Unix, Linux, DevOps , Cloud computing and BigData Knowledge-Base

0

Mageia 2020-0352: thunderbird security update>

By holding a reference to the eval() function from an about:blank window, a malicious webpage could have gained access to the InstallTrigger object which would allow them to prompt the user to install an extension. Combined with user confusion, this co… Continue Reading — Mageia...

0

Mageia 2020-0351: evolution-data-server security update>

evolution-data-server (eds) through 3.36.3 has a STARTTLS buffering issue that affects SMTP and POP3. When a server sends a “begin TLS” response, eds reads additional data and evaluates it in a TLS context, aka “response injection”. (CVE-2020-14928) Continue Reading — Mageia 2020-0351: evolution-data-server security update>

0

Fedora 31: golang-github-ulikunitz-xz 2020-deff052e7a>

* The `readUvarint` function would run infinitely given specific input. The function is now terminating if more than 10 bytes of input have been read. Fixes [issue #35](https://github.com/ulikunitz/xz/issues/35) (CVE-2020-16845). * Supports the check-I… Continue Reading — Fedora 31: golang-github-ulikunitz-xz 2020-deff052e7a>

0

Fedora 32: golang-github-ulikunitz-xz 2020-e384830a0d>

* The `readUvarint` function would run infinitely given specific input. The function is now terminating if more than 10 bytes of input have been read. Fixes [issue #35](https://github.com/ulikunitz/xz/issues/35) (CVE-2020-16845). Continue Reading — Fedora 32: golang-github-ulikunitz-xz 2020-e384830a0d>

Follow

Get every new post delivered to your Inbox

Join other followers

Page 433 of 2989