Aggregator
5.15.155: longterm
5.10.215: longterm
5.4.274: longterm
4.19.312: longterm
DSA-5658-1 linux - security update
unbound-1.19.3-1.fc38
- unbound-1.19.3-1.fc38
- Use the origin (DNAME) TTL for synthesized CNAMEs as per RFC 6672.
- Bug fixes
https://nlnetlabs.nl/projects/unbound/download/#unbound-1-19-3
unbound-1.19.3-1.fc39
- unbound-1.19.3-1.fc39
- Use the origin (DNAME) TTL for synthesized CNAMEs as per RFC 6672.
- Bug fixes
https://nlnetlabs.nl/projects/unbound/download/#unbound-1-19-3
unbound-1.19.3-1.fc40
- unbound-1.19.3-1.fc40
- Use the origin (DNAME) TTL for synthesized CNAMEs as per RFC 6672.
- Bug fixes
https://nlnetlabs.nl/projects/unbound/download/#unbound-1-19-3
CVE-2024-1931 - Fix trim of EDE text from large udp responses from spinning cpu.
unbound-1.19.3-1.fc41
- unbound-1.19.3-1.fc41
Automatic update for unbound-1.19.3-1.fc41.
Changelog * Fri Apr 12 2024 Petr Menšík <pemensik@redhat.com> - 1.19.3-1 - Update to 1.19.3 (rhbz#2268404) - Fix CVE-2024-1931, Denial of service when trimming EDE text on positive replies. (rhbz#2268419) - Use the origin (DNAME) TTL for synthesized CNAMEs as per RFC 6672. - Bug fixes * Sat Mar 9 2024 Paul Wouters <paul.wouters@aiven.io> - 1.19.1-4 - Add spec file commentchromium-123.0.6312.122-1.fc38
- chromium-123.0.6312.122-1.fc38
update to 123.0.6312.122
* High CVE-2024-3157: Out of bounds write in Compositing * High CVE-2024-3516: Heap buffer overflow in ANGLE * High CVE-2024-3515: Use after free in Dawnchromium-123.0.6312.122-1.fc40
- chromium-123.0.6312.122-1.fc40
update to 123.0.6312.122
* High CVE-2024-3157: Out of bounds write in Compositing * High CVE-2024-3516: Heap buffer overflow in ANGLE * High CVE-2024-3515: Use after free in Dawnchromium-123.0.6312.122-1.fc39
- chromium-123.0.6312.122-1.fc39
update to 123.0.6312.122
* High CVE-2024-3157: Out of bounds write in Compositing * High CVE-2024-3516: Heap buffer overflow in ANGLE * High CVE-2024-3515: Use after free in Dawncurl-8.2.1-5.fc39
- curl-8.2.1-5.fc39
- fix Usage of disabled protocol (CVE-2024-2004)
- fix HTTP/2 push headers memory-leak (CVE-2024-2398)
next-20240412: linux-next
DSA-5657-1 xorg-server - security update
python-pycryptodomex-3.20.0-1.el9
- python-pycryptodomex-3.20.0-1.el9
CVE-2023-52323
llhttp-9.2.1-1.el9 python-aiohttp-3.9.3-2.el9
- llhttp-9.2.1-1.el9
- python-aiohttp-3.9.3-2.el9
Update llhttp to 9.2.1, fixing CVE-2024-27982.
Additionally, llhttp 9.2.0 contained a number of bug fixes.
Backport llhttp 9.2.1 support to python-aiohttp 3.9.3.
USN-6730-1: Apache Maven Shared Utils vulnerability
llhttp-9.2.1-1.fc39 python-aiohttp-3.9.3-3.fc39 uxplay-1.68.2-3.fc39
- llhttp-9.2.1-1.fc39
- python-aiohttp-3.9.3-3.fc39
- uxplay-1.68.2-3.fc39
Update llhttp to 9.2.1, fixing CVE-2024-27982.
Additionally, llhttp 9.2.0 contained a number of bug fixes.
Backport llhttp 9.2.1 support to python-aiohttp 3.9.3.