Fedora Security Advisories

webkitgtk-2.46.3-1.fc40

Fedora Security Advisories
3 weeks ago
FEDORA-2024-4d940908db Packages in this update:
  • webkitgtk-2.46.3-1.fc40
Update description:

Update to WebKitGTK 2.46.3:

  • Flatten layers to a plane when preseve-3d style is set.
  • Fix DuckDuckGo links by adding a user agent quirk.
  • Fix several crashes and rendering issues.
  • Fixes: CVE-2024-44244, CVE-2024-44296

Changes from WebKitGTK 2.46.2:

  • Own well-known bus name on a11y bus.
  • Improve memory consumption when putImageData is used repeatedly on accelerated canvas.
  • Disable cached web process suspension for now to prevent leaks.
  • Improve text kerning with different combinations of antialias and hinting settings.
  • Destroy all network sessions on process exit.
  • Fix visible rectangle calculation when there are animations.
  • Fix the build with ENABLE_NOTIFICATIONS=OFF.
  • Fix several crashes and rendering issues.

webkitgtk-2.46.3-1.fc41

Fedora Security Advisories
3 weeks ago
FEDORA-2024-4e0b4ce6ad Packages in this update:
  • webkitgtk-2.46.3-1.fc41
Update description:

Update to WebKitGTK 2.46.3:

  • Flatten layers to a plane when preseve-3d style is set.
  • Fix DuckDuckGo links by adding a user agent quirk.
  • Fix several crashes and rendering issues.
  • Fixes: CVE-2024-44244, CVE-2024-44296

Changes from WebKitGTK 2.46.2:

  • Own well-known bus name on a11y bus.
  • Improve memory consumption when putImageData is used repeatedly on accelerated canvas.
  • Disable cached web process suspension for now to prevent leaks.
  • Improve text kerning with different combinations of antialias and hinting settings.
  • Destroy all network sessions on process exit.
  • Fix visible rectangle calculation when there are animations.
  • Fix the build with ENABLE_NOTIFICATIONS=OFF.
  • Fix several crashes and rendering issues.

webkitgtk-2.46.3-1.fc39

Fedora Security Advisories
3 weeks ago
FEDORA-2024-0f8a88da75 Packages in this update:
  • webkitgtk-2.46.3-1.fc39
Update description:

Update to WebKitGTK 2.46.3:

  • Flatten layers to a plane when preseve-3d style is set.
  • Fix DuckDuckGo links by adding a user agent quirk.
  • Fix several crashes and rendering issues.
  • Fixes: CVE-2024-44244, CVE-2024-44296

Changes from WebKitGTK 2.46.2:

  • Own well-known bus name on a11y bus.
  • Improve memory consumption when putImageData is used repeatedly on accelerated canvas.
  • Disable cached web process suspension for now to prevent leaks.
  • Improve text kerning with different combinations of antialias and hinting settings.
  • Destroy all network sessions on process exit.
  • Fix visible rectangle calculation when there are animations.
  • Fix the build with ENABLE_NOTIFICATIONS=OFF.
  • Fix several crashes and rendering issues.

krb5-1.21.3-3.fc41

Fedora Security Advisories
3 weeks 1 day ago
FEDORA-2024-c0961d31b8 Packages in this update:
  • krb5-1.21.3-3.fc41
Update description:

Security:

  • CVE-2024-3596: Fix for BlastRADIUS vulnerability in libkrad (support for Message-Authenticator attribute)
  • Marvin attack: Removal of the "RSA" method for PKINIT
  • Fix of miscellaneous mistakes in the code

Enhancement:

  • Rework of TCP request timeout (disabled by default, global timeout setting added)

krb5-1.21.3-2.fc40

Fedora Security Advisories
3 weeks 1 day ago
FEDORA-2024-29a74ac2b0 Packages in this update:
  • krb5-1.21.3-2.fc40
Update description:

Security:

  • CVE-2024-3596: Fix for BlastRADIUS vulnerability in libkrad (support for Message-Authenticator attribute)
  • Marvin attack: Removal of the "RSA" method for PKINIT
  • Fix of miscellaneous mistakes in the code

Enhancement:

  • Rework of TCP request timeout (disabled by default, global timeout setting added)

krb5-1.21.3-2.fc39

Fedora Security Advisories
3 weeks 1 day ago
FEDORA-2024-862f5c4156 Packages in this update:
  • krb5-1.21.3-2.fc39
Update description:

Security:

  • CVE-2024-3596: Fix for BlastRADIUS vulnerability in libkrad (support for Message-Authenticator attribute)
  • Marvin attack: Removal of the "RSA" method for PKINIT
  • Fix of miscellaneous mistakes in the code

Enhancement:

  • Rework of TCP request timeout (disabled by default, global timeout setting added)

yasm-1.3.0^20230922git9defefa-2.el9

Fedora Security Advisories
3 weeks 1 day ago
FEDORA-EPEL-2024-c20a11cabc Packages in this update:
  • yasm-1.3.0^20230922git9defefa-2.el9
Update description:

Update to latest upstream commit, fixes CVE-2021-31975 and CVE-2021-33454. Internal testsuite was also enabled as part of the build.

opendmarc-1.4.2-21.fc42

Fedora Security Advisories
3 weeks 2 days ago
FEDORA-2024-dede8e91b1 Packages in this update:
  • opendmarc-1.4.2-21.fc42
Update description:

Automatic update for opendmarc-1.4.2-21.fc42.

Changelog * Wed Oct 30 2024 Mikel Olasagasti Uranga <mikel@olasagasti.info> - 1.4.2-21 - Fix for CVE-2024-25768 - Closes rhbz#2266175 rhbz#2266174 * Tue Oct 29 2024 Mikel Olasagasti Uranga <mikel@olasagasti.info> - 1.4.2-15 - Simplify spec - Remove checks on if systemd is present - Remove checks on old Fedora releases - Remove checks on EL7 or older - Use make macros
Checked
57 minutes 20 seconds ago
URL
https://bodhi.fedoraproject.org/rss/updates/?type=security