Unix, Linux, DevOps , Cloud computing and BigData Knowledge-Base


Mageia 2020-0277: tomcat security update>

Updated tomcat packages fix security vulnerability: When using Apache Tomcat versions 9.0.0.M1 to 9.0.34, if a) an attacker is able to control the contents and name of a file on the server; and b) the server is configured to use the PersistenceManager … Continue Reading...


Mageia 2020-0276: mailman security update>

Updated mailman package fixes security vulnerability: Up to mailman 2.1.29 when sending a file without a file extension (or an unknown file extension) then the file is stored in the list archive with the file extension .obj. Most web servers will try t… Continue Reading...


Mageia 2020-0275: perl-YAML security update>

Updated perl-YAML package fixes security vulnerability: This update enforces that $LoadCode must be enabled to use the feature of evaluating typeglobs, because with the typeglob feature you would be able to set the variable $YAML::LoadCode from a YAML … Continue Reading — Mageia 2020-0275: perl-YAML...


Debian: DSA-4714-2: chromium regression update>

The previous update for chromium released as DSA 4714-1 was mistakenly built without compiler optimizations. This caused high CPU load and frequent crashes. Updated chromium packages are now available that correct this issue. Continue Reading — Debian: DSA-4714-2: chromium regression update>


Mageia 2020-0274: firefox security update>

Updated nss and firefox packages fix security vulnerabilities: NSS has shown timing differences when performing DSA signatures, which was exploitable and could eventually leak private keys (CVE-2020-12399). Continue Reading — Mageia 2020-0274: firefox security update>


Mageia 2020-0273: libexif security update>

The updated packages fix a security vulnerability: In exif_data_load_data_content of exif-data.c, there is a possible UBSAN abort due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. Us… Continue Reading — Mageia 2020-0273: libexif security update>


Mageia 2020-0272: vlc security update>

Updated vlc packages fixes security vulnerability: A heap-based buffer overflow in the hxxx_AnnexB_to_xVC function in modules/packetizer/hxxx_nal.c in VideoLAN VLC media player before 3.0.11 allows remote attackers to cause a denial of service (applica… Continue Reading — Mageia 2020-0272: vlc security update>


Get every new post delivered to your Inbox

Join other followers

Page 558 of 2989