ab31

Packages in this update:

chromium-123.0.6312.122-1.fc40

Update description:

update to 123.0.6312.122

* High CVE-2024-3157: Out of bounds write in Compositing
* High CVE-2024-3516: Heap buffer overflow in ANGLE
* High CVE-2024-3515: Use after free in Dawn

Read More

FEDORA-2024-f94660c56d

Packages in this update:

chromium-123.0.6312.122-1.fc38

Update description:

update to 123.0.6312.122

* High CVE-2024-3157: Out of bounds write in Compositing
* High CVE-2024-3516: Heap buffer overflow in ANGLE
* High CVE-2024-3515: Use after free in Dawn

Read More

FEDORA-2024-fe9a675a37

Packages in this update:

chromium-123.0.6312.122-1.fc39

Update description:

update to 123.0.6312.122

* High CVE-2024-3157: Out of bounds write in Compositing
* High CVE-2024-3516: Heap buffer overflow in ANGLE
* High CVE-2024-3515: Use after free in Dawn

Read More

A vulnerability has been discovered in PAN-OS that could allow for arbitrary code execution. PAN-OS is the software that runs all Palo Alto Networks next-generation firewalls. Successful exploitation of this vulnerability could allow for arbitrary code execution in the context of the root user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

Read More

FEDORA-2024-6dab59bd47

Packages in this update:

curl-8.2.1-5.fc39

Update description:

fix Usage of disabled protocol (CVE-2024-2004)
fix HTTP/2 push headers memory-leak (CVE-2024-2398)

Read More

FEDORA-EPEL-2024-5fc8709aa5

Packages in this update:

python-pycryptodomex-3.20.0-1.el9

Update description:

CVE-2023-52323

Read More