EUVD-2024-51824

Malicious code in bioql PyPI...

CVE-2024-57892

CVE-2024-57892 relates to the Linux kernel OCFS2 quota handling. The issue is a slab-use-after-free when remounting an ocfs2 filesystem as read-only and a quota_getnextquota syscall is used. The root cause is a dangling dqi_priv pointer that is freed during remount but not cleared, combined with ...

CVE-2024-53153

In the Linux kernel, the following vulnerability has been resolved: PCI: qcom-ep: Move controller cleanups to qcompcieperstdeassert Currently, the endpoint cleanup function dwpcieepcleanup and EPF deinit notify function pciepcdeinitnotify are called during the execution of qcompcieperstassert i.e...

CVE-2024-53152 PCI: tegra194: Move controller cleanups to pex_ep_event_pex_rst_deassert()

In the Linux kernel, the following vulnerability has been resolved: PCI: tegra194: Move controller cleanups to pexepeventpexrstdeassert Currently, the endpoint cleanup function dwpcieepcleanup and EPF deinit notify function pciepcdeinitnotify are called during the execution of...

CVE-2024-53152 PCI: tegra194: Move controller cleanups to pex_ep_event_pex_rst_deassert()

In the Linux kernel, the following vulnerability has been resolved: PCI: tegra194: Move controller cleanups to pexepeventpexrstdeassert Currently, the endpoint cleanup function dwpcieepcleanup and EPF deinit notify function pciepcdeinitnotify are called during the execution of...

CVE-2021-47408

In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: serialize hash resizes and cleanups Syzbot was able to trigger the following warning 1 No repro found by syzbot yet but I was able to trigger similar issue by having 2 scripts running in parallel, changing...

CVE-2021-47408

CVE-2021-47408 affects the Linux kernel netfilter conntrack code. The issue arises when the conntrack hash table resizes or during cleanup, causing nf_ct_iterate_cleanup to restart after a resize and delaying net_namespace teardown. The available connected documents state that adding a mutex to s...

CVE-2021-47408 netfilter: conntrack: serialize hash resizes and cleanups

In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: serialize hash resizes and cleanups Syzbot was able to trigger the following warning 1 No repro found by syzbot yet but I was able to trigger similar issue by having 2 scripts running in parallel, changing...

OPENSUSE-SU-2021:1520-1 Security update for permissions

This update for permissions fixes the following issues: Update to version 20200127: Makefile: Leap 15.3 still uses /etc, so adjust the installation setup Update to version 20181225: mgetty: faxq-helper now finally reside in /usr/libexec libksysguard5: Updated path for ksgrdnetworkhelper kdesu:...

java-1.8.0-openjdk security and bug fix update

1:1.8.0.312.b07-1 - Update to aarch64-shenandoah-jdk8u312-b07 EA - Update release notes for 8u312-b07. - Switch to GA mode for final release. - This tarball is embargoed until 2021-10-19 @ 1pm PT. - Resolves: rhbz2011826 1:1.8.0.312.b05-0.4.ea - Allow plain key import to be disabled with...

GSD-2021-1001707 netfilter: conntrack: serialize hash resizes and cleanups

netfilter: conntrack: serialize hash resizes and cleanups This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.14.10 by commit...

Fedora 30 : mod_http2 (2019-08e57d15fd)

Code cleanups and Simplifications : - in stream instance and main connection output handling for a common strategy in h2/h2c versions of the protocol. Stream instances are kept in one place which will make future optimizations in state handling easier. - Discarding idea of re-using bucket beams a...

Slackware Advisory SSA:2003-266-01 New OpenSSH packages

The remote host is missing an update as announced via advisory SSA:2003-266-01. OpenVAS Vulnerability Test $Id: esoftslkssa200326601.nasl 6598 2017-07-07 09:36:44Z cfischer $ Description: Auto-generated from the corresponding slackware advisory Authors: Thomas Reinke Copyright: Copyright c 2012...

Slackware: Security Advisory (SSA:2003-266-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

libvirt security update

0.8.1-27.0.1.el60.5 - Replace docs/et.png in tarball with blank image 0.8.1-27.el60.5 - Properly report error in virConnectDomainXMLToNative CVE-2011-1146 0.8.1-27.el60.4 - Add missing checks for read-only connections CVE-2011-1146 0.8.1-27.el60.3 - Remove patches not suitable for proper Z-stream...

Fedora 8 : xine-lib-1.1.11-1.fc8 (2008-2569)

Wed Mar 19 2008 Ville Skytta - 1.1.11-1 - 1.1.11 security update, 438182, CVE-2008-0073. - Drop jack and wavpack build conditionals. - Specfile cleanups. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has...

Fedora Core 6 : rpm-4.4.2.1-1.fc6 (2007-668)

Summary of changes : - update to 4.4.2.1 fixing 247749 and countless others - avoid unnecessary .rpmsave / .rpmnew files 29470, 128622 - stricter docdir checking 246819 - allow checking for pending signals from python 181434 - add hook to python for cleaning up on unclean exit 245389 - resurrect...

New OpenSSH packages

Upgraded OpenSSH 3.7.1p2 packages are available for Slackware 8.1, 9.0 and -current. This fixes security problems with PAM authentication. It also includes several code cleanups from Solar Designer. Slackware is not vulnerable to the PAM problem, and it is not believed that any of the other code...