502 matches found
Update of ca-certificates
update to CKBI 2.64 from NSS 3.95 - updated: - Certificate "Autoridad de Certificacion Firmaprofesional CIF A62634068" - removed old certificates: - Certificate "E-Tugra Certification Authority" - Certificate "Hongkong Post Root CA 1" - Certificate "Symantec Class 1 Public Primary Certification...
kernel: Fix of 13 CVEs
Bluetooth: L2CAP: Fix use-after-free in l2capsockreadycb CVE-2023-40283 - ipv4: igmp: fix refcnt uaf issue when receiving igmp query packet CVE-2023-6932 - smb: client: fix OOB in smbCalcSize CVE-2023-6606 - net/sched: schhfsc: Ensure inner classes have fsc curve CVE-2023-4623 - net/sched: clsfw:...
kernel: Fix of 13 CVEs
Bluetooth: L2CAP: Fix use-after-free in l2capsockreadycb CVE-2023-40283 - ipv4: igmp: fix refcnt uaf issue when receiving igmp query packet CVE-2023-6932 - smb: client: fix OOB in smbCalcSize CVE-2023-6606 - net/sched: schhfsc: Ensure inner classes have fsc curve CVE-2023-4623 - net/sched: clsfw:...
python: Fix of CVE-2023-40217
CVE-2023-40217: Fix TLS handshake bypass...
openssh: Fix of CVE-2023-51385
CVE-2023-51385: ban user/hostnames with most shell metacharacters in command line...
squid: Fix of 2 CVEs
CVE-2023-49285: Fix date parsing in RFC 1123 to prevent Buffer OverRead - CVE-2023-49286: Fix DoS attack against Helper process management...
squid34: Fix of 2 CVEs
CVE-2023-49285: Fix date parsing in RFC 1123 to prevent Buffer OverRead - CVE-2023-49286: Fix DoS attack against Helper process management...
haproxy: Fix of CVE-2023-45539
CVE-2023-45539: do not accept '' as part of the URI component...
squid34: Fix of CVE-2023-46728
CVE-2023-46728: Remove support for Gopher protocol...
squid: Fix of CVE-2023-46728
CVE-2023-46728: Remove support for Gopher protocol - Enable test-suite...
microcode_ctl: Fix of CVE-2023-23583
Update Intel CPU microcode to microcode-20231114 release, addresses CVE-2023-23583 INTEL-SA-00950: - Update of 06-6a-06/0x87 ICX-SP D0 microcode in 06-6a-06 from revision 0xd0003a5 up to 0xd0003b9; - Update of 06-6c-01/0x10 ICL-D B0 microcode in 06-6c-01 from revision 0x1000230 up to 0x1000268; -...
libksba: Fix of 2 CVEs
CVE-2022-3515: detect a possible overflow directly in the TLV parser - CVE-2022-47629: fix an integer overflow in the CRL signature parser...
squid34: Fix of CVE-2023-46847
CVE-2023-46847: Fix stack buffer overflow when parsing Digest Authorization...
squid34: Fix of CVE-2023-46724
CVE-2023-46724: Fix validation of certificates with CN=...
exim: Fix of CVE-2023-42117
CVE-2023-42117: fix stringisipaddress...
samba: Fix of CVE-2023-3961
CVE-2023-3961: Fix a path traversal out of the socket directory - fix chagelog's versions...
Update of microcode_ctl
Fix silent microcode rejection in some cases - Loading to /dev/null is enabled on VM...
kernel: Fix of 10 CVEs
openvswitch: fix OOB access in reservesfasize CVE-2022-2639 - xen/blkfront: fix leaking data in shared pages CVE-2022-26365 - Bluetooth: Fix slab-out-of-bounds read in hciextendedinquiryresultevt CVE-2020-36386 - btrfs: only search for leftinfo if there is no rightinfo in trymergefreespace...
kernel: Fix of 10 CVEs
openvswitch: fix OOB access in reservesfasize CVE-2022-2639 - xen/blkfront: fix leaking data in shared pages CVE-2022-26365 - Bluetooth: Fix slab-out-of-bounds read in hciextendedinquiryresultevt CVE-2020-36386 - btrfs: only search for leftinfo if there is no rightinfo in trymergefreespace...
squid: Fix of CVE-2023-46847
CVE-2023-46847: Fix stack buffer overflow when parsing Digest Authorization...
exim: Fix of CVE-2022-3559
CVE-2022-3559: Fix $regex use-after-free...
libxml2: Fix of CVE-2016-4658
CVE-2016-4658: disallow namespace nodes in XPointer ranges...
vim: Fix of 2 CVEs
CVE-2023-5441: segfault in exmode - CVE-2023-5344: buffer overflow in truncstring...
zlib: Fix of CVE-2023-45853
CVE-2023-45853: Reject overflows of zip header fields in minizip...
python: Fix of CVE-2022-48560
CVE-2022-48560: Fix SIGSEGV in Python via heappushpop in heapq...
nginx: Fix of CVE-2023-44487
CVE-2023-44487: HTTP/2 - per-iteration stream handling limit...
quagga: Fix of 2 CVEs
CVE-2023-41360: don't read the first byte of ORF header if we are ahead of stream - CVE-2023-41358: do not process NLRIs if the attribute length is zero...
exim: Fix of 2 CVEs
CVE-2023-42114: fix possible OOB read in SPA authenticator - CVE-2023-42116: fix possible OOB write in SPA authenticator...
curl: Fix of CVE-2023-38546
CVE-2023-38546: cookie: remove unnecessary struct fields - Rebuild expired test certificates...
bind: Fix of CVE-2023-3341
CVE-2023-3341: Limit iscccccfromwire recursion depth...
libwebp: Fix of CVE-2023-1999
CVE-2023-1999: avoids a double free...
binutils: Fix of CVE-2020-19726
CVE-2020-19726: Fix an illegal memory access in the BFD library which can be triggered by attempting to parse a corrupt PE format file...
python: Fix of CVE-2022-48565
CVE-2022-48565: Reject XML entity declarations in plist files...
libssh2: Fix of CVE-2020-22218
CVE-2020-22218: doing totalnum zero length check...
vim: Fix of CVE-2023-4736
CVE-2023-4736: improve search path to avoid run an executable in untrusted dir...
vim: Fix of CVE-2023-4733
CVE-2023-4733: verify oldwin pointer after resetVIsual...
binutils: Fix of 3 CVEs
CVE-2022-47673: Fix multiple out of bound reads which may cause a DoS - CVE-2022-47695: Fix NULL pointer segmentation fault which may cause a DoS - CVE-2022-47696: Fix read of unitialized field which may cause a DoS...
busybox: Fix of CVE-2022-48174
CVE-2022-48174: fix unlikely stack overflow - testsuite was enabled...
Update of amanda
Fix bug that leads to amdump and runtar problem due to options recognized as invalid falsely...
microcode_ctl: Fix of CVE-2022-40982
Update Intel CPU microcode to microcode-20230808 release addresses CVE-2022-40982: - Addition of 06-ba-02/0xe0 microcode in microcode.dat at revision 0x4119; - Addition of 06-ba-02/0xe0 microcode in microcode.dat at revision 0x4119; - Addition of 06-ba-03/0xe0 microcode in microcode.dat at...
php: Fix of 2 CVEs
CVE-2023-3823: Fix external entity loading in XML without enabling by sanitizing libxml2 globals before parsing - CVE-2023-3824: Fix buffer mismanagement in phardirread...
samba: Fix of CVE-2022-2127
CVE-2022-2127: Fix oud-of-bounds read triggered by maliciously request...
amanda: Fix of 2 CVEs
CVE-2022-37705: fix tar option filtering - CVE-2023-30577: introduce tar option allow list...
microcode_ctl: Fix of CVE-2023-20593
Update AMD CPU microcode to 2023-07-19 addresses CVE-2023-20593: - Addition AMD CPU microcode for processor family 17h: sig 0x008a0f00; - Update AMD CPU microcode for processor family 19h: sig 0x00a00f10, sig 0x00a00f11, sig 0x00a00f12; - Update AMD CPU microcode for processor family 17h: sig...
openssh: Fix of CVE-2023-38408
CVE-2023-38408: checks libraries before dlopen...
java-1.8.0-openjdk: Fix of 2 CVEs
Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u382-b05. That fixes following CVEs: - CVE-2023-22045: Array indexing integer overflow issue. 8304468 - CVE-2023-22049: Improper handling of slash characters in URI-to-path conversion 8305312 - Remove patch for pkcs11 cause issue was fixed in...
Update of nss
Update to CKBI 2.62 from NSS 3.91 - Added: - Certificate "BJCA Global Root CA1" - Certificate "BJCA Global Root CA2"...
Update of ca-certificates
update to CKBI 2.62 from NSS 3.91 - added new certificates: - Certificate "BJCA Global Root CA1" - Certificate "BJCA Global Root CA2"...
python: Fix of CVE-2023-24329
CVE-2023-24329: part2: Start stripping C0 control and space chars in urlsplit - Also correct the first CVE-2023-24329 patch: Fix testattributesbadscheme to check for non-ascii symbol as first character of url...
openldap: Fix of CVE-2023-2953
CVE-2023-2953: added check for strdup failure, to avoid null pointer dereference...