FEDORA-2024-a23b5f0783
Packages in this update:
mbedtls-2.28.8-1.fc40
Update description:
Update to 2.28.8
Release notes: https://github.com/Mbed-TLS/mbedtls/releases/tag/v2.28.8
mbedtls-2.28.8-1.fc40
Update to 2.28.8
Release notes: https://github.com/Mbed-TLS/mbedtls/releases/tag/v2.28.8
mbedtls-2.28.8-1.fc39
Update to 2.28.8
Release notes: https://github.com/Mbed-TLS/mbedtls/releases/tag/v2.28.8
mbedtls-2.28.8-1.fc38
Update to 2.28.8
Release notes: https://github.com/Mbed-TLS/mbedtls/releases/tag/v2.28.8
This vulnerability allows remote attackers to execute arbitrary script on affected installations of JetBrains TeamCity. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rating of 4.6. The following CVEs are assigned: CVE-2024-31138.
This vulnerability allows local attackers to escalate privileges on affected installations of Flexera Software FlexNet Publisher. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2024-2658.
This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of GitLab. Authentication is required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 4.3. The following CVEs are assigned: CVE-2024-2818.
This vulnerability allows remote attackers to bypass the Mark-Of-The-Web protection mechanism on affected installations of RARLAB WinRAR. User interaction is required to exploit this vulnerability in that the target must perform a specific action on a malicious page. The ZDI has assigned a CVSS rating of 4.3. The following CVEs are assigned: CVE-2024-30370.
assimp-5.0.1-7.el8
Security fix for CVE-2023-45661 CVE-2023-45662 CVE-2023-45663 CVE-2023-45664 CVE-2023-45666 CVE-2023-45667
c-ares-1.28.1-1.fc38
1.28.1 fixes a significant bug in 1.28.0.
Update to 1.28.0. Also fixes CVE-2024-25629.
c-ares-1.28.1-1.fc40
1.28.1 fixes a significant bug in 1.28.0.
Update to 1.28.0. Also fixes CVE-2024-25629.