FEDORA-EPEL-2023-b06600ebc7
Packages in this update:
bzip3-1.3.0-1.el8
Update description:
This release fixes a memory heap corruption.
bzip3-1.3.0-1.el8
This release fixes a memory heap corruption.
bzip3-1.3.0-1.fc36
This release fixes a memory heap corruption.
This vulnerability allows local attackers to escalate privileges on affected installations of G Data Total Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
It was discovered that Ghostscript, the GPL PostScript/PDF interpreter,
is prone to a buffer overflow vulnerability in the (T)BCP encoding
filters, which could result in the execution of arbitrary code if
malformed document files are processed (despite the -dSAFER sandbox
being enabled).
It was reported that cairosvg, a SVG converter based on Cairo, can send
requests to external hosts when processing specially crafted SVG files
with external file resource loading. An attacker can take advantage of
this flaw to perform a server-side request forgery or denial of service.
Fetching of external files is disabled by default with this update.
Several security vulnerabilities have been discovered in the Tomcat
servlet and JSP engine.
zchunk-1.3.1-1.fc38
Fix several low severity security bugs.
zchunk-1.3.1-1.fc37
Fix several low severity security bugs.
zchunk-1.3.1-1.el8
Fix several low severity security bugs.
zchunk-1.3.1-1.el9
Fix several low severity security bugs.