|
Dernières alertes de sécuritéMageia 2023-0280: libvpx security update> date : 2023-10-02 12:19:00> lien : https://linuxsecurity.com/advisories/mageia/mageia-2023-0280... Heap buffer overflow in vp8 encoding in libvpx allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. References: - https://bugs.mageia.org/show_bug.cgi?id=32342 [...] Mageia 2023-0275: wireshark security update> date : 2023-09-30 21:17:00> lien : https://linuxsecurity.com/advisories/mageia/mageia-2023-0275... The updated wireshark packages fix security vulnerabilities: Due to a failure in validating the length provided by an attacker-crafted CP2179 packet, Wireshark versions 2.0.0 through 4.0.7 is susceptible to a divide by zero allowing for a denial of service [...] Mageia 2023-0276: xrdp security update> date : 2023-09-30 21:17:00> lien : https://linuxsecurity.com/advisories/mageia/mageia-2023-0276... In versions prior to 0.9.23 improper handling of session establishment errors allows bypassing OS-level session restrictions. The `auth_start_session` function can return non-zero (1) value on, e.g., PAM error which may result in in session restrictions such as max concurrent sessions per user by PAM (ex ./etc/security/limits.conf) to [...] Mageia 2023-0277: flac security update> date : 2023-09-30 21:17:00> lien : https://linuxsecurity.com/advisories/mageia/mageia-2023-0277... The updated packages fix a security vulnerability: Buffer Overflow vulnerability in function bitwriter_grow_ in flac before 1.4.0 allows remote attackers to run arbitrary code via crafted input to the encoder. (CVE-2020-22219) [...] | page précédente | page 3 | page suivante | |
|
connected from address localhost (127.0.0.1:18388)
using Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
served for Ironie.org by Debian GNU/Linux