[SECURITY] Fedora 41 Update: dotnet9.0-9.0.102-1.fc41

.NET is a fast, lightweight and modular platform for creating cross platform applications that work on Linux, macOS and Windows. It particularly focuses on creating console applications, web applications and micro-services. .NET contains a runtime conforming to .NET Standards a set of framework...

[SECURITY] Fedora 41 Update: dotnet8.0-8.0.112-1.fc41

.NET is a fast, lightweight and modular platform for creating cross platform applications that work on Linux, macOS and Windows. It particularly focuses on creating console applications, web applications and micro-services. .NET contains a runtime conforming to .NET Standards a set of framework...

CVE-2024-12705

Clients using DNS-over-HTTPS DoH can exhaust a DNS resolver's CPU and/or memory by flooding it with crafted valid or invalid HTTP/2 traffic. This issue affects BIND 9 versions 9.18.0 through 9.18.32, 9.20.0 through 9.20.4, 9.21.0 through 9.21.3, and 9.18.11-S1 through 9.18.32-S1...

CVE-2024-11187

It is possible to construct a zone such that some queries to it will generate responses containing numerous records in the Additional section. An attacker sending many such queries can cause either the authoritative server itself or an independent resolver to use disproportionate resources...

PT-2025-5371 · Rockwell Automation · Factorytalk® View Site Edition

Name of the Vulnerable Software and Affected Versions: Product and version affected versions not specified Description: A Local Code Injection issue exists due to incorrect default permissions, allowing for the execution of DLLs with higher-level permissions. Recommendations: At the moment, there...

[SECURITY] Fedora 40 Update: glibc-2.39-37.fc40

The glibc package contains standard libraries which are used by multiple programs on the system. In order to save disk space and memory, as well as to make upgrading easier, common system code is kept in one place and shared between programs. This particular package contains the most important se...

[SECURITY] Fedora 41 Update: glibc-2.40-21.fc41

The glibc package contains standard libraries which are used by multiple programs on the system. In order to save disk space and memory, as well as to make upgrading easier, common system code is kept in one place and shared between programs. This particular package contains the most important se...

OTRS 安全漏洞

OTRS is a service management solution from OTRS Germany. A security vulnerability exists in OTRS, which stems from the fact that certain bugs in the upstream libraries can insert sensitive information in the OTRS logging mechanism and send emails to the system administrator...

[SECURITY] [DLA 4024-1] poco security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-4024-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk January 20, 2025 https://wiki.debian.org/LTS -...

[SECURITY] Fedora 41 Update: stb-0^20241002git31707d1-5.fc41

Single-file public domain libraries for C/C++...

PT-2025-3121 · Termius · Termius

Name of the Vulnerable Software and Affected Versions: termius versions prior to 9.9.0 Description: An issue in termius allows a local attacker to execute arbitrary code via a crafted script to the DYLD INSERT LIBRARIES component. This enables the attacker to manipulate the script and gain...

USN-7197-1: Go Networking vulnerability

Guido Vranken discovered that Go Networking handled input to the Parse functions inefficiently. An attacker could possibly use this issue to cause denial of service. This update addresses the issue in the golang-golang-x-net and golang-golang-x-net-dev packages, as well as the library vendored...

USN-7197-1 golang-golang-x-net vulnerability

Guido Vranken discovered that Go Networking handled input to the Parse functions inefficiently. An attacker could possibly use this issue to cause denial of service. This update addresses the issue in the golang-golang-x-net and golang-golang-x-net-dev packages, as well as the library vendored...

ALSA-2025:0210 Important: dpdk security update

The dpdk packages provide the Data Plane Development Kit, which is a set of libraries and drivers for fast packet processing in the user space. Security Fixes: dpdk: Denial Of Service from malicious guest on hypervisors using DPDK Vhost library CVE-2024-11614 For more details about the security...

CVE-2024-12033

The Jupiter X Core plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the synclibraries function in all versions up to, and including, 4.8.5. This makes it possible for authenticated attackers, with Subscriber-level access and above, to sync libraries...

CVE-2024-12033

The Jupiter X Core plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the synclibraries function in all versions up to, and including, 4.8.5. This makes it possible for authenticated attackers, with Subscriber-level access and above, to sync libraries...

PT-2025-1731 · WordPress · Jupiter X Core

Name of the Vulnerable Software and Affected Versions: Jupiter X Core plugin for WordPress versions up to, and including, 4.8.5 Description: The issue is related to a missing capability check on the sync libraries function, allowing authenticated attackers with Subscriber-level access and above t...

PT-2025-42970

Name of the Vulnerable Software and Affected Versions Oracle Java SE versions 21.0.8 and 25 Oracle GraalVM for JDK version 21.0.8 Oracle GraalVM Enterprise Edition version 21.3.15 Description A difficult to exploit issue exists in Oracle Java SE, Oracle GraalVM for JDK, and Oracle GraalVM...

[SECURITY] Fedora 40 Update: dr_libs-0^20241216git660795b-1.fc40

Single-file audio decoding libraries for C/C++...

[SECURITY] Fedora 41 Update: dr_libs-0^20241216git660795b-1.fc41

Single-file audio decoding libraries for C/C++...