05.12.2024 05:15 When using aiohttp as a web server and configuring static routes, it is necessary to specify the root path for static files. Additionally, the option 'follow_symlinks' can be used to determine whether to follow symbolic links outside the static root directory. When 'follow_symlinks' is set to True, there is no validation to check if reading a file is
05.12.2024 05:15 A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows a crafted guest driver to allocate and initialize a huge number of page tables to be used as a ring of descriptors for CQ and async events, potentially leading to an out-of-bounds read and crash of QEMU.
05.12.2024 05:15 * bsc#1219340 * bsc#1230423 * bsc#1233323 * bsc#1233325 * bsc#1233326
04.12.2024 19:01 * bsc#1227378 * bsc#1231795 * bsc#1233307 Cross-References:
04.12.2024 19:01 * bsc#1231795 * bsc#1233307 Cross-References: * CVE-2024-11168
04.12.2024 19:01 * bsc#1232747 * bsc#1233631 * bsc#1233632 Cross-References:
04.12.2024 19:01 * bsc#1231795 * bsc#1233307 Cross-References: * CVE-2024-11168
04.12.2024 19:01 * bsc#1027519 * bsc#1230366 * bsc#1232542 * bsc#1232622 * bsc#1232624
04.12.2024 19:01 * bsc#1227471 * bsc#1227651 * bsc#1228573 * bsc#1229553
04.12.2024 08:30 * bsc#1225429 * bsc#1229553 Cross-References: * CVE-2021-47517
03.12.2024 23:00 * bsc#1232258 Cross-References: * CVE-2024-49987
03.12.2024 23:00 * bsc#1231795 * bsc#1233307 Cross-References: * CVE-2024-11168
03.12.2024 23:00 * bsc#1233773 Cross-References: * CVE-2024-10524
03.12.2024 23:00 * bsc#1233651 * bsc#1233702 * bsc#1233703 Cross-References:
03.12.2024 23:00 * bsc#1233650 * bsc#1233695 Cross-References: * CVE-2024-11691
