chromium-112.0.5615.121-2.el9
FEDORA-EPEL-2023-fc1538262d Packages in this update: chromium-112.0.5615.121-2.el9 Update description: update to 112.0.5615.121. Fixes the following security issues: CVE-2023-2004 CVE-2023-2133 CVE-2023-2134 CVE-2023-2135 CVE-2023-2136 CVE-2023-2137 CVE-2023-2033 Read More
Drupal core – Moderately critical – Access bypass – SA-CORE-2023-005
Project: Drupal core Date: 2023-April-19 Security risk: Moderately critical 13∕25 AC:Basic/A:None/CI:Some/II:None/E:Theoretical/TD:All Vulnerability: Access bypass Description: The file download facility doesn't sufficiently sanitize file paths in...
USN-6032-1: Linux kernel (OEM) vulnerabilities
Ziming Zhang discovered that the VMware Virtual GPU DRM driver in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this...
USN-6031-1: Linux kernel (OEM) vulnerabilities
It was discovered that the Traffic-Control Index (TCINDEX) implementation in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause...
python-django-4.0.10-1.fc37
FEDORA-2023-8fed428c5e Packages in this update: python-django-4.0.10-1.fc37 Update description: Security fix for: CVE-2023-24580 CVE-2023-23969 CVE-2022-41323 CVE-2022-36359 CVE-2022-34265 CVE-2022-28346 CVE-2022-28347 https://docs.djangoproject.com/en/4.2/releases/4.0.3/ https://docs.djangoproject.com/en/4.2/releases/4.0.4/ https://docs.djangoproject.com/en/4.2/releases/4.0.5/ https://docs.djangoproject.com/en/4.2/releases/4.0.6/ https://docs.djangoproject.com/en/4.2/releases/4.0.7/ https://docs.djangoproject.com/en/4.2/releases/4.0.8/ https://docs.djangoproject.com/en/4.2/releases/4.0.9/...
USN-6030-1: Linux kernel (Qualcomm Snapdragon) vulnerabilities
It was discovered that the Traffic-Control Index (TCINDEX) implementation in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause...
USN-6029-1: Linux kernel vulnerabilities
It was discovered that the Traffic-Control Index (TCINDEX) implementation in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause...
USN-6028-1: libxml2 vulnerabilities
It was discovered that lixml2 incorrectly handled certain XML files. An attacker could possibly use this issue to cause a crash or execute arbitrary code....
USN-6027-1: Linux kernel vulnerabilities
It was discovered that the Traffic-Control Index (TCINDEX) implementation in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause...
python-django-4.0.10-1.fc38
FEDORA-2023-a53ab7c969 Packages in this update: python-django-4.0.10-1.fc38 Update description: Security fix for: CVE-2023-24580 CVE-2023-23969 CVE-2022-41323 CVE-2022-36359 CVE-2022-34265 CVE-2022-28346 CVE-2022-28347 https://docs.djangoproject.com/en/4.2/releases/4.0.3/ https://docs.djangoproject.com/en/4.2/releases/4.0.4/ https://docs.djangoproject.com/en/4.2/releases/4.0.5/ https://docs.djangoproject.com/en/4.2/releases/4.0.6/ https://docs.djangoproject.com/en/4.2/releases/4.0.7/ https://docs.djangoproject.com/en/4.2/releases/4.0.8/ https://docs.djangoproject.com/en/4.2/releases/4.0.9/...