Linux security Advisories

Fix for CVE-2021-28831.

Update to upstream 20210315 release ---- Update to upstream 20210208 release: * rtl_bt: Updates for RTL8822C, RTL8821C, added RTL8852A * Link Cypress brcmfmac firmwares to old brcm location * brcm NVRAM updates for Raspberry Pi, added 96boards Rock960 * QCom SM8250 (SD865) firmware for Compute, Audio DSPs, Adreno a650, venus VPU-1.0 * i915: Added firmware for DG1, ADL-S * Uodated bluetooth

Security fix for CVE-2020-11988

New seamonkey packages are available for Slackware 14.2 and -current to fix security issues.

New curl packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues.

Upgrade to version 1.1.1.k Fixes CVEs CVE-2021-3449 CVE-2021-3450

An update is now available for Red Hat build of Quarkus. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability. For

An update for flatpak is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability

The 5.11.10 stable kernel update contains a "quick revert" of some 5.11.9 commits that caused noisy warnings to show up in the kernel log of some systems. ---- The 5.11.9 stable update contains a number of important fixes across the tree. ---- The 5.11.8 stable kernel update contains a number of important fixes across the tree.

New upstream version (87.0) Release notes are available here - https://www.mozilla.org/en-US/firefox/87.0/releasenotes/

Update to WebKitGTK 2.32.0: * NPAPI plugins support have been removed. * System font scaling factor is correctly applied now. * New permission request API for MediaKeySystem access. * New API to remove individual scripts/stylesheets using WebKitUserContentManager. * Web inspector now shows detailed information about main loop frames. * The minimum required GStreamer

New upstream release 2.0.27

The following vulnerabilities have been discovered in the webkit2gtk web engine: CVE-2020-27918

HVM soft-reset crashes toolstack [XSA-368, CVE-2021-28687] (#1940610)

This is the monthly .NET Core 3.1 update for March 2021. Release notes: https://github.com/dotnet/core/blob/main/release-notes/3.1/3.1.13/3.1.13.md This update includes a fix for CVE-2021-26701: .NET Core Remote Code Execution Vulnerability

HVM soft-reset crashes toolstack [XSA-368, CVE-2021-28687] (#1940610)

This is the monthly .NET Core 3.1 update for March 2021. Release notes: https://github.com/dotnet/core/blob/main/release-notes/3.1/3.1.13/3.1.13.md This update includes a fix for CVE-2021-26701: .NET Core Remote Code Execution Vulnerability

New upstream version (87.0) Release notes are available here - https://www.mozilla.org/en-US/firefox/87.0/releasenotes/

Security update for CVE-2021-3443 ---- New upstream release 2.0.26

An out of bounds read in function QRadialFetchSimd from crafted svg file may lead to information disclosure or other potential consequences. This update includes the backported upstream fix and should resolve the security issue.