Jan Wasilewski and Gorka Eguileor discovered that Cinder incorrectly
handled deleted volume attachments. An authenticated user or attacker could
possibly use this issue to gain access to sensitive information.
This update may require configuration changes to be completely effective,
please see the upstream advisory for more information:
https://security.openstack.org/ossa/OSSA-2023-003.html
rust-sequoia-octopus-librnp-1.5.0-1.fc37
Update to version 1.5.0.
This release improves compatibility with the version of librnp that’s bundled in recent versions of thunderbird.
thunderbird-102.11.0-1.fc37
Update to 102.11.0 ;
https://www.mozilla.org/en-US/security/advisories/mfsa2023-18/ ;
https://www.thunderbird.net/en-US/thunderbird/102.11.0/releasenotes/
thunderbird-102.11.0-1.fc36
Update to 102.11.0 ;
https://www.mozilla.org/en-US/security/advisories/mfsa2023-18/ ;
https://www.thunderbird.net/en-US/thunderbird/102.11.0/releasenotes/
python-waitress-1.4.3-1.el8
This update takes the package from version 1.2.1 to version 1.4.3. This is necessary to fix multiple CVEs.
CVE-2019-16785 (high)
CVE-2019-16786 (high)
CVE-2019-16789 (high)
CVE-2019-16792 (high)
CVE-2020-5236 (medium)
There are no breaking changes mentioned in the upstream changelog.
Two security issues were found in PostgreSQL, which may result in
privilege escalation or incorrect policy enforcement.
kitty-0.26.5-5.el9
fix clone-in-kitty + security fix #2196803
kitty-0.26.5-7.el8
fix clone-in-kitty + security fix #2196803
kitty-0.26.5-5.fc36
fix clone-in-kitty + security fix rhbz#2196803
kitty-0.26.5-5.fc37
fix clone-in-kitty + security fix rhbz#2196803
