[SECURITY] Fedora 40 Update: vaultwarden-1.33.2-1.fc40

Unofficial Bitwarden compatible server...

CVE-2024-9681 affecting package rust for versions less than 1.72.0-10

CVE-2024-9681 affecting package rust for versions less than 1.72.0-10. A patched version of the package is available...

libpq security update

13.20-1 - Update to 13.20...

mysql security update

8.0.41-2 - Fix patching of logrotate 8.0.41-1 - Update to MySQL 8.0.41 8.0.40-1 - Update to MySQL 8.0.40 8.0.39-1 - Rebase to version 8.0.39 8.0.37-2 - Use signal to flush logs when rotating 8.0.37-1 - Update to MySQL 8.0.37 - Remove some legacy cmake options...

CVE-2025-26306

A memory leak has been identified in the readSizedString function in util/read.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted file...

SUSE CVE-2025-25475

A NULL pointer dereference in the component /libsrc/dcrleccd.cc of DCMTK v3.6.9+ DEV allows attackers to cause a Denial of Service DoS via a crafted DICOM file...

libpq security update

13.20-1 - Update to 13.20...

CVE-2025-1492

Bundle Protocol and CBOR dissector crashes in Wireshark 4.4.0 to 4.4.3 and 4.2.0 to 4.2.10 allows denial of service via packet injection or crafted capture file...

CVE-2020-15250 affecting package junit for versions less than 4.13-7

CVE-2020-15250 affecting package junit for versions less than 4.13-7. A patched version of the package is available...

CVE-2023-39325 affecting package jx for versions less than 3.10.182-1

CVE-2023-39325 affecting package jx for versions less than 3.10.182-1. An upgraded version of the package is available that resolves this issue...

CVE-2025-0677

A flaw was found in grub2. When performing a symlink lookup, the grub's UFS module checks the inode's data size to allocate the internal buffer to read the file content, however, it fails to check if the symlink data size has overflown. When this occurs, grubmalloc may be called with a smaller...

CVE-2025-24965

crun is an open source OCI Container Runtime fully written in C. In affected versions A malicious container image could trick the krun handler into escaping the root filesystem, allowing file creation or modification on the host. No special permissions are needed, only the ability for the current...

CVE-2021-43519 affecting package ntopng for versions less than 5.2.1-5

CVE-2021-43519 affecting package ntopng for versions less than 5.2.1-5. A patched version of the package is available...

CVE-2025-0633

Heap-based Buffer Overflow vulnerability in iniparserdumpsectionini in iniparser allows attacker to read out of bound memory...

CVE-2025-0633

Heap-based Buffer Overflow vulnerability in iniparserdumpsectionini in iniparser allows attacker to read out of bound memory...

CVE-2025-25054

Movable Type contains a reflected cross-site scripting vulnerability in the user information edit page. When Multi-Factor authentication plugin is enabled and a user accesses a crafted page while logged in to the affected product, an arbitrary script may be executed on the web browser of the user...

CVE-2025-25475

A NULL pointer dereference in the component /libsrc/dcrleccd.cc of DCMTK v3.6.9+ DEV allows attackers to cause a Denial of Service DoS via a crafted DICOM file...

CVE-2025-26603

Vim is a greatly improved version of the good old UNIX editor Vi. Vim allows to redirect screen messages using the :redir ex command to register, variables and files. It also allows to show the contents of registers using the :registers or :display ex command. When redirecting the output of...

CVE-2024-45774

A flaw was found in grub2. A specially crafted JPEG file can cause the JPEG parser of grub2 to incorrectly check the bounds of its internal buffers, resulting in an out-of-bounds write. The possibility of overwriting sensitive information to bypass secure boot protections is not discarded...

CVE-2025-21702

In the Linux kernel, the following vulnerability has been resolved: pfifotailenqueue: Drop new packet when sch-limit == 0 Expected behaviour: In case we reach scheduler's limit, pfifotailenqueue will drop a packet in scheduler's queue and decrease scheduler's qlen by one. Then, pfifotailenqueue...