Mageia 2022-0409: expat security update
In libexpat through 2.4.9, there is a use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate in out-of-memory situations. (CVE-2022-43680) References:
Mageia 2022-0408: ntfs-3g security update
NTFS-3G could be made to crash or run programs as an administrator if it mounted a specially crafted disk. (CVE-2022-40284) References: - https://bugs.mageia.org/show_bug.cgi?id=31056
Mageia 2022-0408: ntfs-3g security update
NTFS-3G could be made to crash or run programs as an administrator if it mounted a specially crafted disk. (CVE-2022-40284) References: - https://bugs.mageia.org/show_bug.cgi?id=31056
Mageia 2022-0407: wkhtmltopdf security update
Directory traversal vulnerability in wkhtmltopdf through 0.12.5 allows remote attackers to read local files and disclose sensitive information via a crafted html file running with the default configurations. (CVE-2020-21365)
Mageia 2022-0407: wkhtmltopdf security update
Directory traversal vulnerability in wkhtmltopdf through 0.12.5 allows remote attackers to read local files and disclose sensitive information via a crafted html file running with the default configurations. (CVE-2020-21365)
Mageia 2022-0406: php security update
GD - Fixed bug #81739: OOB read due to insufficient input validation in imageloadfont(). Hash - Fixed bug #81738: buffer overflow in hash_update() on long parameter. Session - Fixed bug GH-9583 (session_create_id() fails with user defined
Mageia 2022-0405: curl security update
When doing HTTP(S) transfers, libcurl might erroneously use the read callback (CURLOPT_READFUNCTION) to ask for data to send, even when the CURLOPT_POSTFIELDS option has been set, if the same handle previously was used to issue a PUT request which used that callback. (CVE-2022-32221)
Mageia 2022-0404: libksba security update
Integer Overflow in LibKSBA. (CVE-2022-3515) References: - https://bugs.mageia.org/show_bug.cgi?id=30975 - https://www.gnupg.org/blog/20221017-pepe-left-the-ksba.html
Mageia 2022-0403: nbd security update
It was discovered that nbd prior to 3.24 contained an integer overflow with a resultant heap-based buffer overflow. A value of 0xffffffff in the name length field will cause a zero-sized buffer to be allocated for the name resulting in a write to a dangling pointer (CVE-2022-26495).
