USN-6656-1: PostgreSQL vulnerability
It was discovered that PostgreSQL incorrectly handled dropping privileges when handling REFRESH MATERIALIZED VIEW CONCURRENTLY commands. If a user or automatic system were tricked into...
edk2-20240214-2.fc39
FEDORA-2024-a9dead34c5 Packages in this update: edk2-20240214-2.fc39 Update description: update to edk2-stable202402 Read More
USN-6655-1: GNU binutils vulnerabilities
It was discovered that GNU binutils was not properly handling the logic behind certain memory management related operations, which could lead to an invalid memory...
chromium-122.0.6261.69-1.el8
FEDORA-EPEL-2024-eadadc9b14 Packages in this update: chromium-122.0.6261.69-1.el8 Update description: Update to 122.0.6261.69 update to 121.0.6167.184 Read More
chromium-122.0.6261.69-1.el9
FEDORA-EPEL-2024-c6bf47a782 Packages in this update: chromium-122.0.6261.69-1.el9 Update description: Update to 122.0.6261.69 Read More
chromium-122.0.6261.69-1.el7
FEDORA-EPEL-2024-5ef433f7ed Packages in this update: chromium-122.0.6261.69-1.el7 Update description: Update to 122.0.6261.69 Read More
ZDI-24-208: Microsoft Azure MCR VSTS CLI vstscli Uncontrolled Search Path Element Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of MCR VSTS CLI for Microsoft Azure. Authentication is not required to exploit...
ZDI-24-207: Apple macOS VideoToolbox Out-Of-Bounds Write Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. User interaction is required to exploit this vulnerability in that...
ZDI-24-206: Apple macOS ImageIO MPO Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. Interaction with the ImageIO library is required to exploit this...
USN-6654-1: Roundcube Webmail vulnerability
It was discovered that Roundcube Webmail incorrectly sanitized characters in the linkrefs text messages. An attacker could possibly use this issue to execute a cross-site...