Read Time:7 Second
FEDORA-2024-0912cd3ad9
Packages in this update:
incus-6.8-1.fc41
Update description:
Update to 6.8 to get various features and fixes
Category Archives: Advisories
USN-7177-1: YARA vulnerability
Read Time:8 Second
It was discovered that YARA did not properly sanitize its
configuration settings. An attacker could potentially exploit this issue to
cause a denial of service.
USN-7169-2: Linux kernel (GCP) vulnerabilities
Read Time:14 Second
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
– Ext4 file system;
– Network traffic control;
– VMware vSockets driver;
(CVE-2024-49967, CVE-2024-53057, CVE-2024-50264)
age-1.2.1-1.fc41
Read Time:11 Second
FEDORA-2024-4f08c1a90a
Packages in this update:
age-1.2.1-1.fc41
Update description:
Update to 1.2.1 to fix https://github.com/FiloSottile/age/security/advisories/GHSA-32gq-x56h-299c security issue.
USN-7172-1: libvpx vulnerability
Read Time:24 Second
It was discovered that libvpx did not properly handle certain malformed
media files. If an application using libvpx opened a specially crafted
file, a remote attacker could cause a denial of service, or possibly
execute arbitrary code. Ubuntu 22.04 LTS, Ubuntu 20.04 LTS, Ubuntu 18.04
LTS, and Ubuntu 16.04 LTS were previously addressed in USN-6403-1,
USN-6403-2, and USN-6403-3. This update addresses the issue in Ubuntu 14.04
LTS.
USN-7176-1: GStreamer Good Plugins vulnerabilities
Read Time:11 Second
Antonio Morales discovered that GStreamer Good Plugins incorrectly handled
certain malformed media files. An attacker could use these issues to cause
GStreamer Good Plugins to crash, resulting in a denial of service, or
possibly execute arbitrary code.
USN-7175-1: GStreamer Base Plugins vulnerabilities
Read Time:11 Second
Antonio Morales discovered that GStreamer Base Plugins incorrectly handled
certain malformed media files. An attacker could use these issues to cause
GStreamer Base Plugins to crash, resulting in a denial of service, or
possibly execute arbitrary code.
USN-7174-1: GStreamer vulnerability
Read Time:10 Second
Antonio Morales discovered that GStreamer incorrectly handled allocating
memory for certain buffers. An attacker could use this issue to cause
GStreamer to crash, resulting in a denial of service, or possibly execute
arbitrary code.
USN-7171-1: PHPUnit vulnerability
Read Time:9 Second
It was discovered that PHPUnit incorrectly handled web requests if exposed
to the internet. An attacker could possibly use this issue to achive remote
code execution or obtain sensitive information.
USN-7168-1: EditorConfig vulnerabilities
Read Time:10 Second
It was discovered that EditorConfig improperly managed memory when handling
certain inputs, leading to overflows. An attacker could possibly use these
issues to cause a denial of service, or execute arbitrary code.