Fedora Linux Distribution - Page 467
Find the information you need for your favorite open source distribution .
Find the information you need for your favorite open source distribution .
---- CVE-2018-10529 fixed: out of bounds read in X3F parser CVE-2018-10528 fixed: possible stack overrun in X3F parser
---- CVE-2018-10529 fixed: out of bounds read in X3F parser CVE-2018-10528 fixed: possible stack overrun in X3F parser
Based on the Firefox/Thunderbird ESR (extension support release) code version 52.7.3 Fixes various security issues, see https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-esr/ and https://www.mozilla.org/en-US/security/known-vulnerabilities/thunderbird/ for more info.
Based on the Firefox/Thunderbird ESR (extension support release) code version 52.7.3 Fixes various security issues, see https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-esr/ and https://www.mozilla.org/en-US/security/known-vulnerabilities/thunderbird/ for more info.
Update to 2.49.3 Based on the Firefox/Thunderbird ESR (extension support release) code version 52.7.3 Fixes various security issues, see https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-esr/ and https://www.mozilla.org/en-US/security/known-vulnerabilities/thunderbird/ for more info.
Update to 2.49.3 Based on the Firefox/Thunderbird ESR (extension support release) code version 52.7.3 Fixes various security issues, see https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-esr/ and https://www.mozilla.org/en-US/security/known-vulnerabilities/thunderbird/ for more info.
Information leak via crafted user-supplied CDROM [XSA-258] (#1571867) x86: PV guest may crash Xen with XPTI [XSA-259] (#1571878)
Information leak via crafted user-supplied CDROM [XSA-258] (#1571867) x86: PV guest may crash Xen with XPTI [XSA-259] (#1571878)
Security fix for CVE-2018-1088 (Privilege escalation via gluster_shared_storage when snapshot scheduling is enabled)
Security fix for CVE-2018-1088 (Privilege escalation via gluster_shared_storage when snapshot scheduling is enabled)
x86: mishandling of debug exceptions [XSA-260, CVE-2018-8897] x86 vHPET interrupt injection errors [XSA-261] (#1576089) qemu may drive Xen into unbounded loop [XSA-262] ---- update to xen-4.10.1
update to 10.4 per release notes: https://www.postgresql.org/docs/10/release-10-4.html
x86: mishandling of debug exceptions [XSA-260, CVE-2018-8897] x86 vHPET interrupt injection errors [XSA-261] (#1576089) qemu may drive Xen into unbounded loop [XSA-262] ---- update to xen-4.10.1
update to 10.4 per release notes: https://www.postgresql.org/docs/10/release-10-4.html
This update addresses the following vulnerabilities: * [CVE-2018-4200](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4200) Additional fixes: * Do TLS error checking on GTlsConnection::accept-certificate to finish the load earlier in case of errors. * Properly close the connection to the nested wayland compositor in the Web Process. * Avoid painting backing