The updated packages fix a security vulnerability: In exif_data_load_data_content of exif-data.c, there is a possible UBSAN abort due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. Us… Continue Reading — Mageia 2020-0273: libexif security update>
Updated vlc packages fixes security vulnerability: A heap-based buffer overflow in the hxxx_AnnexB_to_xVC function in modules/packetizer/hxxx_nal.c in VideoLAN VLC media player before 3.0.11 allows remote attackers to cause a denial of service (applica… Continue Reading — Mageia 2020-0272: vlc security update>
Updated libxml2 packages fix security vulnerability: The fix for CVE-2019-19956 introduced regressions which can cause invalid xmlns references in output and memory leaks, possibly leading to more serious security issues. The broken fix has been revert… Continue Reading — Mageia 2020-0271: libxml2 security update>
The updated packages fix a security vulnerability: Portable UPnP SDK (aka libupnp) 1.12.1 and earlier allows remote attackers to cause a denial of service (crash) via a crafted SSDP message due to a NULL pointer dereference in the functions Continue Reading — Mageia 2020-0270: libupnp...
Updated python-httplib2 packages fix security vulnerability: In httplib2, an attacker controlling unescaped part of uri for httplib2.Http.request() could change request headers and body, send additional hidden requests to same server. This vulnerabilit… Continue Reading — Mageia 2020-0269: python-httplib2 security update>
New libvorbis packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Continue Reading — Slackware: 2020-186-01: libvorbis Security Update>
Update to Samba 4.12.5 Continue Reading — Fedora 32: libldb 2020-ccd9bdb2eb>
Update to Samba 4.12.5 Continue Reading — Fedora 32: samba 2020-ccd9bdb2eb>
This update fixes CVE-2020-10177, CVE-2020-10994, CVE-2020-10379, CVE-2020-11538 and CVE-2020-10378. Continue Reading — Fedora 32: python-pillow 2020-c52106e48a>
# Python 3.6.11 Python 3.6.11 is the latest security fix release of Python 3.6. – bpo-39073: Disallow CR or LF in email.headerregistry.Address arguments to guard against header injection attacks. – bpo-38576: Disallow control characters in hostnames in… Continue Reading — Fedora 32: python36 2020-8bdd3fd7a4>
Get every new post delivered to your Inbox
Join other followers
