Fedora 33: xstream 2021-fbad11014a
``` * Mon Oct 04 2021 Didik Supriadi
Fedora 34: httpd 2021-2a10bc68a4
This update addresses CVE-2021-42013. It was found that the fix for CVE-2021-41773 in Apache HTTP Server 2.4.50 was insufficient. An attacker could use a path traversal attack to map URLs to files outside the directories configured by Alias-like directives. If files outside of these directories are not protected by the usual default configuration "require all denied", these
Fedora 34: mediawiki 2021-eee8b7514f
https://www.mediawiki.org/wiki/Release_notes/1.35#MediaWiki_1.35.4
Fedora 34: redis 2021-61c487f241
**Redis 6.2.** - 6 Released Mon Oct 4 12:00:00 IDT 2021 Upgrade urgency: SECURITY, contains fixes to security issues. Security Fixes: * (**CVE-2021-41099**) Integer to heap buffer overflow handling certain string commands and network payloads, when proto-max-bulk-len is manually configured to a non-default, very large value [reported by yiyuaner]. *
Fedora 34: xstream 2021-d894ca87dc
``` * Mon Oct 04 2021 Didik Supriadi
Fedora 33: kernel 2021-9dd76a1ed0
The 5.14.10 stable kernel update contains a number of important fixes across the tree
Fedora 34: kernel 2021-ffda3d6fa1
The 5.14.10 stable kernel update contains a number of important fixes across the tree
Fedora 34: dr_libs 2021-450d81de95
Update to f13cbcf (dr_wav 0.13.2) Fix a possible buffer overflow. ---- Update to 8900af1 with dr_mp3 0.6.31 Fix a bug in dr_mp3 when loading from memory.
