USN-6729-1: Apache HTTP Server vulnerabilities
Orange Tsai discovered that the Apache HTTP Server incorrectly handled validating certain input. A remote attacker could possibly use this issue to perform HTTP request...
llhttp-9.2.1-1.fc40 python-aiohttp-3.9.3-3.fc40
FEDORA-2024-2f15e6e876 Packages in this update: llhttp-9.2.1-1.fc40 python-aiohttp-3.9.3-3.fc40 Update description: Update llhttp to 9.2.1, fixing CVE-2024-27982. Backport llhttp 9.2.1 support to python-aiohttp 3.9.3. Read More
llhttp-9.2.1-1.fc41 python-aiohttp-3.9.3-3.fc41
FEDORA-2024-8deaadd998 Packages in this update: llhttp-9.2.1-1.fc41 python-aiohttp-3.9.3-3.fc41 Update description: Update llhttp to 9.2.1, fixing CVE-2024-27982. Backport llhttp 9.2.1 support to python-aiohttp 3.9.3. Read More
python-django3-3.2.25-2.fc38
FEDORA-2024-84fbbbb914 Packages in this update: python-django3-3.2.25-2.fc38 Update description: Security fixes for CVE-2024-27351 Potential regular expression DOS in django.utils.text.Truncator.words() CVE-2023-41164 Potential DOS vulnerability in django.utils.encoding.uri_to_iri() Read...
nodejs18-18.20.2-1.fc39
FEDORA-2024-8d548b8c96 Packages in this update: nodejs18-18.20.2-1.fc39 Update description: 2024-04-10, Version 18.20.2 'Hydrogen' (LTS), @RafaelGSS This is a security release. Notable Changes CVE-2024-27980 - Command injection...
nodejs18-18.20.2-1.fc40
FEDORA-2024-2c52524694 Packages in this update: nodejs18-18.20.2-1.fc40 Update description: 2024-04-10, Version 18.20.2 'Hydrogen' (LTS), @RafaelGSS This is a security release. Notable Changes CVE-2024-27980 - Command injection...
nodejs20-20.12.2-1.fc40
FEDORA-2024-2ffe03eaa6 Packages in this update: nodejs20-20.12.2-1.fc40 Update description: 2024-04-03, Version 20.12.1 'Iron' (LTS), @RafaelGSS This is a security release Notable Changes CVE-2024-27983 - Assertion failed...
nodejs20-20.12.2-1.fc39
FEDORA-2024-e28ccc9c17 Packages in this update: nodejs20-20.12.2-1.fc39 Update description: 2024-04-03, Version 20.12.1 'Iron' (LTS), @RafaelGSS This is a security release Notable Changes CVE-2024-27983 - Assertion failed...
USN-6728-2: Squid regression
USN-6728-1 fixed vulnerabilities in Squid. The fix for CVE-2023-5824 caused Squid to crash in certain environments on Ubuntu 20.04 LTS. The problematic fix has been...
[KIS-2024-03] Invision Community <= 4.7.16 (toolbar.php) Remote Code Execution Vulnerability
Posted by Egidio Romano on Apr 10 ------------------------------------------------------------------------------ Invision Community <= 4.7.16 (toolbar.php) Remote Code Execution Vulnerability ------------------------------------------------------------------------------ [-] Software Link: https://invisioncommunity.com [-] Affected Versions:...