31.08.2019 23:32 Multiple vulnerabilities have been found in Dovecot, the worst of which could result in the arbitrary execution of code.
31.08.2019 23:32 A vulnerability in the GNOME desktop library may allow attackers to escape the sandbox.
31.08.2019 21:34 An update that fixes one vulnerability is now available.
31.08.2019 19:35 A vulnerability in Nautilus may allow attackers to escape the sandbox.
31.08.2019 19:35 Multiple vulnerabilities have been found in libofx, the worst of which could result in the arbitrary execution of code.
31.08.2019 16:47 The mpg123 package has been updated to version 1.25.12, fixing several issues which could cause it to crash or hang while parsing mp3 files. References: - https://bugs.mageia.org/show_bug.cgi?id=25350
31.08.2019 16:47 Updated webmin package fixes security vulnerability: Webmin before 1.930 allows remote exploits if the option to change expired passwords is enabled .
31.08.2019 16:47 Updated ghostscript packages fix security vulnerability: It was found that the .buildfont1 procedure did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. An attacker could abuse this flaw by creating a specially crafted PostScript
31.08.2019 16:47 Updated pango package fixes security vulnerability: It was discovered that pango was subject to a heap based buffer overflow vulnerability which could be used to get code execution .
31.08.2019 16:47 Updated ansible package fixes security vulnerability: A flaw was discovered in the way Ansible templating was implemented before version 2.7.12, causing the possibility of information disclosure through unexpected variable substitution. By taking advantage of unintended variable
31.08.2019 16:47 Updated vlc packages fixes security vulnerabilities: Multiple security issues were discovered in the VLC media player, which could result in the execution of arbitrary code or denial of service if a malformed file/stream is processed (CVE-2019-13602, CVE-2019-13962,
31.08.2019 16:47 AUpdated memcached packages fix security vulnerability: In memcached before 1.5.14, a NULL pointer dereference was found in the "lru mode" and "lru temp_ttl" commands. This causes a denial of service when parsing crafted lru command messages in process_lru_command in
31.08.2019 16:47 Updated wavpack packages fixes security vulnerabilities: Rohan Padhye discovered that WavPack incorrectly handled certain WAV files. An attacker could possibly use this issue to cause a denial of service .
31.08.2019 16:47 Updated wavpack packages fixes security vulnerabilities: It was discovered that WavPack incorrectly handled certain DFF files. An attacker could possibly use this issue to cause a denial of service .
31.08.2019 16:47 A number of potential side channel attacks were discovered in the SAE implementations used by both hostapd and wpa_supplicant . SAE is also known as WPA3-Personal. The discovered side channel attacks may be able to leak information about the used