Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -3 articles for you...
89
security advisoryFedoracritical updateFedora 37: FEDORA-2023-70eb8ba61e Critical: Syncthing 1.23.0 Update
Update to version 1.23.0. Release notes: https://github.com/syncthing/syncthing/releases/tag/v1.23.0 Additionally, this update was built with a version of golang that addresses CVE-2022-41717, and it fixes the installation of icon files.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2023-70eb8ba61e 2023-02-04 01:29:37.784391 --------------------------------------------------------------------------------Name : syncthing Product : Fedora 37 Version : 1.23.0 Release : 2.fc37 URL : https://syncthing.net Summary : Continuous File Synchronization Description : Syncthing replaces other file synchronization services with something open, trustworthy and decentralized. Your data is your data alone and you deserve to choose where it is stored, if it is shared with some third party and how it's transmitted over the Internet. Using syncthing, that control is returned to you. This package contains the syncthing client binary and systemd services. --------------------------------------------------------------------------------Update Information: Update to version 1.23.0. Release notes: https://github.com/syncthing/syncthing/releases/tag/v1.23.0 Additionally, this update was built with a version of golang that addresses CVE-2022-41717, and it fixes the installation of icon files. --------------------------------------------------------------------------------ChangeLog: * Thu Jan 26 2023 Justin Koh - 1.23.0-2 - Install desktop file icons to correct locations * Thu Jan 26 2023 Fabio Valentini - 1.23.0-1 - Update to version 1.23.0; Fixes RHBZ#2139321 --------------------------------------------------------------------------------References: [ 1 ] Bug #2139321 - syncthing-1.23.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2139321 --------------------------------------------------------------------------------This update can be installed with the "dnf" updateprogram. Use su -c 'dnf upgrade --advisory FEDORA-2023-70eb8ba61e' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Feb 04, 2023
•Critical
Fedora
89
security advisorymoderateinstallation fixFedora 36: 2023-6d71ff268e Moderate: Syncthing 1.23.0 Installation Fix
Update to version 1.23.0. Release notes: https://github.com/syncthing/syncthing/releases/tag/v1.23.0 Additionally, this update was built with a version of golang that addresses CVE-2022-41717, and it fixes the installation of icon files.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2023-6d71ff268e 2023-02-04 01:16:02.743615 --------------------------------------------------------------------------------Name : syncthing Product : Fedora 36 Version : 1.23.0 Release : 2.fc36 URL : https://syncthing.net Summary : Continuous File Synchronization Description : Syncthing replaces other file synchronization services with something open, trustworthy and decentralized. Your data is your data alone and you deserve to choose where it is stored, if it is shared with some third party and how it's transmitted over the Internet. Using syncthing, that control is returned to you. This package contains the syncthing client binary and systemd services. --------------------------------------------------------------------------------Update Information: Update to version 1.23.0. Release notes: https://github.com/syncthing/syncthing/releases/tag/v1.23.0 Additionally, this update was built with a version of golang that addresses CVE-2022-41717, and it fixes the installation of icon files. --------------------------------------------------------------------------------ChangeLog: * Thu Jan 26 2023 Justin Koh - 1.23.0-2 - Install desktop file icons to correct locations * Thu Jan 26 2023 Fabio Valentini - 1.23.0-1 - Update to version 1.23.0; Fixes RHBZ#2139321 --------------------------------------------------------------------------------References: [ 1 ] Bug #2139321 - syncthing-1.23.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2139321 --------------------------------------------------------------------------------This update can be installed with the "dnf" updateprogram. Use su -c 'dnf upgrade --advisory FEDORA-2023-6d71ff268e' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Feb 04, 2023
Fedora
89
security advisoryFedoracritical updateFedora 37: 2022-04bc7cd075 Critical: Kitty Installation Fix
Fixed KITTY_INSTALLATION_DIR in scripts ---- version 0.26.3. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-04bc7cd075 2022-10-02 00:17:13.956586 --------------------------------------------------------------------------------Name : kitty Product : Fedora 37 Version : 0.26.3 Release : 2.fc37 URL : https://sw.kovidgoyal.net/kitty/ Summary : Cross-platform, fast, feature full, GPU based terminal emulator Description : - Offloads rendering to the GPU for lower system load and buttery smooth scrolling. Uses threaded rendering to minimize input latency. - Supports all modern terminal features: graphics (images), unicode, true-color, OpenType ligatures, mouse protocol, focus tracking, bracketed paste and several new terminal protocol extensions. - Supports tiling multiple terminal windows side by side in different layouts without needing to use an extra program like tmux. - Can be controlled from scripts or the shell prompt, even over SSH. - Has a framework for Kittens, small terminal programs that can be used to extend kitty's functionality. For example, they are used for Unicode input, Hints and Side-by-side diff. - Supports startup sessions which allow you to specify the window/tab layout, working directories and programs to run on startup. - Cross-platform: kitty works on Linux and macOS, but because it uses only OpenGL for rendering, it should be trivial to port to other Unix-like platforms. - Allows you to open the scrollback buffer in a separate window using arbitrary programs of your choice. This is useful for browsing the history comfortably in a pager or editor. - Has multiple copy/paste buffers, like vim. --------------------------------------------------------------------------------Update Information: Fixed KITTY_INSTALLATION_DIR in scripts ---- version0.26.3 --------------------------------------------------------------------------------ChangeLog: * Fri Sep 23 2022 Yaroslav Sidlovsky 0.26.3-2 - Fixed KITTY_INSTALLATION_DIR in scripts * Thu Sep 22 2022 Yaroslav Sidlovsky 0.26.3-1 - version 0.26.3 --------------------------------------------------------------------------------References: [ 1 ] Bug #2129749 - CVE-2022-41322 kitty: notification identifiers are not sanitized correctly leading to code execution [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2129749 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-04bc7cd075' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Oct 01, 2022
•Critical
Fedora
89
security advisorymoderatesoftware updateFedora 29: FEDORA-2018-c6b5117772 Moderate: NNG Installation Fix
- Update to 2.13.0 - CVE-2018-0497 Release notes: https://www.trustedfirmware.org/projects/mbed-tls/ Security Advisory: ---- Make package installable again by fixing Requires. ---- New upstream release. ---- Make package installable again by fixing. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2018-c6b5117772 2018-10-09 00:04:24.598294 --------------------------------------------------------------------------------Name : nng Product : Fedora 29 Version : 1.0.1 Release : 2.fc29 URL : https://nng.nanomsg.org/ Summary : nanomsg next generation: light-weight brokerless messaging Description : nng (nanomsg next generation) is a socket library that provides several common communication patterns. It aims to make the networking layer fast, scalable, and easy to use. Implemented in C, it works on a wide range of operating systems with no further dependencies. The communication patterns, also called "scalability protocols", are basic blocks for building distributed systems. By combining them you can create a vast array of distributed applications. --------------------------------------------------------------------------------Update Information: - Update to 2.13.0 - CVE-2018-0497 Release notes: https://www.trustedfirmware.org/projects/mbed-tls/ Security Advisory: ---- Make package installable again by fixing Requires. ---- New upstream release. ---- Make package installable again by fixing Requires. ---- New upstream release. --------------------------------------------------------------------------------References: [ 1 ] Bug #1632216 - update julia would remove dnf?? https://bugzilla.redhat.com/show_bug.cgi?id=1632216 [ 2 ] Bug #1158024 - julia does not support ARM https://bugzilla.redhat.com/show_bug.cgi?id=1158024 [ 3 ] Bug #1158025 - julia does not support PPC64 https://bugzilla.redhat.com/show_bug.cgi?id=1158025 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2018-c6b5117772' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
Oct 09, 2018
Fedora
89
security advisorybuffer overflowFedoraFedora: FEDORA-2022-045 Moderate: wget Buffer Overflow Vulnerability
This curl update fixes security vulnerability CVE-2006-1061 - curl can overflow a heap-based memory buffer if very long TFTP URL with valid host name is passed to curl. This update fixes instalation problems on multilib architectures, too.. ---------------------------------------------------------------------Fedora Update Notification FEDORA-2006-189 2006-03-21 ---------------------------------------------------------------------Product : Fedora Core 5 Name : curl Version : 7.15.1 Release : 3 Summary : A utility for getting files from remote servers (FTP, HTTP, and others). Description : cURL is a tool for getting files from FTP, HTTP, Gopher, Telnet, and Dict servers, using any of the supported protocols. cURL is designed to work without user interaction or any kind of interactivity. cURL offers many useful capabilities, like proxy support, user authentication, FTP upload, HTTP post, and file transfer resume. ---------------------------------------------------------------------Update Information: This curl update fixes security vulnerability CVE-2006-1061 - curl can overflow a heap-based memory buffer if very long TFTP URL with valid host name is passed to curl. This update fixes instalation problems on multilib architectures, too. ---------------------------------------------------------------------* Mon Mar 20 2006 Ivana Varekova - 7.15.1-3 - fix multilib problem using pkg-config - fix cve-2006-1061 problem - cURL tftp buffer overflow * Thu Feb 23 2006 Ivana Varekova - 7.15.1-2 - fix multilib problem - #181290 - curl-devel.i386 not installable together with curl-devel.x86-64 ---------------------------------------------------------------------This update can be downloaded from: 22d285846edc9415777275be1a4040a182abb1b4 SRPMS/curl-7.15.1-3.src.rpm 89b873c628d9f9c3cf0e031571dba23a02ca47e1 ppc/curl-7.15.1-3.ppc.rpm d9a98e61bddf2a976bcd0bbca3f567dd2f971b0b ppc/curl-devel-7.15.1-3.ppc.rpm 64fd2d8247ddcea9ead35a579eacb76825a95f0e ppc/debug/curl-debuginfo-7.15.1-3.ppc.rpm b0f239c8622507a072776d2764be959445827487 x86_64/curl-7.15.1-3.x86_64.rpm 8240e70642da75927e081787266ce1c0dfb64fa6 x86_64/curl-devel-7.15.1-3.x86_64.rpm b5bdf46987d7d1169b3034d2395f3129c3ab1300 x86_64/debug/curl-debuginfo-7.15.1-3.x86_64.rpm d776e7f0b98d697ec747819d68f4fb5a97fb595c i386/curl-7.15.1-3.i386.rpm aafda2d4f423cf2821fb3361aadb59b8c80d63dd i386/curl-devel-7.15.1-3.i386.rpm d4a454a27855497b2e01a19486dd045f1a7009da i386/debug/curl-debuginfo-7.15.1-3.i386.rpm This update can be installed with the 'yum' update program. Use 'yum update package-name' at the command line. For more information, refer to 'Managing Software with yum,' available at . ----------------------------------------------------------------------- fedora-announce-list mailing list
Mar 21, 2006
Fedora
89
security advisoryFedoracritical updateFedora Core 3: FEDORA-2005-781 Critical: system-config-netboot Update
Updated package.. ---------------------------------------------------------------------Fedora Update Notification FEDORA-2005-781 2005-08-22 ---------------------------------------------------------------------Product : Fedora Core 3 Name : system-config-netboot Version : 0.1.30 Release : 1_FC3 Summary : system-config-netboot is an network booting/install configuration utility Description : system-config-netboot is a utility which allows you to configure diskless environments and network installations. ---------------------------------------------------------------------* Fri Aug 19 2005 Jason Vas Dias 0.1.30-1 - fix bug 166018 : disklessrc's findhardware was grep-ping for PCI vendor:device IDs in the pcitable; it now uses /lib/modules/$kernel/modules.pcimap instead. * Thu Aug 18 2005 Jason Vas Dias 0.1.28-1 - fix bug 166217 : the fixed-size initrd was not big enough for RHEL-4 smp kernel. updateDiskless now creates the initrd first in a directory; its size is then determined and the initrd.img is created with sufficient size. pxeos.py now determines the uncompressed size and pxeboot.py now writes the correct ramdisk_size to the syslinux.cfg file. ---------------------------------------------------------------------This update can be downloaded from: 23f59b65b7fef349ff324ce636bb5187 SRPMS/system-config-netboot-0.1.30-1_FC3.src.rpm 311286d73b0efc2ef0618bdbe3a5a58c x86_64/system-config-netboot-0.1.30-1_FC3.noarch.rpm 311286d73b0efc2ef0618bdbe3a5a58c i386/system-config-netboot-0.1.30-1_FC3.noarch.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. -----------------------------------------------------------------------fedora-announce-list mailing list
Aug 22, 2005
•Critical
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!