ArchLinux: 202107-28: varnish: url request injection
The package varnish before version 6.6.1-1 is vulnerable to url request injection.
ArchLinux: 202107-27: mbedtls: information disclosure
The package mbedtls before version 2.26.0-1 is vulnerable to information disclosure.
ArchLinux: 202107-26: python-pillow: arbitrary code execution
The package python-pillow before version 8.3.0-1 is vulnerable to arbitrary code execution.
ArchLinux: 202107-25: ruby2.6: multiple issues
The package ruby2.6 before version 2.6.8-1 is vulnerable to multiple issues including silent downgrade, arbitrary command execution and information disclosure.
ArchLinux: 202107-24: ruby2.7: multiple issues
The package ruby2.7 before version 2.7.4-1 is vulnerable to multiple issues including silent downgrade and information disclosure.
ArchLinux: 202107-23: ruby: multiple issues
The package ruby before version 3.0.2-1 is vulnerable to multiple issues including silent downgrade and information disclosure.
ArchLinux: 202107-22: nextcloud: multiple issues
The package nextcloud before version 21.0.3-1 is vulnerable to multiple issues including authentication bypass, privilege escalation, access restriction bypass, content spoofing, cross-site scripting, incorrect calculation, information disclosure and insufficient validation.
ArchLinux: 202107-21: thunderbird: multiple issues
The package thunderbird before version 78.12.0-1 is vulnerable to multiple issues including arbitrary code execution and content spoofing.
ArchLinux: 202107-20: firefox: multiple issues
The package firefox before version 90.0-1 is vulnerable to multiple issues including arbitrary code execution, content spoofing and insufficient validation.
