6011 matches found
Updated mediawiki packages fix security vulnerabilities
Updated mediawiki packages fix security vulnerabilities: == Security fixes == T292763. CVE-2021-44854 REST API incorrectly publicly caches autocomplete search results from private wikis. T271037, CVE-2021-44856 Title blocked in AbuseFilter can be created via Special:ChangeContentModel. T297322,...
Updated log4j packages fix security vulnerability
Apache Log4j2 =2.14.1 JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can control log messages or log message parameters can execute arbitrary code loaded from LDAP servers when...
Updated fetchmail packages fix security vulnerability
Update to fetchmail 6.4.24 fixes STARTTLS session encryption bypassing. CVE-2021-39272...
Updated python-django packages fix security vulnerability
Potential bypass of an upstream access control based on URL paths. CVE-2021-44420 HTTP requests for URLs with trailing newlines could bypass an upstream access control based on URL paths...
Updated libvirt packages fix security vulnerability
Fix deadlock on virStoragePoolLookupByTargetPath failure bz 1986113 CVE-2021-3667 More CAPSETPCAP warning fixes bz 1924218 Handle unknown firmware.json errors...
Updated opencontainers-runc packages fix security vulnerability
It was discovered that there was an overflow issue in runc, the runtime for the Open Container Project, often used with Docker. The Netlink 'bytemsg' length field could have allowed an attacker to override Netlink-based container configurations. This vulnerability required the attacker to have so...
Updated thunderbird packages fix security vulnerability
Thunderbird unexpectedly enabled JavaScript in the composition area. The JavaScript execution context was limited to this area and did not receive chrome-level privileges, but could be used as a stepping stone to further an attack with other vulnerabilities CVE-2021-43528. Under certain...
Updated chromium-browser-stable packages fix security vulnerability
CVE-2021-4052: Use after free in web apps. CVE-2021-4053: Use after free in UI. CVE-2021-4079: Out of bounds write in WebRTC. CVE-2021-4054: Incorrect security UI in autofill. CVE-2021-4078: Type confusion in V8. CVE-2021-4055: Heap buffer overflow in extensions. CVE-2021-4056: Type Confusion in...
Updated speex packages fix security vulnerability
Fixed zero division error in readsamples bsc1192580. CVE-2020-23903...
Updated curaengine packages fix security vulnerability
Buffer overflow vulnerability in function stbiextendreceive in stbimage.h in stb 2.26 via a crafted JPEG file. CVE-2021-28021 An issue was discovered in stb stbimage.h 1.33 through 2.27. The HDR loader parsed truncated end-of-file RLE scanlines as an infinite sequence of zero-length runs. An...
Updated firefox packages fix security vulnerability
Under certain circumstances, asynchronous functions could have caused a navigation to fail but expose the target URL CVE-2021-43536. An incorrect type conversion of sizes from 64bit to 32bit integers allowed an attacker to corrupt memory leading to a potentially exploitable crash due to a heap...
Updated nginx/vsftpd packages fix security vulnerability
ALPACA: Application Layer Protocol Confusion - Analyzing and Mitigating Cracks in TLS Authentication...
Updated sharpziplib/mono-tools packages fix security vulnerability
Update to sharpziplib 1.3.3 which contains a security fix, and rebuild of mono-tools to use the fixed version...
Updated heimdal packages fix security vulnerability
A null pointer de-reference was found in the way samba kerberos server handled missing sname in TGS-REQ Ticket Granting Server - Request. An authenticated user could use this flaw to crash a samba server using heimdal...
Updated java openjdk packages fix security vulnerability
The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fixes: OpenJDK: Loop in HttpsServer triggered during TLS session close JSSE, 8254967 CVE-2021-35565 OpenJDK: Incorrect principal selection when using Kerberos...
Updated libsndfile packages fix security vulnerability rhbz#2027690
Fix heap buffer overflow in flac...
Updated gmp packages fix security vulnerability
Integer overflow in mpz/inpraw.c and resultant buffer overflow via crafted input, leading to a segmentation fault on 32-bit platforms...
Updated vim packages fix security vulnerability
heap-based buffer overflow in findhelptags in src/help.c...
Updated kernel packages fix security vulnerabilities
This kernel update is based on upstream 5.15.6 and fixes at least the following security issues: A vulnerability was found in Linux kernel, where a use-after-frees in nouveau's postclose handler could happen if removing device that is not common to remove video card physically without power-off,...
Updated kernel-linus packages fix security vulnerabilities
This kernel-linus update is based on upstream 5.15.6 and fixes at least the following security issues: A vulnerability was found in Linux kernel, where a use-after-frees in nouveau's postclose handler could happen if removing device that is not common to remove video card physically without...
Updated mariadb packages fix security vulnerability
Advisory text to describe the update. Wrap lines at 75 chars. Security issue in InnoDB component has been discovered and fixed CVE-2021-35604. Additional bugs fixes too...
Updated golang packages fix security vulnerability
ImportedSymbols in debug/macho for Open or OpenFat in Go before 1.16.10 and 1.17.x before 1.17.3 Accesses a Memory Location After the End of a Buffer, aka an out-of-bounds slice situation. CVE-2021-41771 Go before 1.16.10 and 1.17.x before 1.17.3 allows an archive/zip Reader.Open panic via a...
Updated vim packages fix security vulnerability
Multiple Heap-based Buffer Overflows Stack-based Buffer overflows and a use after free...
Updated docker-containerd packages fix security vulnerability
The OCI Distribution Spec project defines an API protocol to facilitate and standardize the distribution of content. In the OCI Distribution Specification version 1.0.0 and prior, the Content-Type header alone was used to determine the type of document during push and pull operations. Documents...
Updated gfbgraph packages fix security vulnerability
In GNOME libgfbgraph through 0.2.4, gfbgraph-photo.c does not enable TLS certificate verification on the SoupSessionSync objects it creates, leaving users vulnerable to network MITM attacks. NOTE: this is similar to CVE-2016-20011...
Updated bluez packages fix security vulnerability
BlueZ is a Bluetooth protocol stack for Linux. In affected versions a vulnerability exists in sdpcstateallocbuf which allocates memory which will always be hung in the singly linked list of cstates and will not be freed. This will cause a memory leak over time. The data can be a very large object...
Updated perl/perl-Encode packages fix security vulnerability
Encode.pm, as distributed in Perl through 5.34.0, allows local users to gain privileges via a Trojan horse Encode::ConfigLocal library in the current working directory that preempts dynamic module loading. Exploitation requires an unusual configuration, and certain 2021 versions of Encode.pm 3.05...
Updated udisks2/libblockdev packages fix security vulnerability
A vulnerability found in udisks2. This flaw allows an attacker to input a specially crafted image file/USB leading to kernel panic. The highest threat from this vulnerability is to system availability...
Updated hivex packages fix security vulnerability
Fixes limit recursion in ri-records. CVE-2021-3622...
Updated nss packages fix security vulnerability
NSS Network Security Services versions prior to 3.73 or 3.68.1 ESR are vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS 7, or PKCS 12 are likely to be impacted. Applications using NSS...
Updated busybox packages fix security vulnerability
A NULL pointer dereference in Busybox's hush applet leads to denial of service when processing a crafted shell command, due to missing validation after a \x03 delimiter character. This may be used for DoS under very rare conditions of filtered command input. CVE-2021-42376 An attacker-controlled...
Updated glibc packages fixes security related bugs
This update fixes a few security related bugs: - regex: fix buffer read overrun in search BZ 28470 - nptl: Do not set signal mask on second setjmp return BZ 28607...
Updated openexr packages fix security vulnerability
Integer-overflow in Imf31::bytesPerDeepLineTable. CVE-2021-3933 Divide-by-zero in Imf31::RGBtoXYZ. CVE-2021-3941...
Updated postgresql packages fix security vulnerability
Server processes unencrypted bytes from man-in-the-middle. CVE-2021-23214 libpq processes unencrypted bytes from man-in-the-middle. CVE-2021-23222...
Updated freerdp packages fix security vulnerability
All FreeRDP clients prior to version 2.4.1 using gateway connections '/gt:rpc' fail to validate input data. A malicious gateway might allow client memory to be written out of bounds. This issue has been resolved in version 2.4.1. If you are unable to update then use /gt:http rather than /gt:rdp...
Updated rsh packages fix security vulnerability
In NetKit through 0.17, rcp.c in the rcp client allows remote rsh servers to bypass intended access restrictions via the filename of . or an empty filename. The impact is modifying the permissions of the target directory on the client side. This is similar to CVE-2018-20685. CVE-2019-7282 An issu...
Updated couchdb packages fix security vulnerability
Privilege escalation that allows an attacker to add or remove data in any database or make configuration changes. CVE-2021-38295...
Updated python-reportlab packages fix security vulnerability
Server-side Request Forgery SSRF...
Updated arpwatch packages fix security vulnerability
A symbolic link Symlink following vulnerability in arpwatch allows local attackers with control of the runtime user to run arpwatch and to escalate to root upon the next restart of arpwatch. CVE-2021-25321...
Updated rust packages fix security vulnerability
Updated rust packages fix security vulnerability This update mitigates a security concern in the Unicode standard, affecting source code containing "bidirectional override" Unicode codepoints: in some cases the use of those codepoints could lead to the reviewed code being different than the...
Updated chromium-browser-stable packages fix security vulnerability
The chromium-browser-stable package has been updated to 96.0.4664.45 version that fixes multiples security vulnerabilities. For changes from 94.0.4606.71 released on September 30, 2021 to the 96.0.4664.45 version, see referenced advisories...
Updated php packages fix security vulnerability
Header injection via defaultmimetype / defaultcharset mbstring may use pointer from some previous request Unexpected behavior with arrays and JIT Special character is breaking the path in xml function CVE-2021-21707 XMLReader::getParserProperty may throw with a valid property...
Updated wireshark packages fix security vulnerability
IPPUSB dissector crash CVE-2021-39920. Modbus dissector crash CVE-2021-39921. C12.22 dissector crash CVE-2021-39922. PNRP dissector large loop wnpa-sec-2021-11. Bluetooth DHT dissector large loop CVE-2021-39924. Bluetooth SDP dissector crash CVE-2021-39925. Bluetooth HCIISO dissector crash...
Updated python-django-filter packages fix security vulnerability
In django-filter before version 2.4.0, automatically generated 'NumberFilter' instances, whose value was later converted to an integer, were subject to potential DoS from maliciously input using exponential format with sufficiently large exponents...
Updated tinyxml packages fix security vulnerability
TinyXML through 2.6.2 has an infinite loop in TiXmlParsingData::Stamp in tinyxmlparser.cpp via the TIXMLUTFLEAD0 case. It can be triggered by a crafted XML message and leads to a denial of service. CVE-2021-42260...
Updated qt4 packages fix security vulnerability
CVE-2020-24741, Do not attempt to load a library relative to $PWD...
Updated transfig packages fix security vulnerability
Correct buffer overflows and segfaults, mainly due to maliciously crafted input files...
Updated opensc packages fix security vulnerability
CVE-2021-42780: Fixed use after return in insertpin bsc1192005. CVE-2021-42779: Fixed use after free in scfilevalid bsc1191992. CVE-2021-42781: Fixed multiple heap buffer overflows in pkcs15-oberthur.c bsc1192000. CVE-2021-42782: Stack buffer overflow issues in various places bsc1191957...
Updated kernel packages fix security vulnerabilities
This kernel update is based on upstream 5.10.78 and fixes at least the following security issues: A use-after-free vulnerability in the NFC stack can lead to a threat to confidentiality, integrity, and system availability CVE-2021-3760. A flaw in the SCTP stack where a blind attacker may be able ...
Updated openafs packages fix security vulnerability
Openafs packages have been updated to 1.9.1 for various bugfixes, and added a fix for security vulnerability: There exist in the wild AFS3 clients that improperly construct access control lists which are then stored to directories via RXAFSStoreACL opcode 134. These clients add negative access...