Category Archives: Advisories

USN-6653-4: Linux kernel (GKE) vulnerabilities

Read Time:1 Minute, 10 Second

It was discovered that a race condition existed in the ATM (Asynchronous
Transfer Mode) subsystem of the Linux kernel, leading to a use-after-free
vulnerability. A local attacker could use this to cause a denial of service
(system crash) or possibly execute arbitrary code. (CVE-2023-51780)

It was discovered that a race condition existed in the AppleTalk networking
subsystem of the Linux kernel, leading to a use-after-free vulnerability. A
local attacker could use this to cause a denial of service (system crash)
or possibly execute arbitrary code. (CVE-2023-51781)

Zhenghan Wang discovered that the generic ID allocator implementation in
the Linux kernel did not properly check for null bitmap when releasing IDs.
A local attacker could use this to cause a denial of service (system
crash). (CVE-2023-6915)

Robert Morris discovered that the CIFS network file system implementation
in the Linux kernel did not properly validate certain server commands
fields, leading to an out-of-bounds read vulnerability. An attacker could
use this to cause a denial of service (system crash) or possibly expose
sensitive information. (CVE-2024-0565)

Jann Horn discovered that the TLS subsystem in the Linux kernel did not
properly handle spliced messages, leading to an out-of-bounds write
vulnerability. A local attacker could use this to cause a denial of service
(system crash) or possibly execute arbitrary code. (CVE-2024-0646)

Read More

BareBonesBrowserLaunch-3.1-33.fc40 CFR-0.151-16.fc40 CardManager-3-29.fc40 IPAddress-5.2.1-17.fc40 Mars-4.5-26.fc40 OpenStego-0.7.4-12.fc40 R-rJava-1.0.6-9.fc40 ant-1.10.14-10.fc40 ant-antunit-1.4.1-11.fc40 antlr-2.7.7-77.fc40 antlr3-3.5.3-10.fc40 antlrworks-1.5.2-29.fc40 aopalliance-1.0-39.fc40 apache-commons-beanutils-1.9.4-19.fc40 apache-commons-cli-1.6.0-5.fc40 apache-commons-codec-1.16.0-7.fc40 apache-commons-collections-3.2.2-36.fc40 apache-commons-collections4-4.4-15.fc40 apache-commons-compress-1.25.0-5.fc40 apache-commons-digester-2.1-30.fc40 apache-commons-exec-1.3-31.fc40 apache-commons-io-2.13.0-8.fc40 apache-commons-jxpath-1.3-52.fc40 apache-commons-lang3-3.14.0-5.fc40 apache-commons-logging-1.3.0-5.fc40 apache-commons-math-3.6.1-18.fc40 apache-commons-modeler-2.0.1-40.fc40 apache-commons-net-3.10.0-5.fc40 apache-commons-parent-66-3.fc40 apache-commons-pool-1.6-37.fc40 apache-commons-text-1.10.0-6.fc40 apache-commons-vfs-2.9.0-5.fc40 apache-ivy-2.5.2-4.fc40 apache-parent-31-5.fc40 apache-resource-bundles-1.5-7.fc40 apiguardian-1.1.2-12.fc40 aqute-bnd-6.3.1-10.fc40 args4j-2.33-26.fc40 assertj-core-3.24.2-8.fc40 atinject-1.0.5-12.fc40 auto-1.6.1-10.fc40 batik-1.14-13.fc40 bcel-6.8.1-3.fc40 beansbinding-1.2.1-36.fc40 beust-jcommander-1.82-9.fc40 bolzplatz2006-1.0.3-58.fc40 bouncycastle-1.70-13.fc40 brazil-2.3-36.fc40 bsf-2.4.0-54.fc40 bsh-2.1.0-12.fc40 build-helper-maven-plugin-3.5.0-4.fc40 byte-buddy-1.14.2-8.fc40 byteman-4.0.16-13.fc40 cambozola-0.936-24.fc40 canl-java-2.8.3-5.fc40 cdi-api-2.0.2-14.fc40 ceph-18.2.1-10.fc40 cglib-3.3.0-15.fc40 chromium-122.0.6261.94-2.fc40 classloader-leak-test-framework-2.7.0-8.fc40 clojure-1.11.1-8.fc40 clojure-core-specs-alpha-0.2.62-8.fc40 clojure-maven-plugin-1.9.2-6.fc40 clojure-spec-alpha-0.3.218-8.fc40 codehaus-parent-4-30.fc40 colossus-0.14.0-27.fc40 console-image-viewer-1.2-24.fc40 cortado-0.6.0-32.fc40 cryptlib-3.4.7-5.fc40 crypto-policies-20240201-2.git9f501f3.fc40 decentxml-1.4-35.fc40 diffoscope-257-2.fc40 directory-maven-plugin-0.3.1-15.fc40 dirgra-0.4-12.fc40 disruptor-3.4.4-11.fc40 ditaa-0.10-24.fc40 dogtag-pki-11.5.0-3.fc40 easymock-4.3-8.fc40 ecj-4.23-9.fc40 eclipse-swt-4.29-4.fc40 ed25519-java-0.3.0-21.fc40 enjarify-1.0.3-35.fc40 extra-enforcer-rules-1.7.0-6.fc40 fasterxml-oss-parent-58-2.fc40 felix-parent-8-5.fc40 felix-utils-1.11.8-9.fc40 fernflower-211.7442.40-11.fc40 filedrop-1.1-24.fc40 fishbowl-1.4.1-9.fc40 flute-1.3.0-37.OOo31.fc40 fop-2.9-6.fc40 forge-parent-38-28.fc40 freecol-1.1.0-4.fc40 freerouting-1.3.1-17.fc40 frysk-0.4-94.fc40 fusesource-pom-1.12-18.fc40 gnulib-0-50.20230709git.fc40 google-guice-5.1.0-11.fc40 guava-32.1.3-5.fc40 hamcrest-2.2-16.fc40 hawtjni-1.18-12.fc40 hibernate-jpa-2.0-api-1.0.1-40.fc40 httpcomponents-client-4.5.14-8.fc40 httpcomponents-core-4.4.16-8.fc40 httpcomponents-project-13-6.fc40 icecat-115.8.0-2.rh1.fc40 icedtea-web-1.8.8-5.fc40 icu4j-74.2-4.fc40 imagej-1.54h-4.fc40 jFormatString-0-0.49.20131227gitf159b88.fc40 jackson-annotations-2.16.1-3.fc40 jackson-bom-2.16.1-3.fc40 jackson-core-2.16.1-4.fc40 jackson-databind-2.16.1-4.fc40 jackson-jaxrs-providers-2.16.1-3.fc40 jackson-modules-base-2.16.1-3.fc40 jackson-parent-2.16-4.fc40 jacop-4.9.0-5.fc40 jakarta-activation-2.1.2-6.fc40 jakarta-activation1-1.2.2-13.fc40 jakarta-annotations-1.3.5-22.fc40 jakarta-el-4.0.0-14.fc40 jakarta-interceptors-2.0.0-12.fc40 jakarta-json-2.1.3-4.fc40 jakarta-mail-2.1.2-5.fc40 jakarta-oro-2.0.8-44.fc40 jakarta-saaj-3.0.0-6.fc40 jakarta-servlet-5.0.0-18.fc40 jakarta-xml-ws-4.0.0-6.fc40 jansi-2.4.1-3.fc40 jansi-native-1.8-18.fc40 jansi1-1.18-21.fc40 java-1.8.0-openjdk-1.8.0.402.b06-1.fc40.1 java-11-openjdk-11.0.22.0.7-1.fc40.1 java-11-openjdk-portable-11.0.22.0.7-1.fc40.1 java-17-openjdk-17.0.10.0.7-2.fc40 java-17-openjdk-portable-17.0.10.0.7-1.fc40.1 java-21-openjdk-21.0.2.0.13-2.fc40 java-diff-utils-4.12-7.fc40 java-jd-decompiler-1.1.3-8.fc40 java-scrypt-1.4.0-24.fc40 java_cup-0.11b-29.fc40 javacc-7.0.13-5.fc40 javacc-maven-plugin-3.1.0-1.fc40 javaewah-1.1.13-10.fc40 javapackages-bootstrap-1.16.0-3.fc40 javaparser-3.25.8-3.fc40 javassist-3.30.2-4.fc40 jaxb-4.0.4-6.fc40 jaxb-api-4.0.1-5.fc40 jaxb-api2-2.3.3-10.fc40 jaxb-dtd-parser-1.5.1-5.fc40 jaxb-fi-2.1.1-5.fc40 jaxb-istack-commons-4.2.0-8.fc40 jaxb-stax-ex-2.1.0-8.fc40 jaxen-1.2.0-17.fc40 jblas-1.2.5-15.fc40 jboss-jaxrs-2.0-api-1.0.0-27.fc40 jboss-logging-3.5.3-5.fc40 jboss-logging-tools-2.2.1-17.fc40 jboss-parent-20-21.fc40 jchardet-1.1-34.fc40 jcip-annotations-1-43.20060626.fc40 jctools-4.0.2-3.fc40 jcuber-4.8-6.fc40 jdeparser-2.0.3-17.fc40 jdepend-2.10-10.fc40 jdom-1.1.3-37.fc40 jdom2-2.0.6.1-7.fc40 jericho-html-3.3-30.fc40 jetty-9.4.40-11.fc40 jflex-1.7.0-18.fc40 jfreechart-1.5.4-5.fc40 jgit-6.1.0-9.fc40 jglobus-2.1.0-35.fc40 jgoodies-common-1.8.1-21.fc40 jgoodies-forms-1.9.0-11.fc40 jgoodies-looks-2.7.0-11.fc40 jigawatts-0.2-0.12.202108276c78499.fc40 jline2-2.14.6-12.fc40 jmock-2.12.0-16.fc40 jna-5.14.0-4.fc40 jneuroml-core-1.6.1-14.fc40 jni-inchi-0.8-11.fc40 jol-0.17-5.fc40 jolokia-jvm-agent-1.6.2-17.fc40 jorbis-0.0.17-34.fc40 jsch-0.1.55-16.fc40 jsch-agent-proxy-0.0.8-25.fc40 json_simple-1.1.1-34.fc40 jsoup-1.17.2-2.fc40 jsr-305-3.0.2-15.fc40 jss-5.5.0-1.fc40.1 jssc-2.8.0-30.fc40 jtidy-1.0-0.45.20100930svn1125.fc40 junit-4.13.2-6.fc40 junit5-5.10.2-3.fc40 jzlib-1.1.3-30.fc40 kawa-3.1.1-19.fc40 laf-plugin-1.0-35.fc40 ldapjdk-5.5.0-2.fc40 libbase-1.1.3-42.fc40 libfonts-1.1.3-46.fc40 libformula-1.1.3-43.fc40 liblayout-0.2.10-36.fc40 libloader-1.1.3-44.fc40 libreoffice-24.2.1.1-3.fc40 librepository-1.1.3-43.fc40 libserializer-1.1.2-42.fc40 libvirt-java-0.4.9-29.fc40 log4j-2.20.0-7.fc40 lucene-9.9.2-2.fc40 mariadb-java-client-3.3.2-4.fc40 maven-antrun-plugin-3.1.0-9.fc40 maven-archiver-3.6.1-6.fc40 maven-artifact-transfer-0.13.1-14.fc40 maven-assembly-plugin-3.6.0-6.fc40 maven-bundle-plugin-5.1.9-5.fc40 maven-clean-plugin-3.3.2-4.fc40 maven-common-artifact-filters-3.3.2-6.fc40 maven-compiler-plugin-3.12.1-3.fc40 maven-dependency-analyzer-1.13.2-6.fc40 maven-dependency-plugin-3.6.1-3.fc40 maven-dependency-tree-3.2.1-6.fc40 maven-doxia-1.12.0-7.fc40 maven-doxia-sitetools-1.11.1-10.fc40 maven-enforcer-3.4.1-3.fc40 maven-file-management-3.1.0-6.fc40 maven-filtering-3.3.1-6.fc40 maven-jar-plugin-3.3.0-6.fc40 maven-native-1.0-0.18.alpha.11.fc40 maven-parent-41-5.fc40 maven-patch-plugin-1.2-27.fc40 maven-plugin-testing-3.3.0-33.fc40 maven-plugin-tools-3.9.0-6.fc40 maven-remote-resources-plugin-3.1.0-6.fc40 maven-resolver-1.9.18-3.fc40 maven-resources-plugin-3.3.1-6.fc40 maven-shade-plugin-3.5.1-4.fc40 maven-shared-incremental-1.1-33.fc40 maven-shared-io-3.0.0-25.fc40 maven-shared-utils-3.4.2-7.fc40 maven-source-plugin-3.3.0-6.fc40 maven-surefire-3.2.2-5.fc40 maven-verifier-2.0.0~M1-7.fc40 maven-verifier-plugin-1.1-6.fc40 maven-wagon-3.5.3-7.fc40 mecab-java-0.996-8.fc40 miglayout-5.0-4.fc40 mockito-5.8.0-5.fc40 modello-2.1.2-6.fc40 moditect-1.1.0-2.fc40 modulemaker-maven-plugin-1.11-1.fc40 mojo-executor-2.4.0-9.fc40 mojo-parent-78-3.fc40 msv-2022.7-4.fc40 mxparser-1.2.2-10.fc40 mysql-connector-java-8.0.30-6.fc40 naga-3.0-26.20200930git6f1e95d.fc40 nekohtml-1.9.22-26.fc40 nom-tam-fits-1.15.2-22.fc40 objectweb-asm-9.6-5.fc40 objenesis-3.3-9.fc40 octave-8.4.0-6.fc40 openjdk-asmtools7-7.0.b10-0.11.20210610.gitf40a2c0.fc40 openjfx-17.0.11.0-2.fc40 openjfx8-8.0.202-40.b07.fc40 openni-1.5.7.10-33.fc40 opentest4j-1.3.0-6.fc40 options-1.7-10.fc40 osgi-annotation-8.1.0-6.fc40 osgi-compendium-7.0.0-20.fc40 osgi-core-8.0.0-13.fc40 pcfi-2010.08.09-30.20111103gitbd245c9.fc40 pdftk-java-3.3.3-6.fc40 pentaho-libxml-1.1.3-42.fc40 pentaho-reporting-flow-engine-0.9.4-35.fc40 picocli-4.7.4-5.fc40 plantuml-1.2024.3-3.fc40 plexus-archiver-4.9.1-3.fc40 plexus-build-api-1.2.0-6.fc40 plexus-build-api0-0.0.7-44.fc40 plexus-cipher-2.0-11.fc40 plexus-classworlds-2.8.0-3.fc40 plexus-compiler-2.14.2-3.fc40 plexus-components-pom-14.2-5.fc40 plexus-containers-2.2.0-3.fc40 plexus-i18n-1.0-0.31.b10.4.fc40 plexus-interpolation-1.27-3.fc40 plexus-io-3.4.2-3.fc40 plexus-languages-1.2.0-6.fc40 plexus-pom-16-3.fc40 plexus-resources-1.3.0-4.fc40 plexus-sec-dispatcher-2.0-14.fc40 plexus-testing-1.3.0-2.fc40 plexus-utils-3.5.1-8.fc40 plexus-velocity-2.0-6.fc40 plexus-xml-3.0.0-2.fc40 postgresql-jdbc-42.7.1-4.fc40 proguard-6.2.2-5.fc40 prometheus-simpleclient-java-0.12.0-11.fc40 python-javaobj-0.4.3-12.fc40 qdox-2.1.0-3.fc40 reflections-0.9.12-17.fc40 regexp-1.5-48.fc40 relaxng-datatype-java-2011.1-4.fc40 replacer-1.6-30.fc40 rhino-1.7.14-10.fc40 rstudio-2023.12.1+402-2.fc40 rsyntaxtextarea-3.1.3-11.fc40 rundoc-0.11-25.fc40 sac-1.3-46.fc40 sat4j-2.3.5-30.fc40 sblim-cim-client-1.3.9.3-34.fc40 scala-2.13.12-7.fc40 scannotation-1.0.3-0.33.r12.fc40 sdljava-0.9.1-62.fc40 sequence-library-1.0.3-18.fc40 sisu-0.3.5-13.fc40 sisu-mojos-0.9.0~M2-4.fc40 slf4j-1.7.32-12.fc40 snakeyaml-1.33-3.fc40 snip-0.11-25.fc40 spec-version-maven-plugin-2.2-3.fc40 spice-parent-26-24.fc40 string-template-maven-plugin-1.1-13.fc40 subversion-1.14.3-5.fc40 swing-layout-1.0.4-30.fc40 t-digest-3.2-8.fc40 tagsoup-1.2.1-32.fc40 testng-7.8.0-5.fc40 tomcat-9.0.83-3.fc40 tomcat-native-1.2.36-4.fc40 tomcat-taglibs-parent-3-24.fc40 treelayout-1.0.3-23.fc40 trilead-ssh2-217.21-13.fc40 truth-1.0.1-11.fc40 univocity-parsers-2.9.1-13.fc40 vecmath1.2-1.14-36.fc40 velocity-2.3-5.fc40 voms-api-java-3.3.2-16.fc40 voms-clients-java-3.3.2-13.fc40 weld-parent-46-7.fc40 will-crash-0.13.5-6.fc40 ws-commons-util-1.0.2-24.fc40 wsdl4j-1.6.3-30.fc40 xalan-j2-2.7.3-3.fc40 xbean-4.24-3.fc40 xerces-j2-2.12.2-10.fc40 xml-commons-apis-1.4.01-46.fc40 xml-commons-resolver-1.2-44.fc40 xml-maven-plugin-1.1.0-3.fc40 xmlgraphics-commons-2.9-3.fc40 xmlpull-1.2.0-9.fc40 xmlstreambuffer-2.1.0-5.fc40 xmlunit-2.9.0-11.fc40 xmvn-4.2.0-8.fc40 xmvn-connector-ivy-4.0.0-3.fc40 xmvn-generator-1.2.2-3.fc40 xstream-1.4.20-6.fc40 xz-java-1.9-10.fc40

Read Time:12 Minute, 21 Second

FEDORA-2024-129d8ca6fc

Packages in this update:

ant-1.10.14-10.fc40
ant-antunit-1.4.1-11.fc40
antlr-2.7.7-77.fc40
antlr3-3.5.3-10.fc40
antlrworks-1.5.2-29.fc40
aopalliance-1.0-39.fc40
apache-commons-beanutils-1.9.4-19.fc40
apache-commons-cli-1.6.0-5.fc40
apache-commons-codec-1.16.0-7.fc40
apache-commons-collections-3.2.2-36.fc40
apache-commons-collections4-4.4-15.fc40
apache-commons-compress-1.25.0-5.fc40
apache-commons-digester-2.1-30.fc40
apache-commons-exec-1.3-31.fc40
apache-commons-io-2.13.0-8.fc40
apache-commons-jxpath-1.3-52.fc40
apache-commons-lang3-3.14.0-5.fc40
apache-commons-logging-1.3.0-5.fc40
apache-commons-math-3.6.1-18.fc40
apache-commons-modeler-2.0.1-40.fc40
apache-commons-net-3.10.0-5.fc40
apache-commons-parent-66-3.fc40
apache-commons-pool-1.6-37.fc40
apache-commons-text-1.10.0-6.fc40
apache-commons-vfs-2.9.0-5.fc40
apache-ivy-2.5.2-4.fc40
apache-parent-31-5.fc40
apache-resource-bundles-1.5-7.fc40
apiguardian-1.1.2-12.fc40
aqute-bnd-6.3.1-10.fc40
args4j-2.33-26.fc40
assertj-core-3.24.2-8.fc40
atinject-1.0.5-12.fc40
auto-1.6.1-10.fc40
BareBonesBrowserLaunch-3.1-33.fc40
batik-1.14-13.fc40
bcel-6.8.1-3.fc40
beansbinding-1.2.1-36.fc40
beust-jcommander-1.82-9.fc40
bolzplatz2006-1.0.3-58.fc40
bouncycastle-1.70-13.fc40
brazil-2.3-36.fc40
bsf-2.4.0-54.fc40
bsh-2.1.0-12.fc40
build-helper-maven-plugin-3.5.0-4.fc40
byte-buddy-1.14.2-8.fc40
byteman-4.0.16-13.fc40
cambozola-0.936-24.fc40
canl-java-2.8.3-5.fc40
CardManager-3-29.fc40
cdi-api-2.0.2-14.fc40
ceph-18.2.1-10.fc40
CFR-0.151-16.fc40
cglib-3.3.0-15.fc40
chromium-122.0.6261.94-2.fc40
classloader-leak-test-framework-2.7.0-8.fc40
clojure-1.11.1-8.fc40
clojure-core-specs-alpha-0.2.62-8.fc40
clojure-maven-plugin-1.9.2-6.fc40
clojure-spec-alpha-0.3.218-8.fc40
codehaus-parent-4-30.fc40
colossus-0.14.0-27.fc40
console-image-viewer-1.2-24.fc40
cortado-0.6.0-32.fc40
cryptlib-3.4.7-5.fc40
crypto-policies-20240201-2.git9f501f3.fc40
decentxml-1.4-35.fc40
diffoscope-257-2.fc40
directory-maven-plugin-0.3.1-15.fc40
dirgra-0.4-12.fc40
disruptor-3.4.4-11.fc40
ditaa-0.10-24.fc40
dogtag-pki-11.5.0-3.fc40
easymock-4.3-8.fc40
ecj-4.23-9.fc40
eclipse-swt-4.29-4.fc40
ed25519-java-0.3.0-21.fc40
enjarify-1.0.3-35.fc40
extra-enforcer-rules-1.7.0-6.fc40
fasterxml-oss-parent-58-2.fc40
felix-parent-8-5.fc40
felix-utils-1.11.8-9.fc40
fernflower-211.7442.40-11.fc40
filedrop-1.1-24.fc40
fishbowl-1.4.1-9.fc40
flute-1.3.0-37.OOo31.fc40
fop-2.9-6.fc40
forge-parent-38-28.fc40
freecol-1.1.0-4.fc40
freerouting-1.3.1-17.fc40
frysk-0.4-94.fc40
fusesource-pom-1.12-18.fc40
gnulib-0-50.20230709git.fc40
google-guice-5.1.0-11.fc40
guava-32.1.3-5.fc40
hamcrest-2.2-16.fc40
hawtjni-1.18-12.fc40
hibernate-jpa-2.0-api-1.0.1-40.fc40
httpcomponents-client-4.5.14-8.fc40
httpcomponents-core-4.4.16-8.fc40
httpcomponents-project-13-6.fc40
icecat-115.8.0-2.rh1.fc40
icedtea-web-1.8.8-5.fc40
icu4j-74.2-4.fc40
imagej-1.54h-4.fc40
IPAddress-5.2.1-17.fc40
jackson-annotations-2.16.1-3.fc40
jackson-bom-2.16.1-3.fc40
jackson-core-2.16.1-4.fc40
jackson-databind-2.16.1-4.fc40
jackson-jaxrs-providers-2.16.1-3.fc40
jackson-modules-base-2.16.1-3.fc40
jackson-parent-2.16-4.fc40
jacop-4.9.0-5.fc40
jakarta-activation1-1.2.2-13.fc40
jakarta-activation-2.1.2-6.fc40
jakarta-annotations-1.3.5-22.fc40
jakarta-el-4.0.0-14.fc40
jakarta-interceptors-2.0.0-12.fc40
jakarta-json-2.1.3-4.fc40
jakarta-mail-2.1.2-5.fc40
jakarta-oro-2.0.8-44.fc40
jakarta-saaj-3.0.0-6.fc40
jakarta-servlet-5.0.0-18.fc40
jakarta-xml-ws-4.0.0-6.fc40
jansi1-1.18-21.fc40
jansi-2.4.1-3.fc40
jansi-native-1.8-18.fc40
java-11-openjdk-11.0.22.0.7-1.fc40.1
java-11-openjdk-portable-11.0.22.0.7-1.fc40.1
java-17-openjdk-17.0.10.0.7-2.fc40
java-17-openjdk-portable-17.0.10.0.7-1.fc40.1
java-1.8.0-openjdk-1.8.0.402.b06-1.fc40.1
java-21-openjdk-21.0.2.0.13-2.fc40
javacc-7.0.13-5.fc40
javacc-maven-plugin-3.1.0-1.fc40
java_cup-0.11b-29.fc40
java-diff-utils-4.12-7.fc40
javaewah-1.1.13-10.fc40
java-jd-decompiler-1.1.3-8.fc40
javapackages-bootstrap-1.16.0-3.fc40
javaparser-3.25.8-3.fc40
java-scrypt-1.4.0-24.fc40
javassist-3.30.2-4.fc40
jaxb-4.0.4-6.fc40
jaxb-api2-2.3.3-10.fc40
jaxb-api-4.0.1-5.fc40
jaxb-dtd-parser-1.5.1-5.fc40
jaxb-fi-2.1.1-5.fc40
jaxb-istack-commons-4.2.0-8.fc40
jaxb-stax-ex-2.1.0-8.fc40
jaxen-1.2.0-17.fc40
jblas-1.2.5-15.fc40
jboss-jaxrs-2.0-api-1.0.0-27.fc40
jboss-logging-3.5.3-5.fc40
jboss-logging-tools-2.2.1-17.fc40
jboss-parent-20-21.fc40
jchardet-1.1-34.fc40
jcip-annotations-1-43.20060626.fc40
jctools-4.0.2-3.fc40
jcuber-4.8-6.fc40
jdeparser-2.0.3-17.fc40
jdepend-2.10-10.fc40
jdom-1.1.3-37.fc40
jdom2-2.0.6.1-7.fc40
jericho-html-3.3-30.fc40
jetty-9.4.40-11.fc40
jflex-1.7.0-18.fc40
jFormatString-0-0.49.20131227gitf159b88.fc40
jfreechart-1.5.4-5.fc40
jgit-6.1.0-9.fc40
jglobus-2.1.0-35.fc40
jgoodies-common-1.8.1-21.fc40
jgoodies-forms-1.9.0-11.fc40
jgoodies-looks-2.7.0-11.fc40
jigawatts-0.2-0.12.202108276c78499.fc40
jline2-2.14.6-12.fc40
jmock-2.12.0-16.fc40
jna-5.14.0-4.fc40
jneuroml-core-1.6.1-14.fc40
jni-inchi-0.8-11.fc40
jol-0.17-5.fc40
jolokia-jvm-agent-1.6.2-17.fc40
jorbis-0.0.17-34.fc40
jsch-0.1.55-16.fc40
jsch-agent-proxy-0.0.8-25.fc40
json_simple-1.1.1-34.fc40
jsoup-1.17.2-2.fc40
jsr-305-3.0.2-15.fc40
jss-5.5.0-1.fc40.1
jssc-2.8.0-30.fc40
jtidy-1.0-0.45.20100930svn1125.fc40
junit-4.13.2-6.fc40
junit5-5.10.2-3.fc40
jzlib-1.1.3-30.fc40
kawa-3.1.1-19.fc40
laf-plugin-1.0-35.fc40
ldapjdk-5.5.0-2.fc40
libbase-1.1.3-42.fc40
libfonts-1.1.3-46.fc40
libformula-1.1.3-43.fc40
liblayout-0.2.10-36.fc40
libloader-1.1.3-44.fc40
libreoffice-24.2.1.1-3.fc40
librepository-1.1.3-43.fc40
libserializer-1.1.2-42.fc40
libvirt-java-0.4.9-29.fc40
log4j-2.20.0-7.fc40
lucene-9.9.2-2.fc40
mariadb-java-client-3.3.2-4.fc40
Mars-4.5-26.fc40
maven-antrun-plugin-3.1.0-9.fc40
maven-archiver-3.6.1-6.fc40
maven-artifact-transfer-0.13.1-14.fc40
maven-assembly-plugin-3.6.0-6.fc40
maven-bundle-plugin-5.1.9-5.fc40
maven-clean-plugin-3.3.2-4.fc40
maven-common-artifact-filters-3.3.2-6.fc40
maven-compiler-plugin-3.12.1-3.fc40
maven-dependency-analyzer-1.13.2-6.fc40
maven-dependency-plugin-3.6.1-3.fc40
maven-dependency-tree-3.2.1-6.fc40
maven-doxia-1.12.0-7.fc40
maven-doxia-sitetools-1.11.1-10.fc40
maven-enforcer-3.4.1-3.fc40
maven-file-management-3.1.0-6.fc40
maven-filtering-3.3.1-6.fc40
maven-jar-plugin-3.3.0-6.fc40
maven-native-1.0-0.18.alpha.11.fc40
maven-parent-41-5.fc40
maven-patch-plugin-1.2-27.fc40
maven-plugin-testing-3.3.0-33.fc40
maven-plugin-tools-3.9.0-6.fc40
maven-remote-resources-plugin-3.1.0-6.fc40
maven-resolver-1.9.18-3.fc40
maven-resources-plugin-3.3.1-6.fc40
maven-shade-plugin-3.5.1-4.fc40
maven-shared-incremental-1.1-33.fc40
maven-shared-io-3.0.0-25.fc40
maven-shared-utils-3.4.2-7.fc40
maven-source-plugin-3.3.0-6.fc40
maven-surefire-3.2.2-5.fc40
maven-verifier-2.0.0~M1-7.fc40
maven-verifier-plugin-1.1-6.fc40
maven-wagon-3.5.3-7.fc40
mecab-java-0.996-8.fc40
miglayout-5.0-4.fc40
mockito-5.8.0-5.fc40
modello-2.1.2-6.fc40
moditect-1.1.0-2.fc40
modulemaker-maven-plugin-1.11-1.fc40
mojo-executor-2.4.0-9.fc40
mojo-parent-78-3.fc40
msv-2022.7-4.fc40
mxparser-1.2.2-10.fc40
mysql-connector-java-8.0.30-6.fc40
naga-3.0-26.20200930git6f1e95d.fc40
nekohtml-1.9.22-26.fc40
nom-tam-fits-1.15.2-22.fc40
objectweb-asm-9.6-5.fc40
objenesis-3.3-9.fc40
octave-8.4.0-6.fc40
openjdk-asmtools7-7.0.b10-0.11.20210610.gitf40a2c0.fc40
openjfx-17.0.11.0-2.fc40
openjfx8-8.0.202-40.b07.fc40
openni-1.5.7.10-33.fc40
OpenStego-0.7.4-12.fc40
opentest4j-1.3.0-6.fc40
options-1.7-10.fc40
osgi-annotation-8.1.0-6.fc40
osgi-compendium-7.0.0-20.fc40
osgi-core-8.0.0-13.fc40
pcfi-2010.08.09-30.20111103gitbd245c9.fc40
pdftk-java-3.3.3-6.fc40
pentaho-libxml-1.1.3-42.fc40
pentaho-reporting-flow-engine-0.9.4-35.fc40
picocli-4.7.4-5.fc40
plantuml-1.2024.3-3.fc40
plexus-archiver-4.9.1-3.fc40
plexus-build-api0-0.0.7-44.fc40
plexus-build-api-1.2.0-6.fc40
plexus-cipher-2.0-11.fc40
plexus-classworlds-2.8.0-3.fc40
plexus-compiler-2.14.2-3.fc40
plexus-components-pom-14.2-5.fc40
plexus-containers-2.2.0-3.fc40
plexus-i18n-1.0-0.31.b10.4.fc40
plexus-interpolation-1.27-3.fc40
plexus-io-3.4.2-3.fc40
plexus-languages-1.2.0-6.fc40
plexus-pom-16-3.fc40
plexus-resources-1.3.0-4.fc40
plexus-sec-dispatcher-2.0-14.fc40
plexus-testing-1.3.0-2.fc40
plexus-utils-3.5.1-8.fc40
plexus-velocity-2.0-6.fc40
plexus-xml-3.0.0-2.fc40
postgresql-jdbc-42.7.1-4.fc40
proguard-6.2.2-5.fc40
prometheus-simpleclient-java-0.12.0-11.fc40
python-javaobj-0.4.3-12.fc40
qdox-2.1.0-3.fc40
reflections-0.9.12-17.fc40
regexp-1.5-48.fc40
relaxng-datatype-java-2011.1-4.fc40
replacer-1.6-30.fc40
rhino-1.7.14-10.fc40
R-rJava-1.0.6-9.fc40
rstudio-2023.12.1+402-2.fc40
rsyntaxtextarea-3.1.3-11.fc40
rundoc-0.11-25.fc40
sac-1.3-46.fc40
sat4j-2.3.5-30.fc40
sblim-cim-client-1.3.9.3-34.fc40
scala-2.13.12-7.fc40
scannotation-1.0.3-0.33.r12.fc40
sdljava-0.9.1-62.fc40
sequence-library-1.0.3-18.fc40
sisu-0.3.5-13.fc40
sisu-mojos-0.9.0~M2-4.fc40
slf4j-1.7.32-12.fc40
snakeyaml-1.33-3.fc40
snip-0.11-25.fc40
spec-version-maven-plugin-2.2-3.fc40
spice-parent-26-24.fc40
string-template-maven-plugin-1.1-13.fc40
subversion-1.14.3-5.fc40
swing-layout-1.0.4-30.fc40
tagsoup-1.2.1-32.fc40
t-digest-3.2-8.fc40
testng-7.8.0-5.fc40
tomcat-9.0.83-3.fc40
tomcat-native-1.2.36-4.fc40
tomcat-taglibs-parent-3-24.fc40
treelayout-1.0.3-23.fc40
trilead-ssh2-217.21-13.fc40
truth-1.0.1-11.fc40
univocity-parsers-2.9.1-13.fc40
vecmath1.2-1.14-36.fc40
velocity-2.3-5.fc40
voms-api-java-3.3.2-16.fc40
voms-clients-java-3.3.2-13.fc40
weld-parent-46-7.fc40
will-crash-0.13.5-6.fc40
ws-commons-util-1.0.2-24.fc40
wsdl4j-1.6.3-30.fc40
xalan-j2-2.7.3-3.fc40
xbean-4.24-3.fc40
xerces-j2-2.12.2-10.fc40
xml-commons-apis-1.4.01-46.fc40
xml-commons-resolver-1.2-44.fc40
xmlgraphics-commons-2.9-3.fc40
xml-maven-plugin-1.1.0-3.fc40
xmlpull-1.2.0-9.fc40
xmlstreambuffer-2.1.0-5.fc40
xmlunit-2.9.0-11.fc40
xmvn-4.2.0-8.fc40
xmvn-connector-ivy-4.0.0-3.fc40
xmvn-generator-1.2.2-3.fc40
xstream-1.4.20-6.fc40
xz-java-1.9-10.fc40

Update description:

Change for system JDK from 17 to 21.

upstream security release 122.0.6261.94

High CVE-2024-1938: Type Confusion in V8
High CVE-2024-1939: Type Confusion in V8

fixed bug with requires

Automatic update for lucene-9.9.2-1.fc40.

Read More

USN-6674-2: Django vulnerability

Read Time:17 Second

USN-6674-1 fixed a vulnerability in Django. This update provides
the corresponding update for Ubuntu 18.04 LTS.

Original advisory details:

Seokchan Yoon discovered that the Django Truncator function incorrectly
handled very long HTML input. A remote attacker could possibly use this
issue to cause Django to consume resources, leading to a denial of service.

Read More

USN-6673-1: python-cryptography vulnerabilities

Read Time:26 Second

Hubert Kario discovered that python-cryptography incorrectly handled
errors returned by the OpenSSL API when processing incorrect padding in
RSA PKCS#1 v1.5. A remote attacker could possibly use this issue to expose
confidential or sensitive information. (CVE-2023-50782)

It was discovered that python-cryptography incorrectly handled memory
operations when processing mismatched PKCS#12 keys. A remote attacker could
possibly use this issue to cause python-cryptography to crash, leading to a
denial of service. This issue only affected Ubuntu 23.10. (CVE-2024-26130)

Read More

USN-6672-1: Node.js vulnerabilities

Read Time:51 Second

Morgan Jones discovered that Node.js incorrectly handled certain inputs that
leads to false positive errors during some cryptographic operations. If a user
or an automated system were tricked into opening a specially crafted input
file, a remote attacker could possibly use this issue to cause a denial of
service. This issue only affected Ubuntu 23.10. (CVE-2023-23919)

It was discovered that Node.js incorrectly handled certain inputs leaded to a
untrusted search path vulnerability. If a user or an automated system were
tricked into opening a specially crafted input file, a remote attacker could
possibly use this issue to perform a privilege escalation. (CVE-2023-23920)

Matt Caswell discovered that Node.js incorrectly handled certain inputs with
specially crafted ASN.1 object identifiers or data containing them. If a user
or an automated system were tricked into opening a specially crafted input
file, a remote attacker could possibly use this issue to cause a denial of
service. This issue only affected Ubuntu 22.04 LTS. (CVE-2023-2650)

Read More