27.02.2024 03:45 Several security issues were fixed in libde265.
27.02.2024 03:45 * bsc#1218733 Cross-References: * CVE-2023-51780
27.02.2024 03:45 * bsc#1215300 * bsc#1217116 * bsc#1218733 Cross-References:
27.02.2024 03:45 * bsc#1215300 * bsc#1218733 Cross-References: * CVE-2023-4921
27.02.2024 03:45 New openjpeg packages are available for Slackware 15.0 and -current to fix a security issue.
27.02.2024 03:45 It was discovered that engrampa, an archive manager for the MATE desktop environment was susceptible to path traversal when handling CPIO archives.
26.02.2024 17:45 Several security issues were fixed in GNU binutils.
26.02.2024 17:45 Hubert Kario discovered that GnuTLS, a portable library which implements the Transport Layer Security and Datagram Transport Layer Security protocols, was vulnerable to timing side-channel attack in the RSA-PSK key exchange, which could lead to leakage of sensitive data. The issue
26.02.2024 17:45 Roundcube Webmail could allow cross-site scripting attacks.
26.02.2024 07:45 Update to 115.8.0 https://www.mozilla.org/en-US/security/advisories/mfsa2024-07/ https://www.thunderbird.net/en-US/thunderbird/115.8.0/releasenotes/
25.02.2024 21:46 It was discovered that iwd, the iNet Wireless Daemon, does not properly handle messages in the 4-way handshake used when connecting to a protected WiFi network for the first time. An attacker can take advantage of this flaw to gain unauthorized access to a protected WiFi
25.02.2024 21:46 An issue has been found in libjwt, a C library to handle JWT . Due to using strcmp , which does not use constant time during execution, a timing side channel attack might be possible.
25.02.2024 12:15 Update to 122.0.6261.57 High CVE-2024-1669: Out of bounds memory access in Blink High CVE-2024-1670: Use after free in Mojo Medium CVE-2024-1671: Inappropriate implementation in Site Isolation Medium CVE-2024-1672: Inappropriate implementation in Content Security Policy
25.02.2024 12:15 Backport fix for CVE-2023-5841.
25.02.2024 12:15 Update to 2.6.0, fixes CVE-2023-52425, CVE-2023-52426.