FEDORA-2024-03a1955920
Packages in this update:
webkitgtk-2.46.5-1.fc40
Update description:
Update to 2.46.5:
Fix several crashes and rendering issues.
CVE-2024-54479, CVE-2024-54502, CVE-2024-54508, CVE-2024-54505
webkitgtk-2.46.5-1.fc40
Update to 2.46.5:
Fix several crashes and rendering issues.
CVE-2024-54479, CVE-2024-54502, CVE-2024-54508, CVE-2024-54505
webkitgtk-2.46.5-1.fc41
Update to 2.46.5:
Fix several crashes and rendering issues.
CVE-2024-54479, CVE-2024-54502, CVE-2024-54508, CVE-2024-54505
incus-6.8-1.fc41
Update to 6.8 to get various features and fixes
It was discovered that YARA did not properly sanitize its
configuration settings. An attacker could potentially exploit this issue to
cause a denial of service.
Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:
– Ext4 file system;
– Network traffic control;
– VMware vSockets driver;
(CVE-2024-49967, CVE-2024-53057, CVE-2024-50264)
age-1.2.1-1.fc41
Update to 1.2.1 to fix https://github.com/FiloSottile/age/security/advisories/GHSA-32gq-x56h-299c security issue.
It was discovered that libvpx did not properly handle certain malformed
media files. If an application using libvpx opened a specially crafted
file, a remote attacker could cause a denial of service, or possibly
execute arbitrary code. Ubuntu 22.04 LTS, Ubuntu 20.04 LTS, Ubuntu 18.04
LTS, and Ubuntu 16.04 LTS were previously addressed in USN-6403-1,
USN-6403-2, and USN-6403-3. This update addresses the issue in Ubuntu 14.04
LTS.
Antonio Morales discovered that GStreamer Good Plugins incorrectly handled
certain malformed media files. An attacker could use these issues to cause
GStreamer Good Plugins to crash, resulting in a denial of service, or
possibly execute arbitrary code.
Antonio Morales discovered that GStreamer Base Plugins incorrectly handled
certain malformed media files. An attacker could use these issues to cause
GStreamer Base Plugins to crash, resulting in a denial of service, or
possibly execute arbitrary code.
Antonio Morales discovered that GStreamer incorrectly handled allocating
memory for certain buffers. An attacker could use this issue to cause
GStreamer to crash, resulting in a denial of service, or possibly execute
arbitrary code.