14 matches found
CLSA-2025-1748282295 Fix of 34 CVEs
SECURITY UPDATE: Misc vulnerability fixes - CVE-2019-12418, CVE-2019-17563, CVE-2020-1935, CVE-2020-11996, CVE-2020-13934, CVE-2020-13935, CVE-2020-13943, CVE-2020-17527, CVE-2021-24122, CVE-2021-30639, CVE-2021-30640, CVE-2021-33037, CVE-2021-42340, CVE-2021-43980, CVE-2022-25762, CVE-2022-34305...
CLSA-2025-1740645619 Update of alt-php
Internal tests: - debian/testcerts/: Update the keystore files and certificates from the upstream branch 9.0.x to fix internal tests...
CLSA-2024-1722525083 glib2: Fix of 3 CVEs
CVE-2023-29499: Fix GVariant offset table entry size which is not checked in isnormal - CVE-2023-32611: Fix an issue where gvariantbyteswap can take a long time with some non-normal inputs - CVE-2023-32665: Fix GVariant deserialisation which does not match spec for non-normal data - Enable...
CVE-2024-35953
In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Fix deadlock in contextxa ivpudevice-contextxa is locked both in kernel thread and IRQ context. It requires XAFLAGSLOCKIRQ flag to be passed during initialization otherwise the lock could be acquired from a thread and...
CVE-2024-35953 accel/ivpu: Fix deadlock in context_xa
In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Fix deadlock in contextxa ivpudevice-contextxa is locked both in kernel thread and IRQ context. It requires XAFLAGSLOCKIRQ flag to be passed during initialization otherwise the lock could be acquired from a thread and...
bind: Fix of 2 CVEs
CVE-2023-50387: Resolved CPU exhaustion from specially crafted DNSSEC-signed zone responses - CVE-2023-50868: Resolved CPU exhaustion from DNSSEC-signed zones using NSEC3 - Enable internal tests by default...
CLSA-2024-1710437162 bind: Fix of 2 CVEs
CVE-2023-50387: Resolved CPU exhaustion from specially crafted DNSSEC-signed zone responses - CVE-2023-50868: Resolved CPU exhaustion from DNSSEC-signed zones using NSEC3 - Enable internal tests by default...
CLSA-2024-1710437080 bind: Fix of 2 CVEs
CVE-2023-50387: Resolved CPU exhaustion from specially crafted DNSSEC-signed zone responses - CVE-2023-50868: Resolved CPU exhaustion from DNSSEC-signed zones using NSEC3 - Enable internal tests by default...
CLSA-2024-1707420277 Fix CVE(s): CVE-2023-46589
SECURITY UPDATE: Incorrect parsing of HTTP trailer headers - debian/patches/CVE-2023-46589.patch: Ensure IOException on request read always triggers error handling - CVE-2023-46589 Internal tests: - debian/patches/0100-stop-testing-if-a-failure-occurs.patch: Stop testing if a failure occurs -...
CLSA-2024-1705081413 Fix CVE(s): CVE-2023-46589
SECURITY UPDATE: Request smuggling - debian/patches/CVE-2023-46589-pre1.patch: Correct a regression in the error page handling that prevented error pages from issuing redirects or taking other action that required the response status code to be changed - debian/patches/CVE-2023-46589-pre2.patch:...
CLSA-2023-1701446494 Fix CVE(s): CVE-2022-3515, CVE-2022-47629
SECURITY UPDATE: integer overflow in the TLV parser - debian/patches/CVE-2022-3515.patch: detect a possible overflow directly in the TLV parser - CVE-2022-3515 SECURITY UPDATE: integer overflow in the CRL signature parser - debian/patches/CVE-2022-47629.patch: fix an integer overflow in the CRL...
CLSA-2023-1697740212 glib2: Fix of 5 CVEs
Enable internal tests - Skip several failed tests from the check - CVE-2023-29499: Fix GVariant offset table entry size which is not checked in isnormal - CVE-2023-32611: Fix an issue where gvariantbyteswap can take a long time with some non-normal inputs - CVE-2023-32665: Fix GVariant...
CLSA-2023-1696352100 glib2: Fix of CVE-2021-27218
CVE-2021-27218: gbytearray: Do not accept too large byte arrays - Enable internal tests - Skip several failed tests from the check...
CVE-2021-23845
This vulnerability could allow an attacker to hijack a session while a user is logged in the configuration web page. This vulnerability was discovered by a security researcher in B426 and found during internal product tests in B426-CN/B429-CN, and B426-M and has been fixed already starting from...