514 matches found
python: Fix of CVE-2025-8194
CVE-2025-8194: tarfile now validates archives to ensure member offsets are non-negative...
zlib: Fix of CVE-2016-9843
CVE-2016-9843: avoid pre-decrement of pointer in big-endian CRC calculation...
python: Fix of 2 CVEs
CVE-2018-1060: fix catastrophic backtracking in APOP method, prevent denial of service, add input validation and enforce backtracking limits - CVE-2018-1061: fix catastrophic backtracking in the difflib.ISLINEJUNK method...
glib2: Fix of CVE-2025-14087
CVE-2025-14087: Fix integer overflow in GVariant parser leading to heap corruption via buffer underflow when processing malicious input strings...
Update of nss
update to CKBI 2.82 from NSS 3.120 - updated certificates: - Certificate "GlobalSign Root CA" - Certificate "Entrust.net Premium 2048 Secure Server CA" - Certificate "Comodo AAA Services root" - Certificate "XRamp Global CA Root" - Certificate "Go Daddy Class 2 CA" - Certificate "Starfield Class...
Update of ca-certificates
update to CKBI 2.82 from NSS 3.120 - updated certificates: - Certificate "GlobalSign Root CA" - Certificate "Entrust.net Premium 2048 Secure Server CA" - Certificate "Comodo AAA Services root" - Certificate "XRamp Global CA Root" - Certificate "Go Daddy Class 2 CA" - Certificate "Starfield Class...
kernel: Fix of 13 CVEs
fbdev: Fix vmalloc out-of-bounds write in fastimageblit CVE-2025-38685 - cnic: Fix use-after-free bugs in cnicdeletetask CVE-2025-39945 - scsi: bfa: Double-free fix CVE-2025-38699 - fbdev: fix potential buffer overflow in doregisterframebuffer CVE-2025-38702 - scsi: ses: Fix slab-out-of-bounds in...
expat: Fix of CVE-2026-24515
CVE-2026-24515: Fix a null pointer dereference in the XML parser caused by the failure to copy user data for unknown encoding handlers...
Update of microcode_ctl
Update Intel CPU microcode to 20251111: - Addition of cpuid:806F8/0x10 SPR-HBM B3 microcode in microcode.dat at revision 0x2c000410; - Addition of cpuid:806F8/0x87 SPR-SP E5/S3 microcode in microcode.dat at revision 0x2b000650; - Addition of cpuid:90672/0x07 ADL-HX/S 8+8 C0 microcode in...
gnupg2: Fix of CVE-2025-68973
CVE-2025-68973: fix possible memory corruption in the armor parser that could lead to out-of-bounds write for crafted input...
kernel: Fix of 39 CVEs
Bluetooth: hcisysfs: Fix attempting to call deviceadd multiple times CVE-2022-50419 - firewire: net: fix use after free in fwnetfinishincomingpacket CVE-2023-53432 - wifi: brcmfmac: fix use-after-free bug in brcmfnetdevstartxmit CVE-2022-50408 - wifi: brcmfmac: slab-out-of-bounds read in...
squid: Fix of CVE-2025-62168
CVE-2025-62168: Fix failure to redact HTTP authentication credentials in error handling to prevent information disclosure...
squid34: Fix of CVE-2025-62168
CVE-2025-62168: Redact HTTP authentication credentials in error handling to prevent information disclosure...
kernel: Fix of 6 CVEs
fix: virtio-net: Add validation for used length CVE-2021-47352 - xen/netfront: don't use gnttabqueryforeignaccess for mapped status CVE-2022-23037 - net/sched: schqfq: Fix race condition on qfqaggregate CVE-2025-38477 - net: fix information leakage in /proc/net/ptype CVE-2022-48757 - net: atm:...
libxml2: Fix of 2 CVEs
CVE-2024-56171: fix use-after-free in xmlSchemaIDCFillNodeTables and xmlSchemaBubbleIDCNodeTables in xmlschemas.c - CVE-2025-24928: fix stack-based buffer overflow in xmlSnprintfElements in valid.c...
kernel: Fix of 39 CVEs
nfs: fix UAF in direct writes CVE-2024-26958 - NFSD: Fix the behavior of READ near OFFSETMAX CVE-2022-48827 - thermal: core: prevent potential string overflow CVE-2023-52868 - ath5k: fix OOB in ath5keepromreadpcalinfo5111 CVE-2021-47633 - RDMA/cma: Ensure rdmaaddrcancel happens before issuing...
libxml2: Fix of CVE-2022-49043
CVE-2022-49043: fix use-after-free in xmlXIncludeAddNode, free URI after reporting the error to avoid use-after-free...
openssl: Fix of CVE-2018-0734
CVE-2018-0734: fix timing side channel attack in DSA signature algorithm...
binutils: Fix of CVE-2017-9042
CVE-2017-9042: readelf.c fix a possible application crash known as the "cannot be represented in type long" issue...
nss: Fix of CVE-2020-25648
CVE-2020-25648: fix DoS in case of receiving multiple CCS messages - extended tests...
openvpn: Fix of CVE-2020-15078
CVE-2020-15078: fix authentication bypass and access to control channel data on servers configured with deferred authentication...
samba: Fix of CVE-2020-25717
CVE-2020-25717: Adapt CVE's patch to Centos 6 based systems where regular user id starts from 500, so change the default value of the new config parameters added: "min domain uid" to 500...
libxml2: Fix of CVE-2025-6021
CVE-2025-6021: fix integer overflows in buffer size calculations...
libwebp: Fix of 3 CVEs
CVE-2020-36329: fix use-after-free vulnerability by delaying thread termination - CVE-2020-36330: fix out-of-bounds read in ChunkVerifyAndAssign function - CVE-2020-36331: fix out-of-bounds read in ChunkAssignData function...
glib2: Fix of CVE-2024-52533
CVE-2024-52533: fix off-by-one error and resulting buffer overflow in gsocks4aproxy.c by increasing SOCKS4CONNMSGLEN...
dovecot: Fix of CVE-2020-12674
CVE-2020-12674: fix mishandling of zero length in RPA request to prevent auth service crash...
cups: Fix of CVE-2023-4504
CVE-2023-4504: check for null terminator after a backslash...
spamassassin: Fix of 2 CVEs
CVE-2020-1930: fix command-execution vulnerability in SpamAssassin .cf parsing - CVE-2020-1931: fix command-execution vulnerability in SpamAssassin .cf parsing...
glibc: Fix of CVE-2020-1752
CVE-2020-1752: fix use-after-free vulnerability in glob...
glib2: Fix of CVE-2020-35457
CVE-2020-35457: fix integer overflow in goptiongroupaddentries to prevent potential out-of-bounds write - Bug775510: avoid calling Standard C string/array functions with NULL arguments...
dovecot: Fix of CVE-2020-12673
CVE-2020-12673: fix reading past buffer...
libwebp: Fix of CVE-2020-36328
CVE-2020-36328: fix a heap-based buffer overflow in WebPDecodeInto functions...
httpd: Fix of 2 CVEs
CVE-2024-47252: escape characters are now properly handled in modssl to prevent untrusted SSL/TLS clients from inserting escape characters into log files - CVE-2025-49812: remove support for TLS upgrade to mitigate HTTP desynchronisation attack...
kernel: Fix of 3 CVEs
posix-cpu-timers: fix race between handleposixcputimers and posixcputimerdel CVE-2025-38352 - schqfq: make qfqqlennotify idempotent CVE-2025-38177 - schhfsc: make hfscqlennotify idempotent CVE-2025-38177 - schdrr: make drrqlennotify idempotent CVE-2025-38177 - schhtb: make htbqlennotify...
glibc: Fix of CVE-2019-9169
CVE-2019-9169: fix heap-based buffer over-read in proceednextnode in posix/regexec.c...
python: Fix of CVE-2016-5636
CVE-2016-5636: fix heap-based buffer overflow in zipimport.c...
squid: Fix of CVE-2025-54574
CVE-2025-54574: fix buffer overflow in URN handling...
squid34: Fix of CVE-2025-54574
CVE-2025-54574: fix buffer overflow in URN handling...
clamav: Fix of 8 CVEs
Update to 1.0.9 LTS version - CVE-2025-20260: Fixed a possible buffer overflow write bug in the PDF file parser - CVE-2025-20128: Fixed a possible buffer overflow read bug in the OLE2 file parser - CVE-2024-20506: Changed the logging module to disable following symlinks on Linux and Unix systems...
php: Fix of 3 CVEs
CVE-2025-1217: http stream wrapper: fix handling folded headers - CVE-2025-1734: http stream wrapper: fix handling headers with invalid name and no colon - CVE-2025-1861: fix http redirect location truncation...
wget: Fix of CVE-2024-38428
CVE-2024-38428: fix mishandle semicolons in userinfo subcomponent of URI to prevent insecure behavior...
kernel: Fix of CVE-2023-52572
cifs: Fix UAF in cifsdemultiplexthread CVE-2023-52572...
tomcat6: Fix of CVE-2025-24813
CVE-2025-24813: enhance lifecycle of temporary files used by partial PUT...
dmidecode: Fix of CVE-2023-30630
CVE-2023-30630: prevent --dump-bin from overwriting local files to address privilege escalation vulnerability...
git: Fix of CVE-2025-46835
CVE-2025-46835: fix vulnerability where Git GUI can create and overwrite arbitrary writable files...
subversion: Fix of CVE-2024-46901
CVE-2024-46901: fix moddavsvn denial-of-service via control characters in paths...
java-1.8.0-openjdk: Fix of 4 CVEs
Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u462-b08. That fixes following CVEs: - CVE-2025-30749: better Glyph drawing - CVE-2025-30754: enhance TLS protocol support - CVE-2025-30761: improve scripting supports - CVE-2025-50106: glyph out-of-memory access and crash...
Update of nss
update to CKBI 2.74 from NSS 3.110 - updated certificates: - Certificate "certSIGN ROOT CA" - Certificate "ACCVRAIZ1" - Certificate "Entrust Root Certification Authority - G4" - Certificate "Security Communication ECC RootCA1" - Certificate "BJCA Global Root CA1" - Certificate "BJCA Global Root...
git: Fix of CVE-2025-27613
CVE-2025-27613: fix vulnerability where Gitk can write and truncate arbitrary writable files...
sqlite: Fix of CVE-2025-6965
CVE-2025-6965: fix a potential memory corruption if the number of aggregate terms in a query exceeds the maximum number of columns...