5998 matches found
Updated libsndfile packages fix security vulnerability rhbz#2027690
Fix heap buffer overflow in flac...
Updated vim packages fix security vulnerability
heap-based buffer overflow in findhelptags in src/help.c...
Updated java openjdk packages fix security vulnerability
The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fixes: OpenJDK: Loop in HttpsServer triggered during TLS session close JSSE, 8254967 CVE-2021-35565 OpenJDK: Incorrect principal selection when using Kerberos...
Updated nginx/vsftpd packages fix security vulnerability
ALPACA: Application Layer Protocol Confusion - Analyzing and Mitigating Cracks in TLS Authentication...
Updated gmp packages fix security vulnerability
Integer overflow in mpz/inpraw.c and resultant buffer overflow via crafted input, leading to a segmentation fault on 32-bit platforms...
Updated kernel packages fix security vulnerabilities
This kernel update is based on upstream 5.15.6 and fixes at least the following security issues: A vulnerability was found in Linux kernel, where a use-after-frees in nouveau's postclose handler could happen if removing device that is not common to remove video card physically without power-off,...
Updated kernel-linus packages fix security vulnerabilities
This kernel-linus update is based on upstream 5.15.6 and fixes at least the following security issues: A vulnerability was found in Linux kernel, where a use-after-frees in nouveau's postclose handler could happen if removing device that is not common to remove video card physically without...
Updated mariadb packages fix security vulnerability
Advisory text to describe the update. Wrap lines at 75 chars. Security issue in InnoDB component has been discovered and fixed CVE-2021-35604. Additional bugs fixes too...
Updated golang packages fix security vulnerability
ImportedSymbols in debug/macho for Open or OpenFat in Go before 1.16.10 and 1.17.x before 1.17.3 Accesses a Memory Location After the End of a Buffer, aka an out-of-bounds slice situation. CVE-2021-41771 Go before 1.16.10 and 1.17.x before 1.17.3 allows an archive/zip Reader.Open panic via a...
Updated vim packages fix security vulnerability
Multiple Heap-based Buffer Overflows Stack-based Buffer overflows and a use after free...
Updated perl/perl-Encode packages fix security vulnerability
Encode.pm, as distributed in Perl through 5.34.0, allows local users to gain privileges via a Trojan horse Encode::ConfigLocal library in the current working directory that preempts dynamic module loading. Exploitation requires an unusual configuration, and certain 2021 versions of Encode.pm 3.05...
Updated hivex packages fix security vulnerability
Fixes limit recursion in ri-records. CVE-2021-3622...
Updated gfbgraph packages fix security vulnerability
In GNOME libgfbgraph through 0.2.4, gfbgraph-photo.c does not enable TLS certificate verification on the SoupSessionSync objects it creates, leaving users vulnerable to network MITM attacks. NOTE: this is similar to CVE-2016-20011...
Updated bluez packages fix security vulnerability
BlueZ is a Bluetooth protocol stack for Linux. In affected versions a vulnerability exists in sdpcstateallocbuf which allocates memory which will always be hung in the singly linked list of cstates and will not be freed. This will cause a memory leak over time. The data can be a very large object...
Updated nss packages fix security vulnerability
NSS Network Security Services versions prior to 3.73 or 3.68.1 ESR are vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS 7, or PKCS 12 are likely to be impacted. Applications using NSS...
Updated busybox packages fix security vulnerability
A NULL pointer dereference in Busybox's hush applet leads to denial of service when processing a crafted shell command, due to missing validation after a \x03 delimiter character. This may be used for DoS under very rare conditions of filtered command input. CVE-2021-42376 An attacker-controlled...
Updated docker-containerd packages fix security vulnerability
The OCI Distribution Spec project defines an API protocol to facilitate and standardize the distribution of content. In the OCI Distribution Specification version 1.0.0 and prior, the Content-Type header alone was used to determine the type of document during push and pull operations. Documents...
Updated udisks2/libblockdev packages fix security vulnerability
A vulnerability found in udisks2. This flaw allows an attacker to input a specially crafted image file/USB leading to kernel panic. The highest threat from this vulnerability is to system availability...
Updated glibc packages fixes security related bugs
This update fixes a few security related bugs: - regex: fix buffer read overrun in search BZ 28470 - nptl: Do not set signal mask on second setjmp return BZ 28607...
Updated python-reportlab packages fix security vulnerability
Server-side Request Forgery SSRF...
Updated freerdp packages fix security vulnerability
All FreeRDP clients prior to version 2.4.1 using gateway connections '/gt:rpc' fail to validate input data. A malicious gateway might allow client memory to be written out of bounds. This issue has been resolved in version 2.4.1. If you are unable to update then use /gt:http rather than /gt:rdp...
Updated postgresql packages fix security vulnerability
Server processes unencrypted bytes from man-in-the-middle. CVE-2021-23214 libpq processes unencrypted bytes from man-in-the-middle. CVE-2021-23222...
Updated openexr packages fix security vulnerability
Integer-overflow in Imf31::bytesPerDeepLineTable. CVE-2021-3933 Divide-by-zero in Imf31::RGBtoXYZ. CVE-2021-3941...
Updated couchdb packages fix security vulnerability
Privilege escalation that allows an attacker to add or remove data in any database or make configuration changes. CVE-2021-38295...
Updated rsh packages fix security vulnerability
In NetKit through 0.17, rcp.c in the rcp client allows remote rsh servers to bypass intended access restrictions via the filename of . or an empty filename. The impact is modifying the permissions of the target directory on the client side. This is similar to CVE-2018-20685. CVE-2019-7282 An issu...
Updated arpwatch packages fix security vulnerability
A symbolic link Symlink following vulnerability in arpwatch allows local attackers with control of the runtime user to run arpwatch and to escalate to root upon the next restart of arpwatch. CVE-2021-25321...
Updated php packages fix security vulnerability
Header injection via defaultmimetype / defaultcharset mbstring may use pointer from some previous request Unexpected behavior with arrays and JIT Special character is breaking the path in xml function CVE-2021-21707 XMLReader::getParserProperty may throw with a valid property...
Updated wireshark packages fix security vulnerability
IPPUSB dissector crash CVE-2021-39920. Modbus dissector crash CVE-2021-39921. C12.22 dissector crash CVE-2021-39922. PNRP dissector large loop wnpa-sec-2021-11. Bluetooth DHT dissector large loop CVE-2021-39924. Bluetooth SDP dissector crash CVE-2021-39925. Bluetooth HCIISO dissector crash...
Updated chromium-browser-stable packages fix security vulnerability
The chromium-browser-stable package has been updated to 96.0.4664.45 version that fixes multiples security vulnerabilities. For changes from 94.0.4606.71 released on September 30, 2021 to the 96.0.4664.45 version, see referenced advisories...
Updated rust packages fix security vulnerability
Updated rust packages fix security vulnerability This update mitigates a security concern in the Unicode standard, affecting source code containing "bidirectional override" Unicode codepoints: in some cases the use of those codepoints could lead to the reviewed code being different than the...
Updated python-django-filter packages fix security vulnerability
In django-filter before version 2.4.0, automatically generated 'NumberFilter' instances, whose value was later converted to an integer, were subject to potential DoS from maliciously input using exponential format with sufficiently large exponents...
Updated transfig packages fix security vulnerability
Correct buffer overflows and segfaults, mainly due to maliciously crafted input files...
Updated qt4 packages fix security vulnerability
CVE-2020-24741, Do not attempt to load a library relative to $PWD...
Updated tinyxml packages fix security vulnerability
TinyXML through 2.6.2 has an infinite loop in TiXmlParsingData::Stamp in tinyxmlparser.cpp via the TIXMLUTFLEAD0 case. It can be triggered by a crafted XML message and leads to a denial of service. CVE-2021-42260...
Updated opensc packages fix security vulnerability
CVE-2021-42780: Fixed use after return in insertpin bsc1192005. CVE-2021-42779: Fixed use after free in scfilevalid bsc1191992. CVE-2021-42781: Fixed multiple heap buffer overflows in pkcs15-oberthur.c bsc1192000. CVE-2021-42782: Stack buffer overflow issues in various places bsc1191957...
Updated kernel-linus packages fix security vulnerabilities
This kernel-linus update is based on upstream 5.10.78 and fixes at least the following security issues: A use-after-free vulnerability in the NFC stack can lead to a threat to confidentiality, integrity, and system availability CVE-2021-3760. A flaw in the SCTP stack where a blind attacker may be...
Updated openafs packages fix security vulnerability
Openafs packages have been updated to 1.9.1 for various bugfixes, and added a fix for security vulnerability: There exist in the wild AFS3 clients that improperly construct access control lists which are then stored to directories via RXAFSStoreACL opcode 134. These clients add negative access...
Updated kernel packages fix security vulnerabilities
This kernel update is based on upstream 5.10.78 and fixes at least the following security issues: A use-after-free vulnerability in the NFC stack can lead to a threat to confidentiality, integrity, and system availability CVE-2021-3760. A flaw in the SCTP stack where a blind attacker may be able ...
Updated sssd packages fix security vulnerability
Shell command injection in sssctl. CVE-2021-3621...
Updated libesmtp packages fix security vulnerability
libESMTP through 1.0.6 mishandles domain copying into a fixed-size buffer in ntlmbuildtype2 in ntlm/ntlmstruct.c, as demonstrated by a stack-based buffer over-read. CVE-2019-19977...
Updated libzapojit packages fix security vulnerability
In GNOME libzapojit through 0.0.3, zpj-skydrive.c does not enable TLS certificate verification on the SoupSessionSync objects it creates, leaving users vulnerable to network MITM attacks. CVE-2021-39360...
Updated firefox packages fix security vulnerability
The iframe sandbox rules were not correctly applied to XSLT stylesheets, allowing an iframe to bypass restrictions such as executing scripts or navigating the top-level frame CVE-2021-38503. When interacting with an HTML input element's file picker dialog with webkitdirectory set, a use-after-fre...
Updated thunderbird packages fix security vulnerabilities
Updated thunderbird packages fix security vulnerabilities: The iframe sandbox rules were not correctly applied to XSLT stylesheets, allowing an iframe to bypass restrictions such as executing scripts or navigating the top-level frame CVE-2021-38503. When interacting with an HTML input element's...
Updated php packages fix security vulnerability
Updated php packages fix security vulnerability: In PHP versions 8.0.x below 8.0.12, when running PHP FPM SAPI with main FPM daemon process running as root and child worker processes running as lower-privileged users, it is possible for the child processes to access memory shared with the main...
Updated squid packages fix security vulnerability
Updated squid packages fix security vulnerability: Squid through 4.14 and 5.x through 5.0.5, in some configurations, allows information disclosure because of an out-of-bounds read in WCCP protocol data. This can be leveraged as part of a chain for remote code execution as nobody CVE-2021-28116...
Updated docker packages fix security vulnerabilities
Updated docker packages fix security vulnerabilities: A bug was found in Moby Docker Engine where attempting to copy files using docker cp into a specially-crafted container can result in Unix file permission changes for existing files in the hosts filesystem, widening access to others. This bug...
Updated libcaca packages fix security vulnerability
A flaw was found in libcaca. A heap buffer overflow in export.c in function exporttga might lead to memory corruption and other potential consequences. CVE-2021-30498 A flaw was found in libcaca. A buffer overflow of export.c in function exporttroff might lead to memory corruption and other...
Updated ffmpeg packages fix security vulnerability
FFmpeg 4.2 is affected by a Divide By Zero issue via libavcodec/aacpsy.c, which allows a remote malicious user to cause a Denial of Service. CVE-2020-20446 FFmpeg 4.2 is affected by null pointer dereference passed as argument to libavformat/aviobuf.c, which could cause a Denial of Service...
Updated cloud-init packages fix security vulnerability
cloud-init has the ability to generate and set a randomized password for system users. This functionality is enabled at runtime by passing cloud-config data such as: 'chpasswd: list: | user1:RANDOM' When instructing cloud-init to set a random password for a new user account, versions before 21.1....
Updated cairo packages fix security vulnerability
An issue was discovered in cairo 1.16.0. There is an infinite loop in the function arcerrornormalized in the file cairo-arc.c, related to arcmaxanglefortolerancenormalized. CVE-2019-6462...