1 week 1 day ago
FEDORA-2025-52b352c9cd
Packages in this update:
- perl-Crypt-OpenSSL-RSA-0.35-1.fc42
Update description:
Update to 0.35, fixes CVE-2024-2467
1 week 1 day ago
FEDORA-EPEL-2025-6fce9884da
Packages in this update:
- perl-Crypt-OpenSSL-RSA-0.35-1.el10_0
Update description:
Update to 0.35, fixes CVE-2024-2467
1 week 1 day ago
FEDORA-EPEL-2025-6c475f1e10
Packages in this update:
Update description:
Update to 0.087, fixes CVE-2025-40914
1 week 1 day ago
FEDORA-2025-34b9058968
Packages in this update:
Update description:
Update to 0.087, fixes CVE-2025-40914
1 week 1 day ago
FEDORA-EPEL-2025-a3baa1a02f
Packages in this update:
- perl-CryptX-0.087-2.el10_0
Update description:
Update to 0.087, fixes CVE-2025-40914
1 week 1 day ago
FEDORA-EPEL-2025-5fb24f9895
Packages in this update:
Update description:
Update to 0.087, fixes CVE-2025-40914
1 week 1 day ago
FEDORA-2025-aff64b1f48
Packages in this update:
Update description:
Update to 0.087, fixes CVE-2025-40914
1 week 1 day ago
FEDORA-EPEL-2025-9f053024cf
Packages in this update:
- perl-CryptX-0.087-2.el10_1
Update description:
Update to 0.087, fixes CVE-2025-40914
1 week 1 day ago
USN-7573-1 fixed several vulnerabilities in X.Org. This update provides
the corresponding update for Ubuntu 16.04 LTS, Ubuntu 18.04 LTS and Ubuntu
20.04 LTS.
Original advisory details:
Nils Emmerich discovered that the X.Org X Server incorrectly handled
certain memory operations. An attacker could use these issues to cause the
X Server to crash, leading to a denial of service, obtain sensitive
information, or possibly execute arbitrary code.
1 week 1 day ago
FEDORA-2025-4f28b95d7e
Packages in this update:
Update description:
Don't allow suid and dev set on fs resize (Thomas.Blume)
1 week 1 day ago
FEDORA-2025-af7ba2696c
Packages in this update:
Update description:
Automatic update for libblockdev-3.3.1-1.fc42.
Changelog for libblockdev
* Wed Jun 18 2025 Packit <
hello@packit.dev> - 3.3.1-1
- Update to version 3.3.1
1 week 1 day ago
Version:next-20250618 (linux-next)
Released:2025-06-18
1 week 2 days ago
1 week 2 days ago
Kyle Seely discovered that the Go net/http module did not properly handle
sensitive headers during repeated redirects. An attacker could possibly
use this issue to obtain sensitive information. (CVE-2024-45336)
Juho Forsén discovered that the Go crypto/x509 module incorrectly handled
IPv6 addresses during URI parsing. An attacker could possibly use this
issue to bypass certificate URI constraints. (CVE-2024-45341)
It was discovered that the Go crypto module did not properly handle
variable time instructions under certain circumstances on 64-bit Power
(ppc64el) systems. An attacker could possibly use this issue to expose
sensitive information. (CVE-2025-22866)
It was discovered that the Go http/httpproxy module did not properly
handle IPv6 zone IDs during hostname matching. An attacker could possibly
use this issue to cause a denial of service. (CVE-2025-22870)
Takeshi Kaneko discovered that the Go net/http module did not properly
strip sensitive proxy headers during redirect requests. An attacker could
possibly use this issue to obtain sensitive information. (CVE-2025-4673)
1 week 2 days ago
It was discovered that dwarfutils did not correctly certain memory
operations, which could lead to a buffer overflow. An attacker could
possibly use this issue to cause a denial of service or execute arbitrary
code.
1 week 2 days ago
It was discovered that MuJS did not correctly handle try/finally
statements, which could lead to a buffer overflow. An attacker could
possibly use this issue to cause a denial of service or execute
arbitrary code. (CVE-2021-45005)
Han Zheng discovered that MuJS did not correctly handle recursion, which
could lead to stack exhaustion. An attacker could possibly use this
issue to cause a denial of service. (CVE-2022-30974)
Han Zheng discovered that MuJS did not correctly handle certain memory
operations. An attacker could possibly use this issue to cause a denial
of service. (CVE-2022-30975)
1 week 2 days ago
FEDORA-2025-c10725fc18
Packages in this update:
- python-pycares-4.9.0-1.fc41
Update description:
4.9.0
1 week 2 days ago
Nils Emmerich discovered that the X.Org X Server incorrectly handled
certain memory operations. An attacker could use these issues to cause the
X Server to crash, leading to a denial of service, obtain sensitive
information, or possibly execute arbitrary code.
1 week 2 days ago
USN-7555-1 fixed a vulnerability in Django. This update provides an
additional fix for Ubuntu 20.04 LTS.
Original advisory details:
It was discovered that Django incorrectly handled certain
unescaped request paths. An attacker could possibly use this
issue to perform a log injection.
1 week 2 days ago
FEDORA-2025-7d5c7fe0c7
Packages in this update:
Update description:
Backported the upstream CVE-2025-6140 fix.