Category Archives: Advisories

Advisories

chromium-122.0.6261.94-1.el9

March 1, 2024

Read Time:14 Second

FEDORA-EPEL-2024-99e002f742

Packages in this update:

chromium-122.0.6261.94-1.el9

Update description:

Upstream security release 122.0.6261.94

High CVE-2024-1938: Type Confusion in V8
High CVE-2024-1939: Type Confusion in V8

Update to 122.0.6261.69

Advisories

chromium-122.0.6261.94-1.el8

March 1, 2024

Read Time:12 Second

FEDORA-EPEL-2024-ae22e0853d

Packages in this update:

chromium-122.0.6261.94-1.el8

Update description:

Upstream security release 122.0.6261.94

High CVE-2024-1938: Type Confusion in V8
High CVE-2024-1939: Type Confusion in V8

Advisories

chromium-122.0.6261.94-1.el7

March 1, 2024

Read Time:14 Second

FEDORA-EPEL-2024-dc7c97ee12

Packages in this update:

chromium-122.0.6261.94-1.el7

Update description:

Upstream security release 122.0.6261.94

High CVE-2024-1938: Type Confusion in V8
High CVE-2024-1939: Type Confusion in V8

Update to 122.0.6261.69

Advisories

chromium-122.0.6261.94-1.fc38

March 1, 2024

Read Time:12 Second

FEDORA-2024-449696cdb8

Packages in this update:

chromium-122.0.6261.94-1.fc38

Update description:

upstream security release 122.0.6261.94

High CVE-2024-1938: Type Confusion in V8
High CVE-2024-1939: Type Confusion in V8

Advisories

chromium-122.0.6261.94-1.fc40

March 1, 2024

Read Time:12 Second

FEDORA-2024-71395e12ce

Packages in this update:

chromium-122.0.6261.94-1.fc40

Update description:

upstream security release 122.0.6261.94

High CVE-2024-1938: Type Confusion in V8
High CVE-2024-1939: Type Confusion in V8

Advisories

chromium-122.0.6261.94-1.fc39

March 1, 2024

Read Time:12 Second

FEDORA-2024-9ce64d8940

Packages in this update:

chromium-122.0.6261.94-1.fc39

Update description:

upstream security release 122.0.6261.94

High CVE-2024-1938: Type Confusion in V8
High CVE-2024-1939: Type Confusion in V8

Advisories

ZDI-24-215: SolarWinds Security Event Manager AMF Deserialization of Untrusted Data Remote Code Execution Vulnerability

March 1, 2024

Read Time:13 Second

This vulnerability allows remote attackers to execute arbitrary code on affected installations of SolarWinds Security Event Manager. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 9.8. The following CVEs are assigned: CVE-2024-0692.

Advisories

ZDI-24-229: Linux Kernel ksmbd Session Key Exchange Heap-based Buffer Overflow Remote Code Execution Vulnerability

March 1, 2024

Read Time:15 Second

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Linux Kernel. Authentication is not required to exploit this vulnerability, but only systems with ksmbd enabled are vulnerable. The ZDI has assigned a CVSS rating of 9.0. The following CVEs are assigned: CVE-2023-52440.

Advisories

ZDI-24-228: Linux Kernel ksmbd Negotiate Request Out-Of-Bounds Read Information Disclosure Vulnerability

March 1, 2024

Read Time:15 Second

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Linux Kernel. Authentication is not required to exploit this vulnerability. However, only systems with ksmbd enabled are vulnerable. The ZDI has assigned a CVSS rating of 8.6. The following CVEs are assigned: CVE-2023-52441.

Advisories

ZDI-24-227: Linux Kernel ksmbd Chained Request Improper Input Validation Information Disclosure Vulnerability

March 1, 2024

Read Time:15 Second

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Linux Kernel. Authentication is not required to exploit this vulnerability, but only systems with ksmbd enabled are vulnerable. The ZDI has assigned a CVSS rating of 9.3. The following CVEs are assigned: CVE-2023-52442.

News, Advisories and much more

Exit mobile version