Read Time:10 Second
FEDORA-2024-99d177633f
Packages in this update:
chromium-122.0.6261.128-1.fc39
Update description:
upstream security release 122.0.6261.128
High CVE-2024-2400: Use after free in Performance Manager
Category Archives: Advisories
baresip-3.10.1-1.fc38
Read Time:16 Second
FEDORA-2024-a15fe3f120
Packages in this update:
baresip-3.10.1-1.fc38
Update description:
Baresip v3.10.1 (2024-03-12)
Security Release (possible Denial of Service): A wrong or manipulated incoming RTP Timestamp can cause the baresip process to hang forever, for details see: #2954
aureceiver: fix mtx_unlock on discard
baresip-3.10.1-1.el9
Read Time:16 Second
FEDORA-EPEL-2024-8e8d75ff19
Packages in this update:
baresip-3.10.1-1.el9
Update description:
Baresip v3.10.1 (2024-03-12)
Security Release (possible Denial of Service): A wrong or manipulated incoming RTP Timestamp can cause the baresip process to hang forever, for details see: #2954
aureceiver: fix mtx_unlock on discard
baresip-3.10.1-1.el7
Read Time:16 Second
FEDORA-EPEL-2024-f51b53c59b
Packages in this update:
baresip-3.10.1-1.el7
Update description:
Baresip v3.10.1 (2024-03-12)
Security Release (possible Denial of Service): A wrong or manipulated incoming RTP Timestamp can cause the baresip process to hang forever, for details see: #2954
aureceiver: fix mtx_unlock on discard
baresip-3.10.1-1.el8
Read Time:16 Second
FEDORA-EPEL-2024-092f7564a8
Packages in this update:
baresip-3.10.1-1.el8
Update description:
Baresip v3.10.1 (2024-03-12)
Security Release (possible Denial of Service): A wrong or manipulated incoming RTP Timestamp can cause the baresip process to hang forever, for details see: #2954
aureceiver: fix mtx_unlock on discard
baresip-3.10.1-1.fc39
Read Time:16 Second
FEDORA-2024-e34efa1300
Packages in this update:
baresip-3.10.1-1.fc39
Update description:
Baresip v3.10.1 (2024-03-12)
Security Release (possible Denial of Service): A wrong or manipulated incoming RTP Timestamp can cause the baresip process to hang forever, for details see: #2954
aureceiver: fix mtx_unlock on discard
libuev-2.4.1-1.el8
Read Time:7 Second
FEDORA-EPEL-2024-d241ea2238
Packages in this update:
libuev-2.4.1-1.el8
Update description:
Security fix for CVE-2022-48620
USN-6663-2: OpenSSL update
Read Time:16 Second
USN-6663-1 provided a security update for OpenSSL.
This update provides the corresponding update for
Ubuntu 16.04 LTS.
Original advisory details:
As a security improvement, this update prevents OpenSSL
from returning an error when detecting wrong padding
in PKCS#1 v1.5 RSA, to prevent its use in possible
Bleichenbacher timing attacks.
ZDI-24-294: Microsoft Office Performance Monitor Link Following Local Privilege Escalation Vulnerability
Read Time:16 Second
This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Office. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2024-26199.
ZDI-24-293: Microsoft Skype Protection Mechanism Failure Remote Code Execution Vulnerability
Read Time:17 Second
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Skype. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rating of 8.8. The following CVEs are assigned: CVE-2024-21411.