LinuxSecurity.com

Fedora 40: dotnet9.0 2024-70cf80279f Security Advisory Updates

18.11.2024 14:30 This is the .NET 9.0 GA release. It contains security fixes for CVE-2024-43498 and CVE-2024-43499 Announcement: https://devblogs.microsoft.com/dotnet/announcing-dotnet-9/ Release Notes: https://github.com/dotnet/core/blob/main/release- notes/9.0/9.0.0/9.0.0.md

Ubuntu 7106-1: Tomcat Security Advisory Updates

18.11.2024 14:30 Several security issues were fixed in Tomcat.

Oracle8: ELSA-2024-9689: binutils Low Security Advisory Updates

18.11.2024 14:30 The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

Oracle8: ELSA-2024-9636: webkit2gtk3 Important Security Advisory Updates

18.11.2024 14:30 The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

Oracle8: ELSA-2024-9644: squid security Important Security Advisory Updates

18.11.2024 14:30 The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

Oracle7: ELSA-2024-7553: cups-filters Important Security Advisory Updates

18.11.2024 14:30 The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

Debian LTS: DLA-3956-1: smarty3 Security Advisory Updates

18.11.2024 04:15 Multiple vulnerabilties were discovered for smarty3, a widely-used PHP templating engine, which potentially allows an attacker to perform an XSS .

Gentoo: GLSA-202411-08: X.Org X server, XWayland: Security Advisory Updates

18.11.2024 04:15 A vulnerability has been discovered in the Xorg Server and XWayland, the worst of which can result in privilege escalation.

Gentoo: GLSA-202411-07: Pillow: Arbitrary code executionSecurity Advisory Updates

18.11.2024 04:15 A vulnerability has been discovered in Pillow, which may lead to arbitrary code execution.

Fedora 41: ghostscript 2024-69af78a508 Security Advisory Updates

17.11.2024 18:30 CVE-2024-46951 ghostscript: Arbitrary Code Execution in Artifex Ghostscript Pattern Color Space 2325241 - CVE-2024-46952 CVE-2024-46953 CVE-2024-46954 CVE-2024-46955 CVE-2024-46956 ghostscript: various flaws

Debian LTS: DLA-3955-1: waitress Security Advisory Updates

17.11.2024 08:30 DoS due to resource exhaustion has been fixed in waitress, a Python Web Server Gateway Interface. For Debian 11 bullseye, this problem has been fixed in version

Debian LTS: DLA-3954-1: postgresql-13 Security Advisory Updates

16.11.2024 22:30 Multiple security issues were discovered in PostgreSQL, which may result in the execution of arbitrary code, privilege escalation or log manipulation. For Debian 11 bullseye, these problems have been fixed in version

Fedora 41: microcode_ctl 2024-28ea86c8aa Security Advisory Updates

16.11.2024 12:45 Update to upstream 2.1-47. 20241112 Update of 06-8f-04/0x87 microcode from revision 0x2b0005c0 up to 0x2b000603; Update of 06-8f-05/0x87 microcode from revision 0x2b0005c0 up to 0x2b000603;

Fedora 41: php-bartlett-PHP-CompatInfo 2024-16a71b7cf5 Security Advisory Updates

16.11.2024 12:45 bartlett/php-compatinfo-db 6.12.0 - 2024-10-29 Added db:show command is now able to display deprecations on all components PHP 8.2.25 support PHP 8.3.13 support

Fedora 41: python-waitress 2024-157678aad0 Security Advisory Updates

16.11.2024 12:45 Update to version 3.0.1, which resolves CVE-2024-49768 and CVE-2024-49769.