Aggregator

USN-8419-1: HTTP-Daemon vulnerability

Ubuntu Security Advisories
5 days 5 hours ago
It was discovered that HTTP-Daemon incorrectly handled untrusted input under certain circumstances. A remote attacker could possibly use this issue to execute arbitrary commands, create or overwrite arbitrary files, or expose sensitive information.

openssl-3.5.7-1.fc44

Fedora Security Advisories
5 days 6 hours ago
FEDORA-2026-228373a496 Packages in this update:
  • openssl-3.5.7-1.fc44
Update description:

Rebase to OpenSSL 3.5.7 Fixes CVE-2026-45447 Fixes CVE-2026-34182 Fixes CVE-2026-34183 Fixes CVE-2026-42764 Fixes CVE-2026-45445 Fixes CVE-2026-7383 Fixes CVE-2026-9076 Fixes CVE-2026-34180 Fixes CVE-2026-34181 Fixes CVE-2026-42766 Fixes CVE-2026-42767 Fixes CVE-2026-42768 Fixes CVE-2026-42769 Fixes CVE-2026-42770 Fixes CVE-2026-45446

rsync-3.4.4-1.fc43

Fedora Security Advisories
5 days 6 hours ago
FEDORA-2026-a04e445b3f Packages in this update:
  • rsync-3.4.4-1.fc43
Update description:

New version 3.4.4 with multiple regression fixes. This update also fixes the following CVEs: CVE-2026-29518 CVE-2026-43617 CVE-2026-43618 CVE-2026-43619 CVE-2026-43620 CVE-2026-45232

rsync-3.4.3-1.fc44

Fedora Security Advisories
5 days 6 hours ago
FEDORA-2026-e3308c2bfe Packages in this update:
  • rsync-3.4.3-1.fc44
Update description:

New version 3.4.4 with multiple regression fixes. This update also fixes the following CVEs: CVE-2026-29518 CVE-2026-43617 CVE-2026-43618 CVE-2026-43619 CVE-2026-43620 CVE-2026-45232

USN-6455-2: Exim regression

Ubuntu Security Advisories
5 days 6 hours ago
USN-6455-1 fixed vulnerabilities in Exim. The fix for CVE-2023-42117 introduced a regression on Ubuntu 22.04 LTS that resulted in certain connections logging a Taint mismatch error. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that Exim incorrectly handled validation of user-supplied data, which could lead to memory corruption. A remote attacker could possibly use this issue to execute arbitrary code. (CVE-2023-42117) It was discovered that Exim incorrectly handled validation of user-supplied data, which could lead to an out-of-bounds read. An attacker could possibly use this issue to expose sensitive information. (CVE-2023-42119)

USN-8130-3: GStreamer Base Plugins vulnerability

Ubuntu Security Advisories
5 days 7 hours ago
USN-8130-1 fixed a vulnerability in GStreamer Base Plugins. This update provides the corresponding update for Ubuntu 16.04 LTS. Original advisory details: It was discovered that GStreamer Base Plugins incorrectly handled certain AVI media files. A remote attacker could use this issue to cause GStreamer Base Plugins to crash, resulting in a denial of service, or possibly execute arbitrary code.

USN-8418-1: Crypt-SaltedHash vulnerability

Ubuntu Security Advisories
5 days 10 hours ago
It was discovered that Crypt-SaltedHash incorrectly generated salts using a cryptographically weak pseudo-random number generator. An attacker could possibly use this issue to predict generated salts, leading to a weakening of cryptographic protections.