Fedora 32: curl 2020-7ab62c73bc>
– curl: Inferior OCSP verification (CVE-2020-8286) – libcurl: FTP wildcard stack overflow (CVE-2020-8285) – curl: trusting FTP PASV responses (CVE-2020-8284) Continue Reading — Fedora 32: curl 2020-7ab62c73bc>
Unix, Linux, DevOps , Cloud computing and BigData Knowledge-Base
Fedora 32: chromium 2020-5b9c42f1b9>
Update to 87.0.4280.88. As with pretty much every chromium release ever, this fixes some security bugs. This batch is: CVE-2020-16037 CVE-2020-16038 CVE-2020-16039 CVE-2020-16040 CVE-2020-16041 CVE-2020-16042 Continue Reading — Fedora 32: chromium 2020-5b9c42f1b9>
Fedora 33: phpldapadmin 2020-6cc5654c0e>
Update to 1.2.6.2 (#1906752) Continue Reading — Fedora 33: phpldapadmin 2020-6cc5654c0e>
openSUSE: 2020:2300-1 moderate: gcc7>
An update that solves one vulnerability and has 7 fixes is now available. Continue Reading — openSUSE: 2020:2300-1 moderate: gcc7>
Debian LTS: DLA-2502-1: postsrsd security update>
A potential denial-of-service attack through malicious timestamp tags was fixed in PostSRSd, a Sender Rewriting Scheme (SRS) lookup table for Postfix. Continue Reading — Debian LTS: DLA-2502-1: postsrsd security update>
Dramatic Design Changes Planned for New Version of GNOME Shell
Big changes to the way GNOME Shell users open and manage apps and workspace are coming in GNOME 40, the next stable release of the open source desktop environment. Several major user experience and design […] This post, Dramatic Design Changes Planned for New Version of...
Mageia 2020-0464: openjpeg2 security update>
A heap-buffer overwrites error was discovered in lib/openjp2/mqc.c in OpenJPEG 2.3.1. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service or possibly remote code execution (CVE-2020-27814). A flaw was found in Op… Continue Reading — Mageia 2020-0464: openjpeg2 security update>
Debian LTS: DLA-2501-1: influxdb security update>
An issue has been found in influxdb, a scalable datastore for metrics, events, and real-time analytics. By using a JWT token with an empty shared secret, one is able to bypass Continue Reading — Debian LTS: DLA-2501-1: influxdb security update>
openSUSE: 2020:2292-1 moderate: PackageKit>
An update that solves one vulnerability and has one errata is now available. Continue Reading — openSUSE: 2020:2292-1 moderate: PackageKit>
Wade: Balancing the needs around the CentOS platform
Karsten Wade, who has served on the CentOS board among other things, has posted a blog entry on the CentOS change and its effects on users. “Providing our community with a solid, reliable distro that is good-enough for your workloads is a strong part of the...