DSA-5763-1 pymatgen – security update
William Khem-Marquez discovered that Pymatgen, a Python library for materials analysis, could be tricked into running arbitrary code if a malformed CIF file is processed....
DSA-5762-1 webkit2gtk – security update
The following vulnerabilities have been discovered in the WebKitGTK web engine: CVE-2024-4558 An anonymous researcher discovered that processing maliciously crafted web content may lead to...
microcode_ctl-2.1-61.2.fc40
FEDORA-2024-5c5c384fa7 Packages in this update: microcode_ctl-2.1-61.2.fc40 Update description: Update to upstream 2.1-44. 20240813 Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision 0x5003605 up to 0x5003707;...
microcode_ctl-2.1-64.fc41
FEDORA-2024-67a38b081a Packages in this update: microcode_ctl-2.1-64.fc41 Update description: Update to upstream 2.1-44. 20240813 Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision 0x5003605 up to 0x5003707;...
microcode_ctl-2.1-58.2.fc39
FEDORA-2024-dca1b54441 Packages in this update: microcode_ctl-2.1-58.2.fc39 Update description: Update to upstream 2.1-44. 20240813 Update of 06-55-07/0xbf (CLX-SP/W/X B1/L1) microcode from revision 0x5003605 up to 0x5003707;...
apr-1.7.5-1.fc40
FEDORA-2024-b40491b84b Packages in this update: apr-1.7.5-1.fc40 Update description: This update to the apr package fixes a security issue in the handling of shared memory permissions....
apr-1.7.5-1.fc39
FEDORA-2024-318343049c Packages in this update: apr-1.7.5-1.fc39 Update description: This update to the apr package fixes a security issue in the handling of shared memory permissions....
apr-1.7.5-1.fc41
FEDORA-2024-f831fe4030 Packages in this update: apr-1.7.5-1.fc41 Update description: Update APR to version 1.7.5. Read More
ZDI-24-1187: Progress Software WhatsUp Gold getMonitorJoin SQL Injection Privilege Escalation Vulnerability
This vulnerability allows remote attackers to escalate privileges on affected installations of Progress Software WhatsUp Gold. Although authentication is required to exploit this vulnerability, the...
ZDI-24-1186: Progress Software WhatsUp Gold GetStatisticalMonitorList SQL Injection Authentication Bypass Vulnerability
This vulnerability allows remote attackers to bypass authentication on affected installations of Progress Software WhatsUp Gold. Authentication is not required to exploit this vulnerability. The...