An update that fixes one vulnerability is now available. Continue Reading — openSUSE: 2019:2033-1: moderate: libmirage

A vulnerability in Nautilus may allow attackers to escape the sandbox. Continue Reading — Gentoo: GLSA-201908-27: Nautilus: Security bypass

Multiple vulnerabilities have been found in libofx, the worst of which could result in the arbitrary execution of code. Continue Reading — Gentoo: GLSA-201908-26: libofx: Multiple vulnerabilities

The mpg123 package has been updated to version 1.25.12, fixing several issues which could cause it to crash or hang while parsing mp3 files. References: – https://bugs.mageia.org/show_bug.cgi?id=25350 Continue Reading — Mageia 2019-0238: mpg123 security update

Updated webmin package fixes security vulnerability: Webmin before 1.930 allows remote exploits if the option to change expired passwords is enabled (CVE-2019-15107). Continue Reading — Mageia 2019-0237: webmin security update

Updated ghostscript packages fix security vulnerability: It was found that the .buildfont1 procedure did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. An attacker could abuse this flaw by creating a speci… Continue Reading — Mageia 2019-0236: ghostscript security update

Updated pango package fixes security vulnerability: It was discovered that pango was subject to a heap based buffer overflow vulnerability which could be used to get code execution (CVE-2019-1010238). Continue Reading — Mageia 2019-0235: pango security update

Updated ansible package fixes security vulnerability: A flaw was discovered in the way Ansible templating was implemented before version 2.7.12, causing the possibility of information disclosure through unexpected variable substitution. By taking adva… Continue Reading — Mageia 2019-0234: ansible security update

Updated vlc packages fixes security vulnerabilities: Multiple security issues were discovered in the VLC media player, which could result in the execution of arbitrary code or denial of service if a malformed file/stream is processed (CVE-2019-13602, … Continue Reading — Mageia 2019-0233: vlc security update

AUpdated memcached packages fix security vulnerability: In memcached before 1.5.14, a NULL pointer dereference was found in the “lru mode” and “lru temp_ttl” commands. This causes a denial of service when parsing crafted lru command messages in proces… Continue Reading — Mageia 2019-0232: memcached security...