Synopsis: Important: git security update Advisory ID: SLSA-2023:3263-1 Issue Date: 2023-05-24 CVE Numbers: CVE-2023-25652 CVE-2023-29007 — Security Fix(es): * git: by feeding specially crafted input to `git apply –reject`, a path outside the working tree can be overwritten with partially … Read More
Synopsis: Important: firefox security update Advisory ID: SLSA-2023:3137-1 Issue Date: 2023-05-17 CVE Numbers: CVE-2023-32205 CVE-2023-32206 CVE-2023-32207 CVE-2023-32211 CVE-2023-32212 CVE-2023-32213 CVE-2023-32215 — This update upgrades Firefox to version 102.11.0 ESR. Security Fix(es): * Mozilla: Browser prompts could have been obscured by … Read More
Synopsis: Important: firefox security update Advisory ID: SLSA-2023:3137-1 Issue Date: 2023-05-17 CVE Numbers: CVE-2023-32205 CVE-2023-32206 CVE-2023-32207 CVE-2023-32211 CVE-2023-32212 CVE-2023-32213 CVE-2023-32215 — This update upgrades Firefox to version 102.11.0 ESR. Security Fix(es): * Mozilla: Browser prompts could have been obscured by … Read More
Synopsis: Important: thunderbird security update Advisory ID: SLSA-2023:3151-1 Issue Date: 2023-05-17 CVE Numbers: CVE-2023-32205 CVE-2023-32206 CVE-2023-32207 CVE-2023-32211 CVE-2023-32212 CVE-2023-32213 CVE-2023-32215 — This update upgrades Thunderbird to version 102.11.0. Security Fix(es): * Mozilla: Browser prompts could have been obscured by popups … Read More
Synopsis: Important: thunderbird security update Advisory ID: SLSA-2023:3151-1 Issue Date: 2023-05-17 CVE Numbers: CVE-2023-32205 CVE-2023-32206 CVE-2023-32207 CVE-2023-32211 CVE-2023-32212 CVE-2023-32213 CVE-2023-32215 — This update upgrades Thunderbird to version 102.11.0. Security Fix(es): * Mozilla: Browser prompts could have been obscured by popups … Read More
Synopsis: Important: apr-util security update Advisory ID: SLSA-2023:3145-1 Issue Date: 2023-05-17 CVE Numbers: CVE-2022-25147 — Security Fix(es): * apr-util: out-of-bounds writes in the apr_base64 (CVE-2022-25147) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and … Read More
Synopsis: Important: libwebp security update Advisory ID: SLSA-2023:2077-1 Issue Date: 2023-05-02 CVE Numbers: CVE-2023-1999 — Security Fix(es): * Mozilla: libwebp: Double-free in libwebp (CVE-2023-1999) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other … Read More
Synopsis: Moderate: kernel security and bug fix update Advisory ID: SLSA-2023:1987-1 Issue Date: 2023-04-28 CVE Numbers: CVE-2022-43750 — Security Fix(es): * kernel: memory corruption in usbmon driver (CVE-2022-43750) For more details about the security issue(s), including the impact, a CVSS … Read More
Synopsis: Important: java-1.8.0-openjdk security and bug fix update Advisory ID: SLSA-2023:1904-1 Issue Date: 2023-04-25 CVE Numbers: CVE-2023-21930 CVE-2023-21954 CVE-2023-21967 CVE-2023-21939 CVE-2023-21938 CVE-2023-21937 CVE-2023-21968 — Security Fix(es): * OpenJDK: improper connection handling during TLS handshake (8294474) (CVE-2023-21930) * OpenJDK: Swing HTML … Read More
Synopsis: Important: java-11-openjdk security update Advisory ID: SLSA-2023:1899-1 Issue Date: 2023-04-25 CVE Numbers: CVE-2023-21930 CVE-2023-21954 CVE-2023-21967 CVE-2023-21939 CVE-2023-21938 CVE-2023-21937 CVE-2023-21968 — Security Fix(es): * OpenJDK: improper connection handling during TLS handshake (8294474) (CVE-2023-21930) * OpenJDK: Swing HTML parsing issue (8296832) … Read More
