Mageia 2022-0486: webkit2 security update
The updated packages fix security vulnerabilities and other issues. See references for details. References: - https://bugs.mageia.org/show_bug.cgi?id=31330
Mageia 2022-0485: libksba security update
Libksba before 1.6.3 is prone to an integer overflow vulnerability in the CRL signature parser. (CVE-2022-47629) References: - https://bugs.mageia.org/show_bug.cgi?id=31311
Mageia 2022-0484: thunderbird security update
Drag and Dropped Filenames could have been truncated to malicious extensions. (CVE-2022-46874) References: - https://bugs.mageia.org/show_bug.cgi?id=31307
Mageia 2022-0483: curl security update
Another HSTS bypass via IDN. (CVE-2022-43551) HTTP Proxy deny use-after-free. (CVE-2022-43552) References: - https://bugs.mageia.org/show_bug.cgi?id=31306
Mageia 2022-0482: freeradius security update
Information leakage in EAP-PWD. (CVE-2022-41859) Crash on unknown option in EAP-SIM. (CVE-2022-41860) Crash on invalid abinary data. (CVE-2022-41861) References:
Mageia 2022-0481: sogo security update
Missing SAML signature validation in the SOGo groupware could result in impersonation attacks. (CVE-2021-33054) References: - https://bugs.mageia.org/show_bug.cgi?id=29255
Mageia 2022-0480: chromium-browser-stable security update
The chromium-browser-stable package has been updated to the 108.0.5359.124 release, fixing 8 vulnerabilities. Some of the security fixes are ...
Mageia 2022-0479: advancecomp security update
advancecomp has been updated to fix a number of bugs and security issues. References: - https://bugs.mageia.org/show_bug.cgi?id=31234 - https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. document.getElementById('cloake0ba2fa4db2baf1979f3efb9ff74a666').innerHTML = ''; var prefix = 'ma' + 'il' + 'to'; var path = 'hr' + 'ef' + '='; var addye0ba2fa4db2baf1979f3efb9ff74a666 = 'package-announce' + '@'; addye0ba2fa4db2baf1979f3efb9ff74a666 = addye0ba2fa4db2baf1979f3efb9ff74a666 + 'lists' + '.' + 'fedoraproject' + '.' + 'org'; var addy_texte0ba2fa4db2baf1979f3efb9ff74a666 = 'package-announce' + '@' + 'lists' + '.' + 'fedoraproject' + '.' + 'org';document.getElementById('cloake0ba2fa4db2baf1979f3efb9ff74a666').innerHTML += ''+addy_texte0ba2fa4db2baf1979f3efb9ff74a666+''; /thread/KQHLMLFHPV5C7PTBZML6U72QT6VNEOEF/
Mageia 2022-0478: kernel-linus security update
This kernel-linus update is based on upstream 5.15.82 and fixes atleast the following security issues: A flaw was found in the Linux kernel. A denial of service flaw may occur if there is a consecutive request of the NVME_IOCTL_RESET and the
