LinuxSecurity.com

ArchLinux: 202410-1: oath-toolkit: privilege escalation

07.10.2024 14:45 The package oath-toolkit before version 2.6.12-1 is vulnerable to privilege escalation.

Fedora 39: chromium 2024-7aba3c1531 Security Advisory Updates

06.10.2024 19:15 update to 129.0.6668.89 High CVE-2024-7025: Integer overflow in Layout High CVE-2024-9369: Insufficient data validation in Mojo High CVE-2024-9370: Inappropriate implementation in V8

Mageia 2024-0326: ghostscript Security Advisory Updates

06.10.2024 08:45 Amongst other general bug fixes, this release addresses: CVE-2024-46951 CVE-2024-46952 CVE-2024-46953 CVE-2024-46954

Mageia 2024-0325: rootcerts nss firefox firefox-l10n Security Advisory Updates

06.10.2024 08:45 The current versions have reached EOL and several security vulnerabilities were fixed by Mozilla. We are having some issues that are delaying the build for some architectures, so for the moment we are releasing this update just for x86_64

Debian: DSA-5786-1: libgsf Security Advisory Updates

06.10.2024 08:45 Integer overflows flaws were discovered in the Compound Document Binary File format parser of libgsf, the GNOME Project G Structured File Library, which could result in the execution of arbitrary code if a specially crafted file is processed.

Debian: DSA-5785-1: mediawiki Security Advisory Updates

06.10.2024 08:45 Dom Walden discovered that the AbuseFilter extension in MediaWiki, a website engine for collaborative work, performed incomplete authorisation checks.

Fedora 40: chromium 2024-452b60addf Security Advisory Updates

05.10.2024 12:45 update to 129.0.6668.89 High CVE-2024-7025: Integer overflow in Layout High CVE-2024-9369: Insufficient data validation in Mojo High CVE-2024-9370: Inappropriate implementation in V8

Fedora 41: python-gcsfs 2024-9e55564ca7 Security Advisory Updates

05.10.2024 12:45 Update to new upstream version

Fedora 41: znc-push 2024-1c078a4771 Security Advisory Updates

05.10.2024 12:45 Fix CVE-2024-39844 https://wiki.znc.in/ChangeLog/1.9.0

Debian: DSA-5784-1: oath-toolkit Security Advisory Updates

05.10.2024 12:45 Fabian Vogt reported that the PAM module in oath-toolkit, a collection of components to build one-time password authentication systems, does not safely perform file operations in users's home directories when using the usersfile feature (allowing to place the OTP state in the home

Debian: DSA-5783-1: firefox-esr Security Advisory Updates

05.10.2024 12:45 Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code.

SUSE: 2024:3523-1 critical: cups-filters Security Advisory Updates

05.10.2024 03:15 * bsc#1230939 Cross-References: * CVE-2024-47176

SUSE: 2024:3524-1 important: frr Security Advisory Updates

05.10.2024 03:15 * bsc#1230866 Cross-References: * CVE-2017-15865

SUSE: 2024:3525-1 important: openssl-3 Security Advisory Updates

05.10.2024 03:15 * bsc#1230698 Cross-References: * CVE-2024-41996

SUSE: 2024:3526-1 moderate: Mesa Security Advisory Updates

05.10.2024 03:15 * bsc#1222040 * bsc#1222041 * bsc#1222042 Cross-References: