Unix, Linux, DevOps , Cloud computing and BigData Knowledge-Base

0

Mageia 2020-0277: tomcat security update>

Updated tomcat packages fix security vulnerability: When using Apache Tomcat versions 9.0.0.M1 to 9.0.34, if a) an attacker is able to control the contents and name of a file on the server; and b) the server is configured to use the PersistenceManager … Continue Reading...

0

Mageia 2020-0276: mailman security update>

Updated mailman package fixes security vulnerability: Up to mailman 2.1.29 when sending a file without a file extension (or an unknown file extension) then the file is stored in the list archive with the file extension .obj. Most web servers will try t… Continue Reading...

0

Mageia 2020-0275: perl-YAML security update>

Updated perl-YAML package fixes security vulnerability: This update enforces that $LoadCode must be enabled to use the feature of evaluating typeglobs, because with the typeglob feature you would be able to set the variable $YAML::LoadCode from a YAML … Continue Reading — Mageia 2020-0275: perl-YAML...

0

Debian: DSA-4714-2: chromium regression update>

The previous update for chromium released as DSA 4714-1 was mistakenly built without compiler optimizations. This caused high CPU load and frequent crashes. Updated chromium packages are now available that correct this issue. Continue Reading — Debian: DSA-4714-2: chromium regression update>

0

Mageia 2020-0274: firefox security update>

Updated nss and firefox packages fix security vulnerabilities: NSS has shown timing differences when performing DSA signatures, which was exploitable and could eventually leak private keys (CVE-2020-12399). Continue Reading — Mageia 2020-0274: firefox security update>

0

Mageia 2020-0273: libexif security update>

The updated packages fix a security vulnerability: In exif_data_load_data_content of exif-data.c, there is a possible UBSAN abort due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. Us… Continue Reading — Mageia 2020-0273: libexif security update>

0

Mageia 2020-0272: vlc security update>

Updated vlc packages fixes security vulnerability: A heap-based buffer overflow in the hxxx_AnnexB_to_xVC function in modules/packetizer/hxxx_nal.c in VideoLAN VLC media player before 3.0.11 allows remote attackers to cause a denial of service (applica… Continue Reading — Mageia 2020-0272: vlc security update>

Follow

Get every new post delivered to your Inbox

Join other followers

Page 558 of 2989