502 matches found
dovecot: Fix of CVE-2020-12674
CVE-2020-12674: fix mishandling of zero length in RPA request to prevent auth service crash...
glibc: Fix of CVE-2020-1752
CVE-2020-1752: fix use-after-free vulnerability in glob...
glib2: Fix of CVE-2020-35457
CVE-2020-35457: fix integer overflow in goptiongroupaddentries to prevent potential out-of-bounds write - Bug775510: avoid calling Standard C string/array functions with NULL arguments...
php: Fix of CVE-2025-1220
CVE-2025-1220: fix null byte termination in hostnames...
libxml2: Fix of 2 CVEs
CVE-2025-49794: fix memory safety issues in xmlSchematronReportOutput when parsing XPath elements - CVE-2025-49796: fix memory corruption issue triggered by processing sch:name elements in input XML file...
rsync: Fix of CVE-2024-12087
CVE-2024-12087: fix path traversal vulnerability by adding a proper symlink verification and deduplication checks on a per-file-list basis...
kernel: Fix of 4 CVEs
media: pvrusb2: fix array-index-out-of-bounds in pvr2i2ccoreinit CVE-2022-49478 - x86/kvm: Disable kvmclock on all CPUs on shutdown CVE-2021-47110 - cifs: fix potential double free during failed mount CVE-2022-49541 - drm/amd/pm: fix double free in siparsepowertable CVE-2022-49530...
Update of microcode_ctl
Update Intel CPU microcode to 20250211: - Addition of cpuid:806F8/0x10 SPR-HBM B3 microcode in microcode.dat at revision 0x2c0003e0; - Addition of cpuid:806F8/0x87 SPR-SP E5/S3 microcode in microcode.dat at revision 0x2b000620; - Addition of cpuid:90672/0x07 ADL-HX/S 8+8 C0 microcode in...
libxml2: Fix of CVE-2025-32415
CVE-2025-32415: fix heap buffer overflow in xmlSchemaIDCFillNodeTables...
libxml2: Fix of CVE-2025-27113
CVE-2025-27113: fix compilation of explicit child axis...
samba: Fix of 2 CVEs
CVE-2019-3880: Refuse winreg SaveKey/RestoreKey RPCs to prevent writing registry hive files outside intended share boundaries via symlink races - CVE-2019-10218: Reject server-supplied filenames containing path separators in SMB1 directory listings to protect libsmbclient consumers from path...
rsync: Fix of 2 CVEs
CVE-2026-43618: fix integer overflow in compressed-token decoding that could leak rsync process memory contents over the wire - CVE-2026-29518: fix TOCTOU race on parent path components in non-chroot daemon by routing receiver/sender opens, chmod, and chdir through per- component ONOFOLLOW secure...
php: Fix of CVE-2026-6735
CVE-2026-6735: fix XSS within FPM status endpoint...
expat: Fix of CVE-2026-45186
CVE-2026-45186: fix quadratic runtime in attribute collision detection by using a hash table for default attribute names instead of an On^2 loop...
php: Fix of CVE-2026-7262
CVE-2026-7262: fix NULL pointer dereference in SOAP apache map decoder typemap configured...
quagga: Fix of CVE-2018-5380
CVE-2018-5380: fix BGP NOTIFY debug-print msg array over-read...
subversion: Fix of CVE-2018-11782
CVE-2018-11782: fix svnserve DoS via well-formed read-only get-deleted-rev request...
libssh2: Fix of CVE-2026-7598
CVE-2026-7598: add usernamelen/passwordlen bounds checks in userauthlist and userauthpassword to prevent integer overflow when allocating the SSH USERAUTHREQUEST packet buffer...
dovecot: Fix of CVE-2026-27857
CVE-2026-27857: imap-login: limit IMAP parser open lists to prevent excessive memory usage...
cyrus-sasl: Fix of CVE-2019-19906
CVE-2019-19906: fix off-by-one in sasladdstring lib/common.c that could cause denial of service or information disclosure via crafted input...
tar: Fix of CVE-2019-9923
CVE-2019-9923: fix NULL pointer dereference in paxdecodeheader on malformed PAX extended headers...
shadow-utils: Fix of CVE-2017-12424
CVE-2017-12424: fix heap buffer overflow in commoniosort when an entry has a NULL line...
squid34: Fix of 12 CVEs
CVE-2019-12525: fix heap buffer over-read in Digest auth parameter parsing - CVE-2018-1000027: fix NULL pointer dereference in X-Forwarded-For logging for internal transactions - CVE-2018-19131: escape certificate field injection via %D in ERRSECURECONNECTFAIL page - CVE-2018-19132: fix memory...
cups: Fix of CVE-2026-34980
CVE-2026-34980: filter control characters from option values in the scheduler to prevent PPD keyword injection via Print-Job...
sssd: Fix of 2 CVEs
CVE-2018-10852: create the sudo responder socket with stricter permissions - CVE-2019-3811: do not return "/" as the home directory when the user has no homedir configured...
ntp: Fix of 2 CVEs
CVE-2018-7185: unauthenticated packet with a zero-origin timestamp can reset an authenticated interleave association leading to denial of service. - CVE-2019-8936: NULL pointer dereference triggered by an authenticated mode 6 control packet with no value field...
bash: Fix of CVE-2019-9924
CVE-2019-9924: reject attempts to add pathnames containing slashes to the hash table in restricted shell...
squid: Fix of 3 CVEs
CVE-2019-12521: fix ESI parser off-by-one heap overflow by enforcing a stack-depth limit and throwing on overflow - CVE-2019-12524 already addressed by the CVE-2019-12520 backport same fix upstream; see Squid advisory SQUID-2019:4...
expat: Fix of 3 CVEs
CVE-2017-9233: Fix external entity infinite loop bug - CVE-2018-20843: Fix extraction of namespace prefix from XML name - CVE-2019-15903: Deny internal entities closing the doctype heap overread...
gdb: Fix of CVE-2019-1010180
CVE-2019-1010180: add warning for corrupt ELF section size larger than file...
vim: Fix of CVE-2026-33412
CVE-2026-33412: fix command injection via newline character in glob on Unix-like systems by escaping '\n' in SHELLSPECIAL...
python: Fix of CVE-2019-9948
CVE-2019-9948: fix urllib localfile:// URL scheme bypass that allowed file reads when localfile handler was defined...
zsh: Fix of 3 CVEs
CVE-2018-1071: check bounds when copying path in hashcmd - CVE-2018-7549: avoid crash copying empty hash table - CVE-2018-13259: fix shebang line truncation in zexecve...
php: Fix of 5 CVEs
CVE-2019-9023: mbstring oniguruma: fix heap overflow in utf32bembctocode and related mbctocode encoders bug 77418; completes CVE-2019-9023 coverage alongside existing php-5.3.29-bug773707737177381773827738577394.patch - CVE-2019-11034: exif: fix heap-buffer-overflow in phpifdget32s bug 77753 -...
glib2: Fix of 2 CVEs
CVE-2019-12450: fix insecure file permissions during copy operations - CVE-2019-13012: fix insecure directory and file permissions in keyfile settings backend...
haproxy: Fix of CVE-2019-18277
CVE-2019-18277: reject messages where "chunked" is missing from transfer-encoding...
binutils: Fix of CVE-2025-11082
CVE-2025-11082: fix heap-based buffer overflow in bfdelfparseehframe...
binutils: Fix of 4 CVEs
CVE-2025-5244: fix NULL pointer dereference in elfgcsweep for empty section groups - CVE-2025-5245: fix memory corruption in debugtypesamep incorrect NULL check - CVE-2026-3441: fix out-of-bounds read in xcofflinkaddsymbols xscnlen bounds check - CVE-2026-3442: fix out-of-bounds read in...
python: Fix of 2 CVEs
CVE-2018-1060: fix catastrophic backtracking in APOP method, prevent denial of service, add input validation and enforce backtracking limits - CVE-2018-1061: fix catastrophic backtracking in the difflib.ISLINEJUNK method...
Update of nss
update to CKBI 2.82 from NSS 3.120 - updated certificates: - Certificate "GlobalSign Root CA" - Certificate "Entrust.net Premium 2048 Secure Server CA" - Certificate "Comodo AAA Services root" - Certificate "XRamp Global CA Root" - Certificate "Go Daddy Class 2 CA" - Certificate "Starfield Class...
Update of microcode_ctl
Update Intel CPU microcode to 20251111: - Addition of cpuid:806F8/0x10 SPR-HBM B3 microcode in microcode.dat at revision 0x2c000410; - Addition of cpuid:806F8/0x87 SPR-SP E5/S3 microcode in microcode.dat at revision 0x2b000650; - Addition of cpuid:90672/0x07 ADL-HX/S 8+8 C0 microcode in...
squid34: Fix of CVE-2025-62168
CVE-2025-62168: Redact HTTP authentication credentials in error handling to prevent information disclosure...
libxml2: Fix of 2 CVEs
CVE-2024-56171: fix use-after-free in xmlSchemaIDCFillNodeTables and xmlSchemaBubbleIDCNodeTables in xmlschemas.c - CVE-2025-24928: fix stack-based buffer overflow in xmlSnprintfElements in valid.c...
libxml2: Fix of CVE-2022-49043
CVE-2022-49043: fix use-after-free in xmlXIncludeAddNode, free URI after reporting the error to avoid use-after-free...
openssl: Fix of CVE-2018-0734
CVE-2018-0734: fix timing side channel attack in DSA signature algorithm...
nss: Fix of CVE-2020-25648
CVE-2020-25648: fix DoS in case of receiving multiple CCS messages - extended tests...
openvpn: Fix of CVE-2020-15078
CVE-2020-15078: fix authentication bypass and access to control channel data on servers configured with deferred authentication...
samba: Fix of CVE-2020-25717
CVE-2020-25717: Adapt CVE's patch to Centos 6 based systems where regular user id starts from 500, so change the default value of the new config parameters added: "min domain uid" to 500...
libxml2: Fix of CVE-2025-6021
CVE-2025-6021: fix integer overflows in buffer size calculations...
spamassassin: Fix of 2 CVEs
CVE-2020-1930: fix command-execution vulnerability in SpamAssassin .cf parsing - CVE-2020-1931: fix command-execution vulnerability in SpamAssassin .cf parsing...