USN-6701-4: Linux kernel (Azure) vulnerabilities
Ruihan Li discovered that the bluetooth subsystem in the Linux kernel did not properly perform permissions checks when handling HCI sockets. A physically proximate attacker...
USN-6726-1: Linux kerne vulnerabilities
Pratyush Yadav discovered that the Xen network backend implementation in the Linux kernel did not properly handle zero length data request, leading to a null...
rpm-ostree-2024.4-6.fc39
FEDORA-2024-4afd3d38ae Packages in this update: rpm-ostree-2024.4-6.fc39 Update description: Backport fix for /etc/[g]shadow permissions Read More
rpm-ostree-2024.4-5.fc40
FEDORA-2024-589189d414 Packages in this update: rpm-ostree-2024.4-5.fc40 Update description: Securit fix for CVE-2024-2905 Backport fix for /etc/[g]shadow permissions Backport patch to fix https://github.com/coreos/rpm-ostree/issues/4879 Read More
xorg-x11-server-Xwayland-22.1.9-7.fc38
FEDORA-2024-1706127797 Packages in this update: xorg-x11-server-Xwayland-22.1.9-7.fc38 Update description: CVE fix for CVE-2024-31080, CVE-2024-31081, CVE-2024-31083, and a fix for a regression introduced with the fix for...
USN-6725-1: Linux kernel vulnerabilities
Chih-Yen Chang discovered that the KSMBD implementation in the Linux kernel did not properly validate certain data structure fields when parsing lease contexts, leading to...
xorg-x11-server-Xwayland-23.2.6-1.fc39
FEDORA-2024-5af98298c7 Packages in this update: xorg-x11-server-Xwayland-23.2.6-1.fc39 Update description: xwayland 23.2.6 - CVE fix for CVE-2024-31080, CVE-2024-31081, CVE-2024-31083 Read More
xorg-x11-server-Xwayland-23.2.6-1.fc40
FEDORA-2024-01a9916e9e Packages in this update: xorg-x11-server-Xwayland-23.2.6-1.fc40 Update description: xwayland 23.2.6 - CVE fix for CVE-2024-31080, CVE-2024-31081, CVE-2024-31083 Read More
USN-6724-1: Linux kernel vulnerabilities
Pratyush Yadav discovered that the Xen network backend implementation in the Linux kernel did not properly handle zero length data request, leading to a null...
USN-6723-1: Bind vulnerabilities
Elias Heftrig, Haya Schulmann, Niklas Vogel, and Michael Waidner discovered that Bind icorrectly handled validating DNSSEC messages. A remote attacker could possibly use this issue...