Dernières alertes de sécurité
Mageia 2023-0280: libvpx security update
> date : 2023-10-02 12:19:00
> lien :
https://linuxsecurity.com/advisories/mageia/mageia-2023-0280...
Heap buffer overflow in vp8 encoding in libvpx allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. References: - https://bugs.mageia.org/show_bug.cgi?id=32342 [...]
Mageia 2023-0275: wireshark security update
> date : 2023-09-30 21:17:00
> lien :
https://linuxsecurity.com/advisories/mageia/mageia-2023-0275...
The updated wireshark packages fix security vulnerabilities: Due to a failure in validating the length provided by an attacker-crafted CP2179 packet, Wireshark versions 2.0.0 through 4.0.7 is susceptible to a divide by zero allowing for a denial of service [...]
Mageia 2023-0276: xrdp security update
> date : 2023-09-30 21:17:00
> lien :
https://linuxsecurity.com/advisories/mageia/mageia-2023-0276...
In versions prior to 0.9.23 improper handling of session establishment errors allows bypassing OS-level session restrictions. The `auth_start_session` function can return non-zero (1) value on, e.g., PAM error which may result in in session restrictions such as max concurrent sessions per user by PAM (ex ./etc/security/limits.conf) to [...]
Mageia 2023-0277: flac security update
> date : 2023-09-30 21:17:00
> lien :
https://linuxsecurity.com/advisories/mageia/mageia-2023-0277...
The updated packages fix a security vulnerability: Buffer Overflow vulnerability in function bitwriter_grow_ in flac before 1.4.0 allows remote attackers to run arbitrary code via crafted input to the encoder. (CVE-2020-22219) [...]
|
page précédente |
page 3 |
page suivante |
Mageia 2023-0280: libvpx security update
Sécurité
Classement
