CLSA-2025-1744312522 Update of nss

Fix ecc DER wrapping...

CLSA-2025-1744291208 Update of nss

Fix ecc DER wrapping...

CLSA-2025-1744219291 Update of alt-php

Bump ABI 4.15.0-246...

CLSA-2025-1743164157 Fix CVE(s): CVE-2023-44487

SECURITY UPDATE: Denial of service - debian/patches/CVE-2023-44487.patch: Improvements to HTTP/2 overhead protection - CVE-2023-44487...

CLSA-2025-1742320596 Update of alt-php

Bump ABI 4.4.0-272...

CLSA-2025-1742320375 Update of alt-php

Bump ABI 4.15.0-245...

[SECURITY] [DSA 5879-1] opensaml security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5879-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 16, 2025 https://www.debian.org/security/faq -...

[SECURITY] Fedora 40 Update: libtasn1-4.20.0-1.fc40

A library that provides Abstract Syntax Notation One ASN.1, as specified by the X.680 ITU-T recommendation parsing and structures management, and Distinguished Encoding Rules DER, as per X.690 encoding and decoding functi ons...

CLSA-2025-1740242864 php: Fix of CVE-2024-8929

Fixup for CVE-2024-8929: support COMFIELDLIST...

CLSA-2025-1738265246 rsync: Fix of CVE-2024-12747

CVE-2024-12747: fix symlink race conditions...

[SECURITY] Fedora 41 Update: python-sql-1.5.2-3.fc41

python-sql is a library to write SQL queries in a pythonic way...

CLSA-2024-1733422548 Update of expat

Version was updated...

CLSA-2024-1732701424 Fix CVE(s): CVE-2024-23672

SECURITY UPDATE: DoS via incomplete cleanup vulnerability - debian/patches/CVE-2024-23672.patch: refactor WebSocket close for suspend/resume to ensure connection closure completes - CVE-2024-23672...

AZL-52233 CVE-2024-51744 affecting package packer for versions less than 1.9.5-12

golang-jwt is a Go implementation of JSON Web Tokens. Unclear documentation of the error behavior in ParseWithClaims can lead to situation where users are potentially not checking errors in the way they should be. Especially, if a token is both expired and invalid, the errors returned by...

[SECURITY] Fedora 40 Update: python-openapi-core-0.19.4-3.fc40

Openapi-core is a Python library that adds client-side and server-side support for the OpenAPI v3.0 and OpenAPI v3.1 specification...

CLSA-2024-1729198655 php: Fix of 2 CVEs

CVE-2024-9026: Fix log tampering in PHP-FPM - CVE-2024-8927: Fix bypass of cgi.forceredirect configuration...

Security update for json-lib

This update for json-lib fixes the following issues: CVE-2024-47855: Fixed mishandled unbalanced comment string bsc1231295 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command...

CLSA-2024-1726583248 bind: Fix of CVE-2024-1975

CVE-2024-1975: Remove support for SIG0 message verification...

UBUNTU-CVE-2024-41811

ipl/web is a set of common web components for php projects. Some of the recent development by Icinga is, under certain circumstances, susceptible to cross site request forgery. CSRF. All affected products, in any version, will be unaffected by this once icinga-php-library is upgraded. Version...

CLSA-2024-1721124363 rpm: Fix of CVE-2021-35937

CVE-2021-35937: fix a possible privilege escalation through a symlink check race condition...