It was discovered that the set() method in object-path could be corrupted
as a result of prototype pollution by sending a message to the parent
process. An attacker could use this issue to cause object-path to crash.
(CVE-2020-15256, CVE-2021-23434, CVE-2021-3805)
More Stories
kernel-6.8.10-100.fc38
FEDORA-2024-88abd103c8 Packages in this update: kernel-6.8.10-100.fc38 Update description: The 6.8.10 stable kernel update contains a number of important fixes across...
kernel-6.8.10-200.fc39
FEDORA-2024-49fcf86f58 Packages in this update: kernel-6.8.10-200.fc39 Update description: The 6.8.10 stable kernel update contains a number of important fixes across...
kernel-6.8.10-300.fc40
FEDORA-2024-92664ae6fe Packages in this update: kernel-6.8.10-300.fc40 Update description: The 6.8.10 stable kernel update contains a number of important fixes across...
dotnet8.0-8.0.105-1.fc40
FEDORA-2024-56fb9c0762 Packages in this update: dotnet8.0-8.0.105-1.fc40 Update description: This is the May 2024 release for .NET 8. This is a...
webkitgtk-2.44.2-1.fc40
FEDORA-2024-1f37da80ec Packages in this update: webkitgtk-2.44.2-1.fc40 Update description: Make gamepads visible on axis movements, and not only on button presses....
webkitgtk-2.44.2-1.fc39
FEDORA-2024-3b912f1f3e Packages in this update: webkitgtk-2.44.2-1.fc39 Update description: Make gamepads visible on axis movements, and not only on button presses....