Category Archives: Advisories

USN-7057-2: WEBrick vulnerability

Read Time:17 Second

USN-7057-1 fixed a vulnerability in WEBrick. This update provides the
corresponding updates for Ubuntu 22.04 LTS.

Original advisory details:

It was discovered that WEBrick incorrectly handled having both a Content-
Length header and a Transfer-Encoding header. A remote attacker could
possibly use this issue to perform a HTTP request smuggling attack.

Read More

koji-1.35.1-1.fc42

Read Time:16 Second

FEDORA-2024-e253f0b07c

Packages in this update:

koji-1.35.1-1.fc42

Update description:

Automatic update for koji-1.35.1-1.fc42.

Changelog

* Tue Oct 8 2024 Kevin Fenzi <kevin@scrye.com> – 1.35.1-1
– Update to 1.35.1. Fixes rhbz#2316304
– Fixes CVE-2024-9427

Read More

USN-7014-2: nginx vulnerability

Read Time:21 Second

USN-7014-1 fixed a vulnerability in nginx. This update provides the
corresponding updates for Ubuntu 16.04 LTS and Ubuntu 18.04 LTS.

Original advisory details:

It was discovered that the nginx ngx_http_mp4 module incorrectly handled
certain malformed mp4 files. In environments where the mp4 directive is in
use, a remote attacker could possibly use this issue to cause nginx to
crash, resulting in a denial of service.

Read More