Linux security Advisories

2021. január 17.

Mageia 2021-0040: synergy security update>

In Synergy before version 1.12.0, a Synergy server can be crashed by receiving a kMsgHelloBack packet with a client name length set to 0xffffffff (4294967295) if the servers memory is less than 4 GB. It was verified that this issue does not cause a crash through the exception handler if the available memory of the Server is more than 4GB (CVE-2020-15117).
2021. január 17.

Mageia 2021-0039: resteasy security update>

A flaw was found in Resteasy, where an improper input validation results in returning an illegal header that integrates into the server's response. This flaw may result in an injection, which leads to unexpected behavior when the HTTP response is constructed (CVE-2020-1695).
2021. január 16.

Fedora 33: chromium 2021-79926272ce>

Update to 87.0.4280.141. Fixes: CVE-2021-21106 CVE-2021-21107 CVE-2021-21108 CVE-2021-21109 CVE-2021-21110 CVE-2021-21111 CVE-2021-21112 CVE-2021-21113 CVE-2020-16043 CVE-2021-21114 CVE-2020-15995 CVE-2021-21115 CVE-2021-21116
2021. január 16.

openSUSE: 2021:0089-1 important: open-iscsi>

An update that contains security fixes can now be installed.
2021. január 16.

openSUSE: 2021:0093-1 important: MozillaThunderbird>

An update that fixes one vulnerability is now available.
2021. január 16.

openSUSE: 2021:0091-1 important: vlc>

An update that solves two vulnerabilities and has one errata is now available.
2021. január 16.

openSUSE: 2021:0082-1 moderate: nodejs10>

An update that fixes three vulnerabilities is now available.
2021. január 16.

openSUSE: 2021:0084-1 moderate: viewvc>

An update that fixes one vulnerability is now available.
2021. január 16.

openSUSE: 2021:0079-1 moderate: ceph>

An update that solves one vulnerability and has 5 fixes is now available.
2021. január 16.

openSUSE: 2021:0073-1 important: crmsh>

An update that fixes one vulnerability is now available.
2021. január 16.

openSUSE: 2021:0074-1 important: hawk2>

An update that fixes one vulnerability is now available.
2021. január 16.

openSUSE: 2021:0076-1 important: vlc>

An update that solves two vulnerabilities and has one errata is now available.
2021. január 15.

Fedora 33: flatpak 2021-f970ea9d79>

This updates flatpak from 1.8 to new 1.10 stable series. The major new feature in this series compared to 1.8 is the support for the new repo format which should make updates faster and download less data. For details what's new in 1.10, see https://github.com/flatpak/flatpak/releases/tag/1.10.0 This also includes a security update that fixes a sandbox escape where a malicious
2021. január 15.

Fedora 33: kernel 2021-620fb40359>

The 5.10.7 stable kernel update contains a number of important fixes across the tree.
2021. január 15.

Fedora 33: kernel-headers 2021-620fb40359>

The 5.10.7 stable kernel update contains a number of important fixes across the tree.
2021. január 15.

Fedora 33: python-cairosvg 2021-a2d05a2e65>

security fix for GHSA-hq37-853p-g5cf: "Regular Expression Denial of Service (REDoS)", rated as "moderate severity" published 17 hours ago by liZe
2021. január 15.

Fedora 32: kernel 2021-082e638d02>

The 5.10.7 stable kernel rebase contains new features, improved hardware support, and a number of important fixes across the tree.
2021. január 15.

Fedora 32: kernel-headers 2021-082e638d02>

The 5.10.7 stable kernel rebase contains new features, improved hardware support, and a number of important fixes across the tree.
2021. január 15.

Fedora 32: php 2021-ca0e53d310>

**PHP version 7.4.14** (07 Jan 2021) **Core:** * Fixed bug php#74558 (Can't rebind closure returned by Closure::fromCallable()). (cmb) * Fixed bug php#80345 (PHPIZE configuration has outdated PHP_RELEASE_VERSION). (cmb) * Fixed bug php#72964 (White space not unfolded for CC/Bcc headers). (cmb) * Fixed bug php#80362 (Running dtrace scripts can cause php to crash). (al at coralnet dot
2021. január 15.

ArchLinux: 202101-24: atftp: denial of service>

The package atftp before version 0.7.2-3 is vulnerable to denial of service.