28.11.2024 04:00 Applications that use Wget to access a remote resource using shorthand URLs and pass arbitrary user credentials in the URL are vulnerable. In these cases attackers can enter crafted credentials which will cause Wget to access an arbitrary host.
28.11.2024 04:00 Improper Finite State Machines in the Hardware logic in some 4th and 5th Generation Intel® Xeon® Processors may allow an authorized user to potentially enable denial of service via local access. Improper conditions check in some Intel® Xeon® processor memory
28.11.2024 04:00 Calling any of the Parse functions on Go source code which contains deeply nested literals can cause a panic due to stack exhaustion. CVE-2024-34155 Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion CVE-2024-34156
27.11.2024 17:45 * bsc#1230366 * bsc#1232542 * bsc#1232622 * bsc#1232624
27.11.2024 17:45 Several security issues were fixed in libsoup.
27.11.2024 17:45 Several security issues were fixed in libsoup3.
27.11.2024 17:45 fix crash in in ogg vorbis
27.11.2024 17:45 Backport fix for CVE-2024-9287 Update to python-3.11.0.
27.11.2024 17:45 Update to 2.82.2, fixes CVE-2024-52533.
27.11.2024 08:15 New mozilla-thunderbird packages are available for Slackware 15.0 and -current to fix security issues.
27.11.2024 08:15 New mozilla-firefox packages are available for Slackware 15.0 and -current to fix security issues.
27.11.2024 08:15 mpg123 a popular MPEG layer 1/2/3 audio player was afected by a vulnerability. An out-of-bounds write flaw was found in mpg123 when handling crafted
27.11.2024 08:15 Twisted could allow unintended access to information over the network.
27.11.2024 08:15 Multiple security issues were found in PHP, a widely-used open source general purpose scripting language which could result in denial of service, CLRF injection or information disclosure.
27.11.2024 08:15 TinyGLTF could be made to crash or run programs as your login if it received specially crafted input.
