Vincent Berg discovered that CRM shell incorrectly handled certain commands.
An local attacker could possibly use this issue to execute arbitrary code
via shell code injection to the crm history commandline.
Category Archives: Advisories
USN-6710-1: Firefox vulnerabilities
Manfred Paul discovered that Firefox did not properly perform bounds
checking during range analysis, leading to an out-of-bounds write
vulnerability. A attacker could use this to cause a denial of service,
or execute arbitrary code. (CVE-2024-29943)
Manfred Paul discovered that Firefox incorrectly handled MessageManager
listeners under certain circumstances. An attacker who was able to inject
an event handler into a privileged object may have been able to execute
arbitrary code. (CVE-2024-29944)
DSA-5646-1 cacti – security update
Multiple security vulnerabilities have been discovered in Cacti, a web
interface for graphing of monitoring systems, which could result in
cross-site scripting, SQL injection, or command injection.
DSA-5647-1 samba – security update
Several vulnerabilities have been discovered in Samba, a SMB/CIFS file,
print, and login server for Unix, which might result in denial of service
or information disclosure.
seamonkey-2.53.18.2-1.el7
FEDORA-EPEL-2024-3f86ec863a
Packages in this update:
seamonkey-2.53.18.2-1.el7
Update description:
Update to 2.53.18.2
seamonkey-2.53.18.2-1.el8
FEDORA-EPEL-2024-8f366635a6
Packages in this update:
seamonkey-2.53.18.2-1.el8
Update description:
Update to 2.53.18.2
seamonkey-2.53.18.2-1.fc38
FEDORA-2024-ad50671f6c
Packages in this update:
seamonkey-2.53.18.2-1.fc38
Update description:
Update to 2.53.18.2
seamonkey-2.53.18.2-1.fc39
FEDORA-2024-8890015ff3
Packages in this update:
seamonkey-2.53.18.2-1.fc39
Update description:
Update to 2.53.18.2
seamonkey-2.53.18.2-1.fc40
FEDORA-2024-31b196eaf1
Packages in this update:
seamonkey-2.53.18.2-1.fc40
Update description:
Update to 2.53.18.2
firefox-124.0.1-1.fc39
FEDORA-2024-c8549a8c75
Packages in this update:
firefox-124.0.1-1.fc39
Update description:
New upstream version (124.0.1)