scilinux:
-
Synopsis: Important: thunderbird security update Advisory ID: SLSA-2023:5191-1 Issue Date: 2023-09-19 CVE Numbers: CVE-2023-4863 — This update upgrades Thunderbird to version 102.15.1. Security Fix(es): * libwebp: Heap buffer overflow in WebP Codec (CVE-2023-4863) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE…
-
Synopsis: Important: open-vm-tools security update Advisory ID: SLSA-2023:5217-1 Issue Date: 2023-09-19 CVE Numbers: CVE-2023-20900 — Security Fix(es): * open-vm-tools: SAML token signature bypass (CVE-2023-20900) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE — SL7 x86_64 open-vm-tools-11.0.5-3.el7_9.7.x86_64.rpm open-vm-tools-debuginfo-11.0.5-3.el7_9.7.x86_64.rpm open-vm-tools-desktop-11.0.5-3.el7_9.7.x86_64.rpm open-vm-tools-devel-11.0.5-3.el7_9.7.x86_64.rpm open-vm-tools-test-11.0.5-3.el7_9.7.x86_64.rpm -…
-
Synopsis: Important: firefox security update Advisory ID: SLSA-2023:5197-1 Issue Date: 2023-09-19 CVE Numbers: CVE-2023-4863 — This update upgrades Firefox to version 102.15.1 ESR. Security Fix(es): * libwebp: Heap buffer overflow in WebP Codec (CVE-2023-4863) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the…
-
Synopsis: Important: kernel security and bug fix update Advisory ID: SLSA-2023:4819-1 Issue Date: 2023-08-30 CVE Numbers: CVE-2023-35788 CVE-2023-20593 — Security Fix(es): * kernel: cls_flower: out-of-bounds write in fl_set_geneve_opt() (CVE-2023-35788) * hw: amd: Cross-Process Information Leak (CVE-2023-20593) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer…
-
Synopsis: Important: cups security update Advisory ID: SLSA-2023:4766-1 Issue Date: 2023-08-28 CVE Numbers: CVE-2023-32360 — Security Fix(es): * cups: Information leak through Cups-Get-Document operation (CVE-2023-32360) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE — SL7 x86_64 cups-1.6.3-52.el7_9.x86_64.rpm cups-client-1.6.3-52.el7_9.x86_64.rpm cups-debuginfo-1.6.3-52.el7_9.i686.rpm cups-debuginfo-1.6.3-52.el7_9.x86_64.rpm cups-libs-1.6.3-52.el7_9.i686.rpm…
-
Synopsis: Important: kernel security and bug fix update Advisory ID: SLSA-2023:4151-1 Issue Date: 2023-07-18 CVE Numbers: CVE-2022-3564 — Security Fix(es): * kernel: use-after-free caused by l2cap_reassemble_sdu() in net/bluetooth/l2cap_core.c (CVE-2022-3564) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE Bug Fix(es): * perf…