Mageia 2022-0483: curl security update
Another HSTS bypass via IDN. (CVE-2022-43551) HTTP Proxy deny use-after-free. (CVE-2022-43552) References: - https://bugs.mageia.org/show_bug.cgi?id=31306
Mageia 2022-0482: freeradius security update
Information leakage in EAP-PWD. (CVE-2022-41859) Crash on unknown option in EAP-SIM. (CVE-2022-41860) Crash on invalid abinary data. (CVE-2022-41861) References:
Mageia 2022-0481: sogo security update
Missing SAML signature validation in the SOGo groupware could result in impersonation attacks. (CVE-2021-33054) References: - https://bugs.mageia.org/show_bug.cgi?id=29255
Mageia 2022-0480: chromium-browser-stable security update
The chromium-browser-stable package has been updated to the 108.0.5359.124 release, fixing 8 vulnerabilities. Some of the security fixes are ...
Mageia 2022-0479: advancecomp security update
advancecomp has been updated to fix a number of bugs and security issues. References: - https://bugs.mageia.org/show_bug.cgi?id=31234 - https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. document.getElementById('cloakedabcdbf32a56049fbd666b306b072ae').innerHTML = ''; var prefix = 'ma' + 'il' + 'to'; var path = 'hr' + 'ef' + '='; var addyedabcdbf32a56049fbd666b306b072ae = 'package-announce' + '@'; addyedabcdbf32a56049fbd666b306b072ae = addyedabcdbf32a56049fbd666b306b072ae + 'lists' + '.' + 'fedoraproject' + '.' + 'org'; var addy_textedabcdbf32a56049fbd666b306b072ae = 'package-announce' + '@' + 'lists' + '.' + 'fedoraproject' + '.' + 'org';document.getElementById('cloakedabcdbf32a56049fbd666b306b072ae').innerHTML += ''+addy_textedabcdbf32a56049fbd666b306b072ae+''; /thread/KQHLMLFHPV5C7PTBZML6U72QT6VNEOEF/
Mageia 2022-0478: kernel-linus security update
This kernel-linus update is based on upstream 5.15.82 and fixes atleast the following security issues: A flaw was found in the Linux kernel. A denial of service flaw may occur if there is a consecutive request of the NVME_IOCTL_RESET and the
Mageia 2022-0477: kernel security update
This kernel update is based on upstream 5.15.82 and fixes atleast the following security issues: A flaw was found in the Linux kernel. A denial of service flaw may occur if there is a consecutive request of the NVME_IOCTL_RESET and the
Mageia 2022-0476: thunderbird security update
An attacker who compromised a content process could have partially escaped the sandbox to read arbitrary files via clipboard-related IPC messages (CVE-2022-46872). A drag-and-dropped file with a long filename could have had its filename
Mageia 2022-0475: firefox security update
An attacker who compromised a content process could have partially escaped the sandbox to read arbitrary files via clipboard-related IPC messages (CVE-2022-46872). A drag-and-dropped file with a long filename could have had its filename
