Firefox, QT, Ghostscript, and more updates for Gentoo

Gentoo 2518 Published by Philipp Esselbach 0

Gentoo Linux has received multiple updates addressing several security vulnerabilities, which include issues in Mozilla Firefox, QtWebEngine, Qt: Buffer Overflow, libgsf, GPL Ghostscript, libuv, and Yubico pam-u2f:

[ GLSA 202501-10 ] Mozilla Firefox: Multiple Vulnerabilities
[ GLSA 202501-09 ] QtWebEngine: Multiple Vulnerabilities
[ GLSA 202501-08 ] Qt: Buffer Overflow
[ GLSA 202501-07 ] libgsf: Multiple Vulnerabilities
[ GLSA 202501-06 ] GPL Ghostscript: Multiple Vulnerabilities
[ GLSA 202501-05 ] libuv: Hostname Truncation
[ GLSA 202501-04 ] Yubico pam-u2f: Partial Authentication Bypass

Distrobox, eza, idna, libvirt, OpenSC updates for Gentoo Linux

Gentoo 2518 Published by Philipp Esselbach 0

Gentoo Linux has received updates that include multiple security patches, such as eza, Distrobox, idna, libvirt, and OpenSC, which address a range of vulnerabilities:

[ GLSA 202412-19 ] eza: Arbitrary Code Execution
[ GLSA 202412-18 ] Distrobox: Arbitrary Code Execution
[ GLSA 202412-17 ] idna: Denial of Service
[ GLSA 202412-16 ] libvirt: Multiple Vulnerabilities
[ GLSA 202412-15 ] OpenSC: Multiple Vulnerabilities

OATH Toolkit, Dnsmasq, Salt, and more updates for Gentoo Linux

Gentoo 2518 Published by Philipp Esselbach 0

The most recent security updates for Gentoo Linux encompass OATH Toolkit, Dnsmasq, Salt, icinga2, OpenJDK, Mozilla Thunderbird, Chromium, Google Chrome, and Microsoft Edge. Opera, Mozilla Firefox, Asterisk, Cacti, Dnsmasq, Salt, icinga2, and R:

[ GLSA 202412-11 ] OATH Toolkit: Privilege Escalation
[ GLSA 202412-10 ] Dnsmasq: Multiple Vulnerabilities
[ GLSA 202412-09 ] Salt: Multiple Vulnerabilities
[ GLSA 202412-08 ] icinga2: Multiple Vulnerabilities
[ GLSA 202412-07 ] OpenJDK: Multiple Vulnerabilities
[ GLSA 202412-06 ] Mozilla Thunderbird: Multiple Vulnerabilities
[ GLSA 202412-05 ] Chromium, Google Chrome, Microsoft Edge. Opera: Multiple Vulnerabilities
[ GLSA 202412-04 ] Mozilla Firefox: Multiple Vulnerabilities
[ GLSA 202412-03 ] Asterisk: Multiple Vulnerabilities
[ GLSA 202412-02 ] Cacti: Multiple Vulnerabilities
[ GLSA 202412-01 ] R: Arbitrary Code Execution

Ubiquiti UniFi, Flatpak, Neat VNC, libgit2, EditorConfig updates for Gentoo

Gentoo 2518 Published by Philipp Esselbach 0

Gentoo Linux has been updated with security enhancements, which include Ubiquiti UniFi, Flatpak, Neat VNC, libgit2, and the EditorConfig core C library. These updates address issues related to privilege escalation, sandbox escape, authentication bypass, and various vulnerabilities.

[ GLSA 202411-03 ] Ubiquiti UniFi: Privilege Escalation
[ GLSA 202411-02 ] Flatpak: Sandbox Escape
[ GLSA 202411-01 ] Neat VNC: Authentication Bypass
[ GLSA 202411-05 ] libgit2: Multiple Vulnerabilities
[ GLSA 202411-04 ] EditorConfig core C library: arbitrary stack write

Nginx, Apache, Yt-Dlp, and more updates for Gentoo Linux

Gentoo 2518 Published by Philipp Esselbach 0

Gentoo Linux has received a number of security updates, including nginx, Apache HTTPD, yt-dlp, Docker, HashiCorp Consul, tmux, and Iced Tea:

[ GLSA 202409-32 ] nginx: Multiple Vulnerabilities
[ GLSA 202409-31 ] Apache HTTPD: Multiple Vulnerabilities
[ GLSA 202409-30 ] yt-dlp: Multiple Vulnerabilities
[ GLSA 202409-29 ] Docker: Multiple Vulnerabilities
[ GLSA 202409-28 ] HashiCorp Consul: Multiple Vulnerabilities
[ GLSA 202409-27 ] tmux: Null Pointer Dereference
[ GLSA 202409-26 ] IcedTea: Multiple Vulnerabilities

Xen, Exo, OpenVPN, and more updates for Gentoo

Gentoo 2518 Published by Philipp Esselbach 0

The most recent Gentoo Linux security updates address several vulnerabilities in Xen, Exo, OpenVPN, Rust, file, PJSIP, calibre, GPL Ghostscript, PostgreSQL, Portage, Emacs, org-mode, liblouis, VLC, Slurm, stb, Mbed TLS, gst-plugins-good, pypy, pypy3, and Oracle VirtualBox. These vulnerabilities are intended to address concerns such as arbitrary code execution, file stack buffer overflow, PJSIP, portage, command execution, and others.

[ GLSA 202409-10 ] Xen: Multiple Vulnerabilities
[ GLSA 202409-09 ] Exo: Arbitrary Code Execution
[ GLSA 202409-08 ] OpenVPN: Multiple Vulnerabilities
[ GLSA 202409-07 ] Rust: Multiple Vulnerabilities
[ GLSA 202409-06 ] file: Stack Buffer Overread
[ GLSA 202409-05 ] PJSIP: Heap Buffer Overflow
[ GLSA 202409-04 ] calibre: Multiple Vulnerabilities
[ GLSA 202409-03 ] GPL Ghostscript: Multiple Vulnerabilities
[ GLSA 202409-02 ] PostgreSQL: Privilege Escalation
[ GLSA 202409-01 ] Portage: Unverified PGP Signatures
[ GLSA 202409-19 ] Emacs, org-mode: Command Execution Vulnerability
[ GLSA 202409-18 ] liblouis: Multiple Vulnerabilities
[ GLSA 202409-17 ] VLC: Multiple Vulnerabilities
[ GLSA 202409-16 ] Slurm: Multiple Vulnerabilities
[ GLSA 202409-15 ] stb: Multiple Vulnerabilities
[ GLSA 202409-14 ] Mbed TLS: Multiple Vulnerabilities
[ GLSA 202409-13 ] gst-plugins-good: Multiple Vulnerabilities
[ GLSA 202409-12 ] pypy, pypy3: Multiple Vulnerabilities
[ GLSA 202409-11 ] Oracle VirtualBox: Multiple Vulnerabilities

Nokogiri, Redis, Bitcoin updates, and more for Gentoo

Gentoo 2518 Published by Philipp Esselbach 0

The following security updates are available for Gentoo Linux:

[ GLSA 202408-13 ] Nokogiri: Denial of Service
[ GLSA 202408-05 ] Redis: Multiple Vulnerabilities
[ GLSA 202408-12 ] Bitcoin: Denial of Service
[ GLSA 202408-11 ] aiohttp: Multiple Vulnerabilities
[ GLSA 202408-10 ] nghttp2: Multiple Vulnerabilities
[ GLSA 202408-09 ] Cairo: Multiple Vulnerabilities
[ GLSA 202408-08 ] json-c: Buffer Overflow
[ GLSA 202408-07 ] Go: Multiple Vulnerabilities
[ GLSA 202408-06 ] PostgreSQL: Multiple Vulnerabilities
[ GLSA 202408-04 ] Levenshtein: Remote Code Execution

Windows

Linux

macOS

Community

  • dhamu
    Hello Phil, I have a Linux Tutorial website that curre ...
  • StephanX
    Hi friends, i am new in the Linux universe but i try to ...
  • Philipp
    I would try the XanMod kernel: https://xanmod.org  I ...