16.06.2024 14:15 A vulnerability was found in GNU Nano that allows a possible privilege escalation through an insecure temporary file. If Nano is killed while editing, a file it saves to an emergency file with the permissions of the running user provides a window of opportunity for attackers to escalate privileges through a malicious symlink.
16.06.2024 14:15 Use-after-free in networking. Use-after-free in JavaScript object transplant. External protocol handlers leaked by timing attack. Sandboxed iframes were able to bypass sandbox restrictions to open a new window.
16.06.2024 14:15 Several vulnerabilities have been discovered in the FFmpeg multimedia framework, which could result in denial of service or potentially the execution of arbitrary code if malformed files/streams are processed.
16.06.2024 04:30 Multiple security issues were discovered in Thunderbird, which could result inthe execution of arbitrary code. For the oldstable distribution , these problems have been fixed
15.06.2024 18:00 sendmail allowed SMTP smuggling in certain configurations. Remote attackers can use a published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, allowing bypass of an SPF protection mechanism. This occurs because sendmail supports
15.06.2024 18:00 A vulnerability was discovered in Atril, a simple document viewer designed for the MATE desktop environment. CVE-2023-52076
15.06.2024 08:45 Unauthorized local user access to the session manager has been fixed in the Plasma Workspace component of the KDE Plasma desktop environment. For Debian 10 buster, this problem has been fixed in version
15.06.2024 08:45 Several security issues were fixed in the Linux kernel.
15.06.2024 08:45 Several security issues were fixed in the Linux kernel.
15.06.2024 08:45 Several security issues were fixed in the Linux kernel.
15.06.2024 08:45 There exists integer overflows in libvpx in versions prior to 1.14.1. Calling vpx_img_alloc with a large value of the d_w, d_h, or align parameter may result in integer overflows in the calculations of buffer sizes and offsets and some fields of the returned vpx_image_t struct may be invalid. Calling vpx_img_wrap with a large value of the d_w, d_h,
15.06.2024 08:45 Security issues were discovered in Chromium, which could result in the execution of arbitrary code, denial of service or information disclosure.
14.06.2024 23:00 * bsc#1225983 Cross-References: * CVE-2024-21096
14.06.2024 23:00 * bsc#1224122 * bsc#1226136 Cross-References: * CVE-2024-24786
14.06.2024 23:00 * bsc#1226020 Cross-References: * CVE-2024-5171
