LinuxSecurity.com

Fedora 41: chromium 2024-9e85c72624 Security Advisory Updates

18.09.2024 09:30 update to 128.0.6613.137 * High CVE-2024-8636: Heap buffer overflow in Skia * High CVE-2024-8637: Use after free in Media Router * High CVE-2024-8638: Type Confusion in V8 * High CVE-2024-8639: Use after free in Autofill

Debian: DSA-5772-1: libreoffice Security Advisory Updates

18.09.2024 09:30 Yufan You discovered that Libreoffice's handling of documents based on ZIP archives was suspectible to spoofing attacks when the repair mode attempts to address a malformed archive structure.

Debian: DSA-5771-1: php-twig Security Advisory Updates

18.09.2024 09:30 Fabien Potencier discovered that under some conditions the sandbox mechanism of Twig, a template engine for PHP, could by bypassed. For the stable distribution , this problem has been fixed in

Debian: DSA-5770-1: expat Security Advisory Updates

18.09.2024 09:30 Shang-Hung Wan discovered multiple vulnerabilities in the Expat XML parsing C library, which could result in denial of service or potentially the execution of arbitrary code.

Ubuntu 7000-2: Expat Security Advisory Updates

18.09.2024 09:30 Several security issues were fixed in Expat.

Ubuntu 7017-1: Quagga Security Advisory Updates

17.09.2024 23:45 Quagga could be made to crash if it received specially crafted network traffic.

Ubuntu 7016-1: FRR Security Advisory Updates

17.09.2024 23:45 FRR could be made to crash if it received specially crafted network traffic.

SUSE: 2024:3289-1 important: gstreamer-plugins-bad, libvpl Security Advisory Updates

17.09.2024 23:45 * bsc#1218534 * bsc#1219494 * bsc#1223263 * bsc#1226892 * bsc#1226897

openSUSE: 2024:0305-1 important: gstreamer-plugins-bad Advisory Security Update

17.09.2024 23:45 An update that solves four vulnerabilities and has one errata is now available.

Debian LTS: DLA-3890-1: galera-4 new upstream version

17.09.2024 23:45 A new stable version was released for galera-4, a synchronous multimaster replication engine for MySQL and MariaDB. This fixes several issues detailed at:

Ubuntu 7001-2: xmltok library Security Advisory Updates

17.09.2024 23:45 Several security issues were fixed in libxmltok.

Fedora 40: microcode_ctl 2024-e6b5e38ae6 Security Advisory Updates

17.09.2024 13:45 Update to upstream 2.1-45. 20240910 Update of 06-97-02/0x07 microcode from revision 0x35 up to 0x36; Update of 06-97-05/0x07 microcode from revision 0x35 up to 0x36;

Mageia 2024-0307: clamav Security Advisory Updates

17.09.2024 13:45 Fixed a possible out-of-bounds read bug in the PDF file parser that could cause a denial-of-service condition. Changed the logging module to disable following symlinks on Linux and Unix systems so as to prevent an attacker with existing access to the 'clamd' or 'freshclam' services from using a symlink to corrupt system

Mageia 2024-0306: suricata Security Advisory Updates

17.09.2024 13:45 CVE-2024-37151 Mishandling of multiple fragmented packets using the same IP ID value can lead to packet reassembly failure, which can lead to policy bypass. CVE-2024-38534 Crafted modbus traffic can lead to unlimited resource accumulation within a flow

Fedora 39: python3.13 2024-f2fc325c40 Security Advisory Updates

17.09.2024 13:45 Python 3.13.0rc2