FEDORA-2024-493ad77ac4
Packages in this update:
ceph-18.2.1-11.fc40
Update description:
Add support for riscv64
ceph-18.2.1-11.fc40
Add support for riscv64
kernel-6.7.9-200.fc39
The 6.7.9 stable kernel update contains a number of important fixes across the tree.
kernel-6.7.9-100.fc38
The 6.7.9 stable kernel update contains a number of important fixes across the tree.
golang-1.20.12-1.el7
Security fix for CVE-2023-39326, CVE-2023-45287, and CVE-2023-45285
chromium-122.0.6261.111-1.fc39
upstream security release 122.0.6261.111
– High CVE-2024-2173: Out of bounds memory access in V8
– High CVE-2024-2174: Inappropriate implementation in V8
– High CVE-2024-2176: Use after free in FedCM
chromium-122.0.6261.111-1.fc38
upstream security release 122.0.6261.111
– High CVE-2024-2173: Out of bounds memory access in V8
– High CVE-2024-2174: Inappropriate implementation in V8
– High CVE-2024-2176: Use after free in FedCM
It was discovered that FRR incorrectly handled certain malformed OSPF LSA
packets. A remote attacker could possibly use this issue to cause FRR to
crash, resulting in a denial of service.
Vojtěch Vobr discovered that c-ares incorrectly handled user input from
local configuration files. An attacker could possibly use this issue to
cause a denial of service via application crash.
rust-routinator-0.13.2-1.fc38
from changelog:
Fix the RTR listener so that Routinator won’t exit if an incoming RTR
connection is closed again too quickly. (#937, reported by Yohei
Nishimura, Atsushi Enomoto, Ruka Miyachi; Internet Multifeed Co., Japan.
Assigned CVE-2024-1622.)
rust-routinator-0.13.2-1.fc39
from changelog:
Fix the RTR listener so that Routinator won’t exit if an incoming RTR
connection is closed again too quickly. (#937, reported by Yohei
Nishimura, Atsushi Enomoto, Ruka Miyachi; Internet Multifeed Co., Japan.
Assigned CVE-2024-1622.)