Download
| Alert*
|
oval:org.secpod.oval:def:71240
ruby-rack: modular Ruby webserver interface Details: USN-4561-1 fixed vulnerabilities in Rack. This update provides the corresponding update for Linux Mint 18.x LTS, Linux Mint 20.x LTS and Ubuntu 20.10. Original advisory Rack could be made to expose sensitive information over the network. oval:org.secpod.oval:def:73432 gnome-autoar: Archive integration support for GNOME Details: USN-4937-1 fixed a vulnerability in GNOME Autoar. The update caused a regression when extracting certain archives. This update fixes the problem. Original advisory USN-4937-1 introduced a regression in GNOME Autoar. oval:org.secpod.oval:def:75923 firefox: Mozilla Open Source web browser Details: USN-5037-1 fixed vulnerabilities in Firefox. The update introduced a regression that caused Firefox to repeatedly prompt for a password. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-5037-1 caused a regressi ... oval:org.secpod.oval:def:75934 ntfs-3g: read/write NTFS driver for FUSE NTFS-3G could be made to execute arbitrary code if it received a specially crafted image file. oval:org.secpod.oval:def:75960 linux: Linux kernel - linux-hwe-5.11: Linux hardware enablement kernel - linux-hwe-5.4: Linux hardware enablement kernel - linux-hwe: Linux hardware enablement kernel IBM s390x systems could be made to crash or run programs as an administrator. oval:org.secpod.oval:def:75963 ca-certificates: Common CA certificates A certificate about to expire was removed from ca-certificates. oval:org.secpod.oval:def:75964 apache2: Apache HTTP server Details: USN-5090-1 fixed vulnerabilities in Apache HTTP Server. One of the upstream fixes introduced a regression in UDS URIs. This update fixes the problem. Original advisory USN-5090-1 introduced a regression in Apache HTTP Server. oval:org.secpod.oval:def:75967 linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-5.4: Linux kernel for Microsoft Azure cloud systems Details: USN-5091-1 fixed vulnerabilities in Linux 5.4-based kernels. Unfortunately, for Linux kernels intended for use within Microsoft Azure environments, that update intro ... oval:org.secpod.oval:def:75970 linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-5.11: Linux kernel for Microsoft Azure cloud systems Details: USN-5092-2 fixed vulnerabilities in Linux 5.11-based kernels. Unfortunately, for Linux kernels intended for use within Microsoft Azure environments, that update int ... oval:org.secpod.oval:def:75977 imlib2: Image manipulation and rendering library Imlib2 could be made to denial of service and possibly execute arbitrary code. oval:org.secpod.oval:def:75996 apport: automatically generate crash reports for debugging Apport could be made to create files as the administrator. oval:org.secpod.oval:def:75959 tiff: Tag Image File Format library LibTIFF could be made to crash or run programs if it opened a specially crafted file. oval:org.secpod.oval:def:79879 firefox: Mozilla Open Source web browser Details: USN-5321-1 fixed vulnerabilities in Firefox. The update introduced several minor regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-5321-1 introduced minor regressions in Firefox. oval:org.secpod.oval:def:79884 tar: GNU version of the tar archiving utility tar could be made to crash if it received specially crafted file. oval:org.secpod.oval:def:80422 git: fast, scalable, distributed revision control system Details: USN-5376-1 fixed vulnerabilities in Git, some patches were missing to properly fix the issue. This update fixes the problem. Original advisory UNS-5376-1 was missing patches to properly fix the addressed issues. oval:org.secpod.oval:def:75938 python-pysaml2: Pure python implementation of SAML2 PySAML2 could be made to accept invalid SAML documents. oval:org.secpod.oval:def:71251 python-django: High-level Python web development framework Django could be made to overwrite files. oval:org.secpod.oval:def:79868 ckeditor: text editor which can be embedded into web pages Several security issues were fixed in CKEditor. oval:org.secpod.oval:def:71237 squid: Web proxy cache server - squid3: Web proxy cache server Several security issues were fixed in Squid. oval:org.secpod.oval:def:72099 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:72088 intel-microcode: Processor microcode for Intel CPUs Details: USN-4628-1 provided updated Intel Processor Microcode for various processor types. This update provides the corresponding updates for some additional processor types. Original advisory Several security issues were fixed in Intel Microcode. oval:org.secpod.oval:def:72094 gnome-autoar: Archive integration support for GNOME GNOME Autoar could be made to overwrite files. oval:org.secpod.oval:def:72093 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:72090 clamav: Anti-virus utility for Unix Details: USN-4918-1 fixed vulnerabilities in ClamAV. The updated package could fail to properly scan in some situations. This update fixes the problem. Original advisory USN-4918-1 introduced a regression in ClamAV that could cause it to fail to scan. oval:org.secpod.oval:def:70299 lxml: pythonic binding for the libxml2 and libxslt libraries lxml could allow cross-site scripting attacks. oval:org.secpod.oval:def:70296 openssl: Secure Socket Layer cryptographic library and tools - openssl1.0: Secure Socket Layer cryptographic library and tools OpenSSL could be made to crash if it processed specially crafted input. oval:org.secpod.oval:def:70297 aptdaemon: transaction based package management service Several security issues were fixed in Aptdaemon. oval:org.secpod.oval:def:70298 gdk-pixbuf: GDK Pixbuf library GDK-PixBuf could be made to hang if it opened a specially crafted file. oval:org.secpod.oval:def:70288 xorg-server: X.Org X11 server - xorg-server-hwe-18.04: X.Org X11 server - xorg-server-hwe-16.04: X.Org X11 server Several security issues were fixed in X.Org X Server. oval:org.secpod.oval:def:70284 mysql-8.0: MySQL database MySQL could allow unintended access to network services. oval:org.secpod.oval:def:70286 containerd: daemon to control runC containerd could be made to crash or run programs as an administrator if it opened a specially crafted file. oval:org.secpod.oval:def:70291 php-pear: PHP Extension and Application Repository PEAR could be made to run programs as an administrator. oval:org.secpod.oval:def:70256 libexif: library to parse EXIF files libexif could be made to execute arbitrary code if it received a specially crafted input. oval:org.secpod.oval:def:70258 intel-microcode: Processor microcode for Intel CPUs Several security issues were fixed in Intel Microcode. oval:org.secpod.oval:def:70244 accountsservice: query and manipulate user account information Several security issues were fixed in AccountsService. oval:org.secpod.oval:def:70245 gdm3: GNOME Display Manager GDM could be made to create privileged users. oval:org.secpod.oval:def:70247 spice-vdagent: Spice agent for Linux Several security issues were fixed in SPICE vdagent. oval:org.secpod.oval:def:70277 mutt: text-based mailreader supporting MIME, GPG, PGP and threading Mutt could be made to expose sensitive information. oval:org.secpod.oval:def:70273 pulseaudio: PulseAudio sound server PulseAudio could be made to expose sensitive information. oval:org.secpod.oval:def:70281 xdg-utils: desktop integration utilities from freedesktop.org xdg-utils could be made to expose sensitive information. oval:org.secpod.oval:def:70266 intel-microcode: Processor microcode for Intel CPUs Details: USN-4628-1 provided updated Intel Processor Microcode. Unfortunately, that update prevented certain processors in the Intel Tiger Lake family from booting successfully. This update reverts the microcode update for the Tiger Lake processor ... oval:org.secpod.oval:def:70267 openjdk-8: Open Source Java implementation - openjdk-lts: Open Source Java implementation Details: USN-4607-1 fixed vulnerabilities and added features in OpenJDK. Unfortunately, that update introduced a regression that could cause TLS connections with client certificate authentication to fail in som ... oval:org.secpod.oval:def:70269 krb5: MIT Kerberos Network Authentication Protocol Kerberos could be made to consume unlimited resources if it received specially crafted ASN.1. oval:org.secpod.oval:def:70264 apport: automatically generate crash reports for debugging Details: USN-4171-1 fixed vulnerabilities in Apport. The update caused a regression when handling configuration files. This update fixes the problem, and also introduces further hardening measures. Original advisory USN-4171-1 introduced a r ... oval:org.secpod.oval:def:70265 openldap: Lightweight Directory Access Protocol OpenLDAP could be made to crash if it received specially crafted network traffic. oval:org.secpod.oval:def:70336 xdg-utils: desktop integration utilities from freedesktop.org Details: USN-4649-1 fixed vulnerabilities in xdg-utils. That update caused a regression by removing the --attach functionality in thunderbird and others applications. This update fix the problem by reverting these changes. Original adviso ... oval:org.secpod.oval:def:70337 coturn: TURN and STUN server for VoIP coTURN could be made to crash or run programs if it received specially crafted network traffic. oval:org.secpod.oval:def:70334 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:70329 edk2: UEFI firmware for virtual machines Several security issues were fixed in EDK II. oval:org.secpod.oval:def:70325 wavpack: audio codec - encoder and decoder WavPack could be made to execute arbitrary code or crash if it received a specially crafted WAV file. oval:org.secpod.oval:def:70321 horizon: Web interface for OpenStack cloud infrastructure OpenStack Horizon could be made to redirect to a malicious URL. oval:org.secpod.oval:def:70322 p11-kit: p11-glue utilities Several security issues were fixed in p11-kit. oval:org.secpod.oval:def:70320 python-apt: Python interface to libapt-pkg Details: USN-4668-1 fixed vulnerabilities in python-apt. The update caused a regression when using certain APIs with a file handle. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-4668-1 introduced a regression in py ... oval:org.secpod.oval:def:70358 tcmu: TCM-Userspace backend tcmu could be made to crash if it received specially crafted input. oval:org.secpod.oval:def:70115 openexr: tools for the OpenEXR image format Several security issues were fixed in OpenEXR. oval:org.secpod.oval:def:70351 mutt: text-based mailreader supporting MIME, GPG, PGP and threading Mutt could be made to denial of service if it received a specially crafted email message. oval:org.secpod.oval:def:70319 dovecot: IMAP and POP3 email server Several security issues were fixed in Dovecot. oval:org.secpod.oval:def:70303 lxml: pythonic binding for the libxml2 and libxslt librarie Details: USN-4666-1 partially fixed a vulnerability in lxml, but an additional patch was needed. This update provides the corresponding additional patch in order to properly fix the vulnerability. Original advisory lxml could allow cross-si ... oval:org.secpod.oval:def:70305 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud sys ... oval:org.secpod.oval:def:70301 python-apt: Python interface to libapt-pkg python-apt could be made to crash if it opened a specially crafted file. oval:org.secpod.oval:def:72110 python-babel: tools for internationalizing Python applications Babel code be made to execute arbitrary code if it received a specially crafted input. oval:org.secpod.oval:def:72109 python-pip: Python package installer pip could be made to install different git revisions. oval:org.secpod.oval:def:72104 python-eventlet: concurrent networking library Eventlet could be made denial of service if it received a specially crafted request. oval:org.secpod.oval:def:72103 awstats: powerful and featureful web server log analyzer Several security issues were fixed in AWStats. oval:org.secpod.oval:def:72106 caribou: Configurable on screen keyboard with scanning mode Applications using Caribou could be made to crash if given specially crafted input. oval:org.secpod.oval:def:72100 mariadb-10.5: MariaDB database development files - mariadb-10.3: MariaDB database - mariadb-10.1: MariaDB database Several security issues were fixed in MariaDB. oval:org.secpod.oval:def:70378 snapd: Daemon and tooling that enable snap packages An intended access restriction in snapd could be bypassed by container management snaps. oval:org.secpod.oval:def:70379 gnome-autoar: Archive integration support for GNOME GNOME Autoar could be made to overwrite files. oval:org.secpod.oval:def:70372 php-pear: PHP Extension and Application Repository PEAR could be made to overwrite files as the administrator. oval:org.secpod.oval:def:70373 openjdk-8: Open Source Java implementation - openjdk-lts: Open Source Java implementation OpenJDK could be made to crash if it received specially crafted input. oval:org.secpod.oval:def:70374 firefox: Mozilla Open Source web browser Details: USN-4717-1 fixed vulnerabilities in Firefox. The update caused a startup hang in some circumstances. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-4717-1 introduced a regression in Firefox. oval:org.secpod.oval:def:70381 junit4: Simple framework to write repeatable tests The system could be made to expose sensitive information. oval:org.secpod.oval:def:70365 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:70366 ca-certificates: Common CA certificates The CA certificates in the ca-certificates package were updated. oval:org.secpod.oval:def:70368 apport: automatically generate crash reports for debugging Several security issues were fixed in Apport. oval:org.secpod.oval:def:70120 qemu: Machine emulator and virtualizer Several security issues were fixed in QEMU. oval:org.secpod.oval:def:70362 linux: Linux kernel Details: USN-4576-1 fixed a vulnerability in the overlay file system implementation in the Linux kernel. Unfortunately, that fix introduced a regression that could incorrectly deny access to overlay files in some situations. This update fixes the problem. We apologize for the inc ... oval:org.secpod.oval:def:70363 mysql-8.0: MySQL database - mysql-5.7: MySQL database Several security issues were fixed in MySQL. oval:org.secpod.oval:def:70364 python-django: High-level Python web development framework Django could be made to overwrite files. oval:org.secpod.oval:def:70371 openldap: Lightweight Directory Access Protocol Several security issues were fixed in OpenLDAP. oval:org.secpod.oval:def:70156 qemu: Machine emulator and virtualizer Several security issues were fixed in QEMU. oval:org.secpod.oval:def:70394 screen: terminal multiplexer with VT100/ANSI terminal emulation GNU Screen could be made to crash or run programs if it processed specially crafted character sequences. oval:org.secpod.oval:def:70395 dnsmasq: Small caching DNS proxy and DHCP/TFTP server Details: USN-4698-1 fixed vulnerabilities in Dnsmasq. The updates introduced regressions in certain environments related to issues with multiple queries, and issues with retries. This update fixes the problem. Original advisory USN-4698-1 introdu ... oval:org.secpod.oval:def:70160 containerd - daemon to control runC. containerd packages from USN-4653-1 were reverted in order to fix a dependency issue with the docker package. This new update fixes the same issues as the previous one. Containerd could be made to crash or run programs as an administrator. oval:org.secpod.oval:def:70149 cryptsetup - disk encryption support - startup scripts. Cryptsetup could be made to execute arbitrary code if it received a specially crafted input. oval:org.secpod.oval:def:70387 shiro: Powerful and easy-to-use Java security framework Apache Shiro could be made to crash if it received specially crafted input. oval:org.secpod.oval:def:70389 gdk-pixbuf: GDK Pixbuf library GDK-PixBuf could be made to crash if it opened a specially crafted file. oval:org.secpod.oval:def:70383 postgresql-12: Object-relational SQL database PostgreSQL could be made to expose sensitive information. oval:org.secpod.oval:def:70384 bind9: Internet Domain Name Server Bind could be made to crash or run programs if it received specially crafted network traffic. oval:org.secpod.oval:def:70386 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK. oval:org.secpod.oval:def:70391 openldap: Lightweight Directory Access Protocol OpenLDAP could be made to crash if it received specially crafted network traffic. oval:org.secpod.oval:def:70392 qemu: Machine emulator and virtualizer Details: USN-4467-1 fixed vulnerabilities in QEMU. The fix for CVE-2020-13754 introduced a regression in certain environments. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-4467-1 introduced a regression in QEMU. oval:org.secpod.oval:def:70151 tar: GNU version of the tar archiving utility Several security issues were fixed in tar. oval:org.secpod.oval:def:70393 xterm: X terminal emulator xterm could be made to crash or run programs if it handled specially crafted character sequences. oval:org.secpod.oval:def:70216 linux: Linux kernel Details: USN-4367-1 fixed vulnerabilities in the 5.4 Linux kernel. Unfortunately, that update introduced a regression in overlayfs. This update corrects the problem. We apologize for the inconvenience. Original advisory USN-4367-1 introduced a regression in the Linux kernel. oval:org.secpod.oval:def:70209 dovecot: IMAP and POP3 email server Several security issues were fixed in Dovecot. oval:org.secpod.oval:def:70202 file-roller: archive manager for GNOME Details: USN-4332-1 fixed vulnerabilities in File Roller. This update provides the corresponding update for Linux Mint 20.x LTS. Original advisory File Roller could be made to expose sensitive information. oval:org.secpod.oval:def:78179 ghostscript: PostScript and PDF interpreter Several security issues were fixed in Ghostscript. oval:org.secpod.oval:def:70237 ldm: LTSP display manager LTSP Display Manager could be made to escalate user privileges. oval:org.secpod.oval:def:70236 busybox: Tiny utilities for small and embedded systems Fraudulent security certificates could allow sensitive information to be exposed when accessing the Internet. oval:org.secpod.oval:def:78190 strongswan: IPsec VPN solution strongSwan could crash or allow unintended access to network services. oval:org.secpod.oval:def:70227 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-oracle: Linux kernel for Oracle Cloud systems - linux-aws-5.3: Linux kernel for Amazon Web ... oval:org.secpod.oval:def:78193 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK. oval:org.secpod.oval:def:70225 nfs-utils: None nfs-utils could be made to overwrite files as the administrator. oval:org.secpod.oval:def:70406 wpa: client support for WPA and WPA2 wpa_supplicant could be made to crash or run programs if it received specially crafted network traffic. oval:org.secpod.oval:def:70404 tiff: Tag Image File Format library Several security issues were fixed in LibTIFF. oval:org.secpod.oval:def:78168 exiv2: EXIF/IPTC/XMP metadata manipulation tool Details: USN-5043-1 fixed vulnerabilities in Exiv2. The update introduced a new regression that could cause a crash in applications using libexiv2. This update fixes the problem. We apologize for the inconvenience. Original advisory Introduced regressi ... oval:org.secpod.oval:def:78169 firefox: Mozilla Open Source web browser Details: USN-5186-1 fixed vulnerabilities in Firefox. The update introduced several minor regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-5186-1 caused some minor regressions in Firefox. oval:org.secpod.oval:def:64138 Linux Mint 20.x is installed oval:org.secpod.oval:def:71636 exim4: Exim is a mail transport agent Several security issues were fixed in Exim. oval:org.secpod.oval:def:70331 openjpeg2: JPEG 2000 image compression/decompression library Several security issues were fixed in OpenJPEG. oval:org.secpod.oval:def:70223 bind9: Internet Domain Name Server Bind could be made to crash if it received specially crafted network traffic. oval:org.secpod.oval:def:70253 openldap: Lightweight Directory Access Protocol OpenLDAP could be made to crash or run programs if it received specially crafted network traffic. oval:org.secpod.oval:def:70249 tmux: terminal multiplexer tmux could be made to crash or execute arbitrary code if it received a specially crafted input. oval:org.secpod.oval:def:71245 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:71249 spamassassin: Perl-based spam filter using text analysis SpamAssassin could be made to run programs if it opened a specially crafted file. oval:org.secpod.oval:def:70262 postgresql-12: Object-relational SQL database - postgresql-10: Object-relational SQL database - postgresql-9.5: Object-relational SQL database Several security issues were fixed in PostgreSQL. oval:org.secpod.oval:def:75951 apport: automatically generate crash reports for debugging Several security issues were fixed in Apport. oval:org.secpod.oval:def:70300 apt: Advanced front-end for dpkg APT could be made to crash or stop responding if it opened a specially crafted file. oval:org.secpod.oval:def:70263 vino: VNC server for GNOME - libvncserver: vnc server library LibVNCServer and Vino could be made to crash. oval:org.secpod.oval:def:70357 libxstream-java: Java library to serialize objects to XML and back again Several security issues were fixed in libxstream-java. oval:org.secpod.oval:def:70347 log4net: Highly configurable logging API for the CLI log4net Apache Log4net could made to expose sensitive information if it received a specially crafted configuration file. oval:org.secpod.oval:def:70260 raptor2: RDF syntax library raptor2 could be made to crash or run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:70117 samba: SMB/CIFS file, print, and login server for Unix Several security issues were fixed in Samba. oval:org.secpod.oval:def:71247 lxml: pythonic binding for the libxml2 and libxslt libraries lxml could allow cross-site scripting attacks. oval:org.secpod.oval:def:72105 djvulibre: DjVu image format library and tools Several security issues were fixed in DjVuLibre. oval:org.secpod.oval:def:79878 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:79892 openvpn: virtual private network software OpenVPN could allow unintended access to network services. oval:org.secpod.oval:def:78177 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK. oval:org.secpod.oval:def:70385 openssl: Secure Socket Layer cryptographic library and tools - openssl1.0: Secure Socket Layer cryptographic library and tools Several security issues were fixed in OpenSSL. oval:org.secpod.oval:def:70122 sqlite3: C library that implements an SQL database engine Several security issues were fixed in SQLite. oval:org.secpod.oval:def:70282 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK. oval:org.secpod.oval:def:70200 re2c: tool for generating fast C-based recognizers Details: USN-4338-1 fixed vulnerabilities in re2c. This update provides the corresponding update for Linux Mint 20.x LTS. Original advisory re2c could be made to execute arbitrary code if it received a specially crafted file. oval:org.secpod.oval:def:89383 lrzip: compression program with a very high compression ratio Several security issues were fixed in Long Range ZIP. oval:org.secpod.oval:def:71250 openexr: tools for the OpenEXR image format Several security issues were fixed in OpenEXR. oval:org.secpod.oval:def:70323 openexr: tools for the OpenEXR image format Several security issues were fixed in OpenEXR. oval:org.secpod.oval:def:70318 libproxy: automatic proxy configuration management library libproxy could be made to crash or execute arbitrary code if it received a specially crafted file. oval:org.secpod.oval:def:78165 apache-log4j2: Apache Log4j - Logging Framework for Java Several security issues were fixed in Apache Log4j 2. oval:org.secpod.oval:def:80432 networkd-dispatcher: Dispatcher service for systemd-networkd connection status changes Several security issues were fixed in networkd-dispatcher. oval:org.secpod.oval:def:75975 ledgersmb: financial accounting and ERP program ledgersmb could be made to crash if it received specially crafted input. oval:org.secpod.oval:def:75987 ardour: the digital audio workstation Ardour could be made to crash or possibly arbitrary code execute if it received a specially crafted XML file. oval:org.secpod.oval:def:80408 openjdk-lts: Open Source Java implementation Details: USN-5313-1 fixed vulnerabilities and added features in OpenJDK. Unfortunately, that update introduced a regression in OpenJDK 11 that could impact interoperability with some popular HTTP/2 servers making it unable to connect to said servers. This ... oval:org.secpod.oval:def:89442 nova: OpenStack Compute cloud infrastructure Nova could be made to expose sensitive information. oval:org.secpod.oval:def:89440 cinder: OpenStack storage service Cinder could be made to expose sensitive information. oval:org.secpod.oval:def:89441 glance: OpenStack Image Registry and Delivery Service OpenStack Glance could be made to expose sensitive information. oval:org.secpod.oval:def:80429 barbican: OpenStack Key Management Service - API Server Several security issues were fixed in barbican. oval:org.secpod.oval:def:70346 dnsmasq: Small caching DNS proxy and DHCP/TFTP server Several security issues were fixed in Dnsmasq. oval:org.secpod.oval:def:89384 nova: OpenStack Compute cloud infrastructure Several security issues were fixed in Nova. oval:org.secpod.oval:def:89412 spip: website engine for publishing Details: USN-5482-1 fixed several vulnerabilities in SPIP. This update provides the corresponding updates for Linux Mint 20.x LTS for CVE-2021-44118, CVE-2021-44120, CVE-2021-44122 and CVE-2021-44123. Original advisory Several security issues were fixed in SPIP. oval:org.secpod.oval:def:89472 mplayer: movie player for Unix-like systems Several security issues were fixed in MPlayer. oval:org.secpod.oval:def:89479 lighttpd: fast webserver with minimal memory footprint Several security issues were fixed in lighttpd. oval:org.secpod.oval:def:70224 mutt: text-based mailreader supporting MIME, GPG, PGP and threading Several security issues were fixed in Mutt. oval:org.secpod.oval:def:70217 gnutls28: GNU TLS library GnuTLS could be made to expose sensitive information. oval:org.secpod.oval:def:72087 libxstream-java: Java library to serialize objects to XML and back again Several security issues were fixed in XStream library. oval:org.secpod.oval:def:70131 imagemagick: Image manipulation programs and library Several security issues were fixed in ImageMagick. oval:org.secpod.oval:def:89506 node-object-path: Access deep object properties using a path Several security issues were fixed in object-path. oval:org.secpod.oval:def:89507 gif2apng: tool for converting animated GIF images to APNG format Several security issues were fixed in gif2apng. oval:org.secpod.oval:def:88467 epiphany-browser: Intuitive GNOME web browser Several security issues were fixed in GNOME Web. oval:org.secpod.oval:def:88490 kitty: fast, featureful, GPU based terminal emulator kitty could be made to run programs if it opened a specially crafted image or desktop notification. oval:org.secpod.oval:def:88532 htmldoc: HTML processor that generates indexed HTML, PS, and PDF HTMLDOC could be made to crash or run programs if it received specially crafted HTML files. oval:org.secpod.oval:def:88534 influxdb: Scalable datastore for metrics, events, and real-time analytics An InfluxDB vulnerability allowed attackers to login as any known database user. oval:org.secpod.oval:def:88538 ca-certificates: Common CA certificates The CA certificates in the ca-certificates package were updated. oval:org.secpod.oval:def:88545 bluez: Bluetooth tools and daemons Several security issues were fixed in BlueZ. oval:org.secpod.oval:def:88566 phpliteadmin: web-based SQLite database admin tool phpLiteAdmin could allow cross-site scripting attacks. oval:org.secpod.oval:def:88580 exim4: Exim is a mail transport agent Exim could be made to crash of execute arbitrary code if it received a specially crafted input. oval:org.secpod.oval:def:88619 barbican: OpenStack Key Management Service - API Server Barbican could be made to expose sensitive information over the network. oval:org.secpod.oval:def:88624 firefox: Mozilla Open Source web browser Details: USN-5709-1 fixed vulnerabilities in Firefox. The update introduced several minor regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-5709-1 introduced minor regressions in Firefox oval:org.secpod.oval:def:88638 firefox: Mozilla Open Source web browser Details: USN-5782-1 fixed vulnerabilities in Firefox. The update introduced several minor regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-5782-1 caused some minor regressions in Firefox. oval:org.secpod.oval:def:88639 firefox: Mozilla Open Source web browser Details: USN-5782-1 fixed vulnerabilities in Firefox. The update introduced several minor regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-5782-1 caused some minor regressions in Firefox. oval:org.secpod.oval:def:88640 usbredir: usbredir libraries and utilities usbredir could be made to crash or run programs if it received specially crafted input. oval:org.secpod.oval:def:79885 libreoffice: Office productivity suite LibreOffice could incorrectly validate document signatures. oval:org.secpod.oval:def:72108 runc: Open Container Project runC could be made to overwrite files as the administrator. oval:org.secpod.oval:def:89413 mariadb-10.6: MariaDB database - mariadb-10.3: MariaDB database Details: USN-5739-1 fixed vulnerabilities in MariaDB. It caused a regression. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-5739-1 caused a regression. oval:org.secpod.oval:def:89419 git: fast, scalable, distributed revision control system Details: USN-5810-1 fixed vulnerabilities in Git. This update introduced a regression as it was missing some commit lines. This update fixes the problem. Original advisory USN-5810-1 introduced a regression in Git. oval:org.secpod.oval:def:89422 firefox: Mozilla Open Source web browser Details: USN-5816-1 fixed vulnerabilities in Firefox. The update introduced several minor regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-5816-1 caused some minor regressions in Firefox. oval:org.secpod.oval:def:89430 samba: SMB/CIFS file, print, and login server for Unix Details: USN-5822-1 fixed vulnerabilities in Samba. The update for Linux Mint 20.x LTS introduced regressions in certain environments. Pending investigation of these regressions, this update temporarily reverts the security fixes. We apologize f ... oval:org.secpod.oval:def:89432 mysql-8.0: MySQL database Details: USN-5823-1 fixed vulnerabilities in MySQL. Unfortunately, 8.0.32 introduced a regression in MySQL Router preventing connections from PyMySQL. This update reverts most of the changes in MySQL Router to 8.0.31 until a proper fix can be found. We apologize for the inc ... oval:org.secpod.oval:def:89505 amanda: Advanced Maryland Automatic Network Disk Archiver Details: USN-5966-1 fixed vulnerabilities in amanda. Unfortunately it introduced a regression in GNUTAR-based backups. This update reverts all of the changes in amanda until a better fix is provided. We apologize for the inconvenience. Origi ... oval:org.secpod.oval:def:88549 cloud-init: initialization and customization tool for cloud instances cloud-init could be made to expose sensitive information. oval:org.secpod.oval:def:78181 systemd: system and service manager systemd-tmpfiles could be made to crash or have other unspecified impacts. oval:org.secpod.oval:def:80401 mutt: text-based mailreader supporting MIME, GPG, PGP and threading Several security issues were fixed in Mutt. oval:org.secpod.oval:def:70205 python3.8: Interactive high-level object-oriented language Details: USN-4333-1 fixed vulnerabilities in Python. This update provides the corresponding update for Linux Mint 20.x LTS. Original advisory Several security issues were fixed in Python. oval:org.secpod.oval:def:73433 gupnp: framework for creating UPnP devices and control points GUPnP could allow unintended access to network services. oval:org.secpod.oval:def:75936 cpio: a tool to manage archives of files GNU cpio could be made to crash or run programs if it opened a specially crafted file. oval:org.secpod.oval:def:75939 libapache2-mod-auth-mellon: SAML 2.0 authentication module for Apache mod-auth-mellon could be made to redirect to arbitrary sites. oval:org.secpod.oval:def:75949 ghostscript: PostScript and PDF interpreter Ghostscript could be made to crash, access files, or run programs if it opened a specially crafted file. oval:org.secpod.oval:def:72097 pyyaml: YAML parser and emitter for Python PyYAML could be made to run programs if it opened a specially crafted YAML file. oval:org.secpod.oval:def:88476 freeradius: high-performance and highly configurable RADIUS server Several security issues were fixed in FreeRADIUS. oval:org.secpod.oval:def:88650 net-snmp: SNMP server and applications Net-SNMP could be made to crash if it received specially crafted network traffic. oval:org.secpod.oval:def:80418 python-oslo.utils: Oslo Utility library - doc oslo.utils could be made to expose sensitive information if it received a specially crafted input. oval:org.secpod.oval:def:91457 firefox: Mozilla Open Source web browser Details: USN-5954-1 fixed vulnerabilities in Firefox. The update introduced several minor regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-5954-1 caused some minor regressions in Firefox. oval:org.secpod.oval:def:91468 firefox: Mozilla Open Source web browser Details: USN-6010-1 fixed vulnerabilities in Firefox. The update introduced several minor regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-6010-1 caused some minor regressions in Firefox. oval:org.secpod.oval:def:91474 firefox: Mozilla Open Source web browser Details: USN-6010-1 fixed vulnerabilities and USN-6010-2 fixed minor regressions in Firefox. The update introduced several minor regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-6010-2 caused some minor reg ... oval:org.secpod.oval:def:91481 mysql-8.0: MySQL database Details: USN-6060-1 fixed vulnerabilities in MySQL. The new upstream 8.0.33 version introduced a regression on the armhf architecture. This update fixes the problem. Original advisory USN-6060-1 introduced a regression in MySQL. oval:org.secpod.oval:def:91484 firefox: Mozilla Open Source web browser Details: USN-6074-1 fixed vulnerabilities in Firefox. The update introduced several minor regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-6074-1 caused some minor regressions in Firefox. oval:org.secpod.oval:def:91490 ca-certificates: Common CA certificates The CA certificates in the ca-certificates package were updated. oval:org.secpod.oval:def:91504 firefox: Mozilla Open Source web browser Details: USN-6143-1 fixed vulnerabilities in Firefox. The update introduced several minor regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-6143-1 caused some minor regressions in Firefox. oval:org.secpod.oval:def:72102 mysql-8.0: MySQL database - mysql-5.7: MySQL database Several security issues were fixed in MySQL. oval:org.secpod.oval:def:91752 linux-gke: Linux kernel for Google Container Engine systems The system could suffer with performance degradation in certain conditions. oval:org.secpod.oval:def:89476 tar: GNU version of the tar archiving utility tar could be made to crash or expose sensitive information if it received a specially crafted file. oval:org.secpod.oval:def:89468 intel-microcode: Processor microcode for Intel CPUs Several security issues were fixed in Intel Microcode. oval:org.secpod.oval:def:88531 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:79890 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:78183 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:89434 pam: Pluggable Authentication Modules PAM would allow unintended access to the machine over network. oval:org.secpod.oval:def:89435 pam: Pluggable Authentication Modules Details: USN-5825-1 fixed vulnerabilities in PAM. Unfortunately that update was incomplete and could introduce a regression. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-5825-1 caused some minor regressions in PAM. oval:org.secpod.oval:def:88599 mako: documentation for the Mako Python library Mako could be made to denial of service if it received a specially crafted regular expression. oval:org.secpod.oval:def:88594 intel-microcode: Processor microcode for Intel CPUs A security issue was fixed in Intel Microcode. oval:org.secpod.oval:def:71248 pygments: Generic syntax highlighter Pygments could be made to hang if it opened a specially crafted file. oval:org.secpod.oval:def:80416 h2database: H2 Database Engine Several security issues were fixed in H2. oval:org.secpod.oval:def:78195 samba: SMB/CIFS file, print, and login server for Unix Several security issues were fixed in Samba. oval:org.secpod.oval:def:80417 fribidi: Free Implementation of the Unicode BiDi algorithm Several security issues were fixed in fribidi. oval:org.secpod.oval:def:79866 python3.8: An interactive high-level object-oriented language - python2.7: An interactive high-level object-oriented language - python3.6: An interactive high-level object-oriented language - python3.5: An interactive high-level object-oriented language - python3.4: An interactive high-level object- ... oval:org.secpod.oval:def:70390 python-django: High-level Python web development framework Django could allow unintended access to network services. oval:org.secpod.oval:def:75983 python-bottle: fast and simple WSGI-framework for Python - documentation Bottle could be made to cache malicious requests if it received a specially crafted input. oval:org.secpod.oval:def:73706 rabbitmq-server: AMQP server written in Erlang Several security issues were fixed in rabbitmq-server. oval:org.secpod.oval:def:75950 git: fast, scalable, distributed revision control system Git incorrectly handled certain repository paths. oval:org.secpod.oval:def:70254 pacemaker: Cluster resource manager Pacemaker could be made to run programs as an administrator. oval:org.secpod.oval:def:78184 clamav: Anti-virus utility for Unix ClamAV could be made to crash if it opened a specially crafted file. oval:org.secpod.oval:def:73700 bluez: Bluetooth tools and daemons Several security issues were fixed in BlueZ. oval:org.secpod.oval:def:88528 openldap: Lightweight Directory Access Protocol OpenLDAP could be made to perform arbitrary modifications to the database. oval:org.secpod.oval:def:72092 nvidia-graphics-drivers-390: NVIDIA binary X.Org driver - nvidia-graphics-drivers-418-server: NVIDIA Server Driver - nvidia-graphics-drivers-450: NVIDIA binary X.Org driver - nvidia-graphics-drivers-450-server: NVIDIA Server Driver - nvidia-graphics-drivers-460: NVIDIA binary X.Org driver - nvidia-g ... oval:org.secpod.oval:def:70338 nvidia-graphics-drivers-390: NVIDIA binary X.Org driver - nvidia-graphics-drivers-450: NVIDIA binary X.Org driver - nvidia-graphics-drivers-460: NVIDIA binary X.Org driver Several security issues were fixed in NVIDIA graphics drivers. oval:org.secpod.oval:def:70335 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-oracle: Linux kernel for Oracle Cloud systems - linux-hwe-5.8: Linux hardware enablement ... oval:org.secpod.oval:def:70350 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-oracle: Linux kernel for Oracle Cloud systems - linux-hwe-5.8: Linux hardware enablement ... oval:org.secpod.oval:def:70349 nvidia-graphics-drivers-418-server: NVIDIA Server Driver - nvidia-graphics-drivers-450-server: NVIDIA Server Driver Several security issues were fixed in NVIDIA graphics drivers. oval:org.secpod.oval:def:93874 cloud-init: initialization and customization tool for cloud instances Details: USN-6042-1 fixed a vulnerability in Cloud-init. The update introduced a regression on Linux Mint 20.x LTS resulting in a possible loss of networking. This update fixes the problem. We apologize for the inconvenience. Orig ... oval:org.secpod.oval:def:93875 sssd: System Security Services Daemon SSSD could allow unintended access to network services. oval:org.secpod.oval:def:93876 node-fetch: A light-weight module that brings the Fetch API to Node.js Node Fetch could be made to expose sensitive information if it opened a specially crafted file. oval:org.secpod.oval:def:93877 libpano13: panorama tools library pano13 could be made to crash or run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:93878 firefox: Mozilla Open Source web browser Details: USN-6143-1 fixed vulnerabilities and USN-6143-2 fixed minor regressions in Firefox. The update introduced several minor regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-6143-2 caused some minor reg ... oval:org.secpod.oval:def:93879 pngcheck: Verifies the integrity of PNG, JNG and MNG files Several security issues were fixed in pngcheck. oval:org.secpod.oval:def:93881 gerbv: Gerber file viewer for PCB design Gerbv could be made to crash or run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:93883 open-iscsi: Open Source iSCSI implementation Several security issues were fixed in Open-iSCSI. oval:org.secpod.oval:def:93885 firefox: Mozilla Open Source web browser Details: USN-6267-1 fixed vulnerabilities in Firefox. The update introduced several minor regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-6267-1 caused some minor regressions in Firefox. oval:org.secpod.oval:def:93886 php-dompdf: HTML to PDF converter Several security issues were fixed in Dompdf. oval:org.secpod.oval:def:93887 openssh: secure shell for secure access to remote machines A hardening measure was added to OpenSSH. oval:org.secpod.oval:def:93888 zziplib: The ZZIPlib provides read access on ZIP-archives and unpacked data Several security issues were fixed in ZZIPlib. oval:org.secpod.oval:def:93890 firefox: Mozilla Open Source web browser Details: USN-6267-1 fixed vulnerabilities and USN-6267-2 fixed minor regressions in Firefox. The update introduced several minor regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-6267-2 caused some minor reg ... oval:org.secpod.oval:def:93892 elfutils: collection of utilities to handle ELF objects Several security issues were fixed in elfutils. oval:org.secpod.oval:def:93893 atftp: Advanced TFTP Server and Client Several security issues were fixed in atftp. oval:org.secpod.oval:def:93894 plib: Portability Libraries: Development package PLIB could be made to execute arbitrary code if it opens a specially crafted TGA file. oval:org.secpod.oval:def:93895 nodejs: An open-source, cross-platform JavaScript runtime environment. Several security issues were fixed in Node.js. oval:org.secpod.oval:def:93896 memcached: High-performance in-memory object caching system Memcached could be made to denial of service. oval:org.secpod.oval:def:93898 ghostscript: PostScript and PDF interpreter Several security issues were fixed in Ghostscript. oval:org.secpod.oval:def:93899 jhead: Manipulate the non-image part of Exif compliant JPEG files Several security issues were fixed in Jhead. oval:org.secpod.oval:def:88563 nvidia-graphics-drivers-390: NVIDIA binary X.Org driver - nvidia-graphics-drivers-450-server: NVIDIA server driver - nvidia-graphics-drivers-470: NVIDIA binary X.Org driver - nvidia-graphics-drivers-470-server: NVIDIA server driver - nvidia-graphics-drivers-510: NVIDIA binary X.Org driver - nvidia-g ... oval:org.secpod.oval:def:70355 ceph: distributed storage and file system Several security issues were fixed in Ceph. oval:org.secpod.oval:def:88565 mod-wsgi: Python WSGI adapter module for Apache mod-wsgi could allow unintended access to network services. oval:org.secpod.oval:def:89446 tmux: terminal multiplexer tmux could be made to crash if it received a specially crafted input. oval:org.secpod.oval:def:89417 libxpm: X11 pixmap library Several security issues were fixed in libXpm. oval:org.secpod.oval:def:89396 krb5: MIT Kerberos Network Authentication Protocol Several security issues were fixed in Kerberos. oval:org.secpod.oval:def:75997 mysql-8.0: MySQL database - mysql-5.7: MySQL database Several security issues were fixed in MySQL. oval:org.secpod.oval:def:73434 libwebp: Lossy compression of digital photographic images. libwebp could be made to crash or run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:88540 varnish: state of the art, high-performance web accelerator Details: USN-5474-1 fixed vulnerabilities in Varnish Cache. Unfortunately the fix for CVE-2020-11653 was incomplete. This update fixes the problem. Original advisory Varnish Cache could be made to restart if it received specially crafted in ... oval:org.secpod.oval:def:89425 haproxy: fast and reliable load balancing reverse proxy HAProxy could be made to stop responding if it received specially crafted network traffic. oval:org.secpod.oval:def:89495 python-werkzeug: documentation for the werkzeug Python library Several security issues were fixed in Werkzeug. oval:org.secpod.oval:def:91466 apport: automatically generate crash reports for debugging Apport could be used to escalate privilege on specially configured systems. oval:org.secpod.oval:def:89457 haproxy: fast and reliable load balancing reverse proxy HAProxy could allow unintended access to network services. oval:org.secpod.oval:def:89423 python-setuptools: Python Distutils Enhancements - setuptools: Python Distutils Enhancements Setuptools could be made to crash if it received specially crafted input. oval:org.secpod.oval:def:89475 awstats: powerful and featureful web server log analyzer AWStats could allow cross-site scripting attacks. oval:org.secpod.oval:def:89404 systemd: system and service manager Several security issues were fixed in systemd. oval:org.secpod.oval:def:88607 strongswan: IPsec VPN solution strongSwan could be made do denial of service if it received a specially crafted certificate. oval:org.secpod.oval:def:88625 nginx: small, powerful, scalable web/proxy server Several security issues were fixed in nginx. oval:org.secpod.oval:def:88608 isc-dhcp: DHCP server and client Several security issues were fixed in DHCP. oval:org.secpod.oval:def:89407 protobuf: protocol buffers C++ library Several security issues were fixed in Protocol Buffers. oval:org.secpod.oval:def:88592 dpdk: set of libraries for fast packet processing DPDK could be made to stop responding if it received specially crafted network traffic. oval:org.secpod.oval:def:80425 xz-utils: XZ-format compression utilities XZ Utils could be made to overwrite arbitrary files. oval:org.secpod.oval:def:80424 gzip: GNU compression utilities Gzip could be made to overwrite arbitrary files. oval:org.secpod.oval:def:88590 poppler: PDF rendering library poppler could be made to crash or execute arbitrary code if received a specially crafted PDF. oval:org.secpod.oval:def:89444 advancecomp: collection of recompression utilities Several security issues were fixed in AdvanceCOMP. oval:org.secpod.oval:def:88581 open-vm-tools: Open VMware Tools for virtual machines hosted on VMware open-vm-tools could be made to run programs as an administrator. oval:org.secpod.oval:def:88576 unbound: validating, recursive, caching DNS resolver Unbound could be made to cache rogue domain names. oval:org.secpod.oval:def:88569 booth: Cluster Ticket Manager Booth could be made to be stop working under certain circumstances. oval:org.secpod.oval:def:88567 gdk-pixbuf: GDK Pixbuf library GDK-PixBuf could be made to crash or run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:88559 libtirpc: transport-independent RPC library - common files libtirpc could be made to denial of service if it received a specially crafted input. oval:org.secpod.oval:def:88550 gnupg2: GNU privacy guard - a free PGP replacement GnuPG could allow forged signatures. oval:org.secpod.oval:def:88556 python-bottle: fast and simple WSGI-framework for Python Bottle could be made to leak sensitive information if it received a specially crafted request. oval:org.secpod.oval:def:88600 pcre2: Perl 5 Compatible Regular Expression Library PCRE could be made to expose sensitive information. oval:org.secpod.oval:def:88570 node-moment: Work with dates in JavaScript Several security issues were fixed in Moment.js. oval:org.secpod.oval:def:80420 libarchive: Library to read/write archive files libarchive could be made to expose sensitive information if it received a specially crafted archive file. oval:org.secpod.oval:def:88508 paramiko: Python SSH2 library Paramiko would allow unintended access to private key files. oval:org.secpod.oval:def:73439 policykit-1: framework for managing administrative policies and privileges The system could be made to run programs as an administrator. oval:org.secpod.oval:def:80412 twisted: Event-based framework for internet applications Several security issues were fixed in Twisted. oval:org.secpod.oval:def:88539 varnish: state of the art, high-performance web accelerator Several security issues were fixed in Varnish Cache. oval:org.secpod.oval:def:89499 librecad: Computer-aided design system Several security issues were fixed in LibreCAD. oval:org.secpod.oval:def:88591 gdk-pixbuf: GDK Pixbuf library GDK-PixBuf could be made do execute arbitrary code or crash if it received a specially crafted image. oval:org.secpod.oval:def:89436 privoxy: Privacy enhancing HTTP Proxy Several security issues were fixed in Privoxy. oval:org.secpod.oval:def:75988 strongswan: IPsec VPN solution Several security issues were fixed in strongSwan. oval:org.secpod.oval:def:88555 libxml-security-java: Apache XML Security for Java Apache XML Security for Java could be made to expose sensitive information. oval:org.secpod.oval:def:75935 haproxy: fast and reliable load balancing reverse proxy HAProxy could be made to expose sensitive information over the network. oval:org.secpod.oval:def:75962 edk2: UEFI firmware for virtual machines Several security issues were fixed in EDK II. oval:org.secpod.oval:def:75926 openssl: Secure Socket Layer cryptographic library and tools Several security issues were fixed in OpenSSL. oval:org.secpod.oval:def:89392 libxstream-java: Java library to serialize objects to XML and back again Several security issues were fixed in XStream. oval:org.secpod.oval:def:89500 krb5: MIT Kerberos Network Authentication Protocol Several security issues were fixed in Kerberos. oval:org.secpod.oval:def:73704 dovecot: IMAP and POP3 email server Several security issues were fixed in Dovecot. oval:org.secpod.oval:def:75956 libgcrypt20: LGPL Crypto library Libgcrypt could be made to expose sensitive information. oval:org.secpod.oval:def:73436 lasso: Liberty Alliance and SAML protocol Library Applications using Lasso could be made to allow unintended access. oval:org.secpod.oval:def:73426 postgresql-13: Object-relational SQL database - postgresql-12: Object-relational SQL database - Several security issues were fixed in PostgreSQL. oval:org.secpod.oval:def:73447 libimage-exiftool-perl: library and program to read and write meta information in multime libimage-exiftool-perl could be made to crash if it opened a specially crafted file. oval:org.secpod.oval:def:75973 commons-io: Common useful IO related classes Apache Commons IO could be made to expose sensitive information if it received a specially crafted input. oval:org.secpod.oval:def:73708 grub2-signed: GRand Unified Bootloader - grub2-unsigned: GRand Unified Bootloader Several security issues were fixed in GRUB 2. oval:org.secpod.oval:def:75998 binutils: GNU assembler, linker and binary utilities Several security issues were fixed in GNU binutils. oval:org.secpod.oval:def:80409 tcpdump: command-line network traffic analyzer Details: USN-5331-1 fixed several vulnerabilities in tcpdump. This update provides the corresponding update for Linux Mint 19.x LTS and Linux Mint 20.x LTS. Original advisory Several security issues were fixed in tcpdump. oval:org.secpod.oval:def:88522 nss: Network Security Service library NSS could be made to stop responding if it received a specially crafted message. oval:org.secpod.oval:def:75924 inetutils: GNU network utilities Inetutils could be made to crash if it received specially crafted input. oval:org.secpod.oval:def:88518 bash: GNU Bourne Again SHell Bash could be used to escalate privileges. oval:org.secpod.oval:def:75986 libntlm: NTLM authentication library libntlm could be made to crash or possibly execute arbitrary code. oval:org.secpod.oval:def:88517 klibc: small utilities built with klibc for early boot Several security issues were fixed in klibc. oval:org.secpod.oval:def:88519 libinput: Input device management and event handling library libinput could be made to crash or expose sensitive information. oval:org.secpod.oval:def:78189 usbview: USB device viewer USBView could be made to crash or run programs as an administrator. oval:org.secpod.oval:def:70376 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud sys ... oval:org.secpod.oval:def:88637 firefox: Mozilla Open Source web browser Several security issues were fixed in Firefox. oval:org.secpod.oval:def:73438 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:75948 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:75985 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:88507 firefox: Mozilla Open Source web browser Details: USN-5321-1 fixed vulnerabilities in Firefox. The update didn"t include arm64 because of a regression. This update provides the corresponding update for arm64. This update also removes Yandex and Mail.ru as optional search providers in the drop-down s ... oval:org.secpod.oval:def:88515 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:88523 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:88530 firefox: Mozilla Open Source web browser Firefox could be made to execute JavaScript in a privileged context if it opened a malicious website. oval:org.secpod.oval:def:88557 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:88582 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:88623 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:75931 grilo: Framework for discovering and browsing media - GObject introspect grilo could be made to allow MITM attacks. oval:org.secpod.oval:def:88641 nautilus: file manager and graphical shell for GNOME GNOME Files could be made to crash if it opened a specially crafted file. oval:org.secpod.oval:def:89426 exuberant-ctags: build tag file indexes of source code definitions Exuberant ctags could be make to perform arbitary command execution if run with maliciously crafted user input oval:org.secpod.oval:def:75981 docker.io: Linux container runtime Docker could be made to adjust the permissions of files. oval:org.secpod.oval:def:94975 graphicsmagick: collection of image processing tools Several security issues were fixed in GraphicsMagick. oval:org.secpod.oval:def:94977 python-flask-cors: Flask extension for handling Cross Origin Resource Sharing Applications using Flask-CORS could be made to expose sensitive information. oval:org.secpod.oval:def:94980 nova: OpenStack Compute cloud infrastructure Details: USN-6073-3 fixed a vulnerability in Nova. The update introduced a regression causing Nova to be unable to detach volumes from instances. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-6073-3 introduced a ... oval:org.secpod.oval:def:94985 sssd: System Security Services Daemon Details: USN-6156-1 fixed a vulnerability in SSSD. In certain environments, not all packages ended up being upgraded at the same time, resulting in authentication failures when the PAM module was being used. This update fixes the problem. We apologize for the in ... oval:org.secpod.oval:def:94990 lib3mf: Lib3MF is a C++ implementation of the 3D Manufacturing Format lib3mf could be made to execute arbitrary code if it opens a specially crafted 3MF file. oval:org.secpod.oval:def:94992 wkhtmltopdf: Command line utility to convert html to pdf using WebKit wkhtmltopdf could be made to expose sensitive information if it opened a specially crafted file. oval:org.secpod.oval:def:94997 velocity: A general purpose template engine written in Java Velocity Engine could be made to run arbitrary code if it opened a specially crafted file. oval:org.secpod.oval:def:94998 velocity-tools: A subproject of the Apache Velocity project Velocity Tools could be made to run arbitrary code if it opened a specially crafted file. oval:org.secpod.oval:def:95014 shiro: Powerful and easy-to-use Java security framework Several security issues were fixed in Apache Shiro. oval:org.secpod.oval:def:95018 libraw: raw image decoder library LibRaw could be made to crash if it opened a specially crafted file. oval:org.secpod.oval:def:88461 nginx: small, powerful, scalable web/proxy server Several security issues were fixed in nginx. oval:org.secpod.oval:def:95022 vsftpd: FTP server written for security vsftpd could allow unintended access to network services. oval:org.secpod.oval:def:95029 opusfile: debugging symbols for libopusfile Opusfile could be made to crash if it received specially crafted input. oval:org.secpod.oval:def:95030 editorconfig-core: coding style indenter for all editors EditorConfig Core C could be made to crash or run programs if it received specially crafted input. oval:org.secpod.oval:def:95031 kamailio: very fast, dynamic and configurable SIP server Kamailio could be made to crash or run programs if it received specially crafted input. oval:org.secpod.oval:def:95032 exo: Extension library used in the Xfce desktop Exo could be made to crash or run programs if it opened a specially crafted file. oval:org.secpod.oval:def:95033 jupyter-core: Core common functionality of Jupyter projects Jupyter Core could be made to run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:95034 wireshark: network traffic analyzer - meta-package Several security issues were fixed in Wireshark. oval:org.secpod.oval:def:95036 gsasl: GNU SASL command line utility gsasl could possibly be made crash or expose sensitive information over the network. oval:org.secpod.oval:def:95037 nanopb: Protocol Buffers with small code size Several security issues were fixed in Nanopb. oval:org.secpod.oval:def:95038 tigervnc: High-performance, platform-neutral implementation of VNC TigerVNC could be made to expose sensitive information over the network. oval:org.secpod.oval:def:95039 musl: standard C library Several security issues were fixed in musl. oval:org.secpod.oval:def:95041 node-css-what: A CSS selector parser Several security issues were fixed in css-what. oval:org.secpod.oval:def:95042 jhead: Manipulate the non-image part of Exif compliant JPEG files Jhead could be made to crash if it opened a specially crafted file. oval:org.secpod.oval:def:95045 libjettison-java: A Java library for converting XML to JSON and vice-versa Jettison could be made to crash if it opened a specially crafted file. oval:org.secpod.oval:def:95046 graphviz: rich set of graph drawing tools Several security issues were fixed in graphviz. oval:org.secpod.oval:def:95048 jqueryui: JavaScript UI library for dynamic web applications Several security issues were fixed in jQuery UI. oval:org.secpod.oval:def:95050 nodejs: An open-source, cross-platform JavaScript runtime environment. Several security issues were fixed in Node.js. oval:org.secpod.oval:def:95053 ruby-kramdown: Fast, pure-Ruby Markdown-superset converter - ruby library kramdown could be made to execute arbitrary code if it received specially crafted input. oval:org.secpod.oval:def:95054 firefox: Mozilla Open Source web browser Details: USN-6404-1 fixed vulnerabilities in Firefox. The update introduced several minor regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-6404-1 caused some minor regressions in Firefox. oval:org.secpod.oval:def:95056 samba: SMB/CIFS file, print, and login server for Unix Details: USN-6425-1 fixed vulnerabilities in Samba. Due to a build issue on Linux Mint 20.x LTS, the update introduced regressions in macro handling and possibly other functionality. This update fixes the problem. We apologize for the inconvenie ... oval:org.secpod.oval:def:95057 ffmpeg: Tools for transcoding, streaming and playing of multimedia files Several security issues were fixed in FFmpeg. oval:org.secpod.oval:def:95071 slurm-wlm: Simple Linux Utility for Resource Management - slurm-llnl: Simple Linux Utility for Resource Management Several security issues were fixed in Slurm. oval:org.secpod.oval:def:88464 cifs-utils: Common Internet File System utilities Several security issues were fixed in cifs-utils. oval:org.secpod.oval:def:78187 aide: Advanced Intrusion Detection Environment AIDE could be made to crash or run programs as an administrator if it opened a specially crafted file. oval:org.secpod.oval:def:73437 dnsmasq: Small caching DNS proxy and DHCP/TFTP server Dnsmasq could be exposed to cache poisoning. oval:org.secpod.oval:def:73435 python3.8: An interactive high-level object-oriented language Python could allow unintended access to network services. oval:org.secpod.oval:def:75922 python3.8: An interactive high-level object-oriented language Details: USN-4973-1 fixed this vulnerability previously, but it was re-introduced in python3.8 in focal because of the SRU in LP: #1928057. This update fixes the problem. Original advisory Python could allow unintended access to network s ... oval:org.secpod.oval:def:88618 mysql-8.0: MySQL database - mysql-5.7: MySQL database Several security issues were fixed in MySQL. oval:org.secpod.oval:def:75937 openvswitch: Ethernet virtual switch Open vSwitch could be made to crash or run programs if it received specially crafted network traffic. oval:org.secpod.oval:def:89470 openvswitch: Ethernet virtual switch Several security issues were fixed in Open vSwitch. oval:org.secpod.oval:def:70339 openvswitch: Ethernet virtual switch Several security issues were fixed in Open vSwitch. oval:org.secpod.oval:def:70377 openvswitch: Ethernet virtual switch Open vSwitch could be made to crash or perform unexpectedly if it received specially crafted network traffic. oval:org.secpod.oval:def:89424 php8.1: HTML-embedded scripting language interpreter - php7.4: HTML-embedded scripting language interpreter - php7.2: HTML-embedded scripting language interpreter PHP could be made do crash or execute arbitrary code if it received a specially crafted input. oval:org.secpod.oval:def:88593 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK. oval:org.secpod.oval:def:88514 rsync: fast, versatile, remote file-copying tool rsync could be made to crash or run programs if it received specially crafted network traffic. oval:org.secpod.oval:def:80413 zlib: Lossless data-compression library zlib could be made to crash or run programs if it received specially crafted input. oval:org.secpod.oval:def:80431 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK. oval:org.secpod.oval:def:89489 rsync: fast, versatile, remote file-copying tool rsync could be made to overwrite files. oval:org.secpod.oval:def:79881 libxml2: GNOME XML library libxml2 could be made to crash or run programs if it opened a specially crafted file. oval:org.secpod.oval:def:79882 zsh: shell with lots of features Several security issues were fixed in Zsh. oval:org.secpod.oval:def:88463 cups: Common UNIX Printing System Several security issues were fixed in CUPS. oval:org.secpod.oval:def:88568 gst-plugins-good1.0: GStreamer plugins Several security issues were fixed in GStreamer Plugins Good. oval:org.secpod.oval:def:89386 golang-golang-x-text: Supplementary Go text-related libraries - golang-x-text: Supplementary Go text-related libraries Several security issues were fixed in Go Text. oval:org.secpod.oval:def:88536 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK. oval:org.secpod.oval:def:95021 c-ares: library for asynchronous name resolution c-ares could be made to crash if it received specially crafted network traffic. oval:org.secpod.oval:def:89504 amanda: Advanced Maryland Automatic Network Disk Archiver Several security issues were fixed in amanda. oval:org.secpod.oval:def:73427 python-django: High-level Python web development framework Several security issues were fixed in Django. oval:org.secpod.oval:def:72091 python-django: High-level Python web development framework Django could be made to overwrite files. oval:org.secpod.oval:def:89428 python-pip: Python package installer Details: USN-5821-1 fixed a vulnerability in wheel and pip. Unfortunately, it was missing a commit to fix it properly in pip. We apologize for the inconvenience. Original advisory USN-5821-1 caused a regression in pip. oval:org.secpod.oval:def:89427 wheel: built-package format for Python wheel could be made to crash if it received specially crafted input. oval:org.secpod.oval:def:88642 libksba: X.509 and CMS support library Libksba could be made to crash or run programs if it processed specially crafted data. oval:org.secpod.oval:def:69260 The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connection attempts (where no host key for the server has been cached by the client). oval:org.secpod.oval:def:73709 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:88635 xorg-server: X.Org X11 server - xwayland: X server for running X clients under Wayland - xorg-server-hwe-18.04: X.Org X11 server Several security issues were fixed in X.Org X Server. oval:org.secpod.oval:def:88626 tiff: Tag Image File Format library Details: USN-5743-1 fixed a vulnerability in LibTIFF. This update provides the corresponding updates for Linux Mint 19.x LTS, Linux Mint 20.x LTS, Linux Mint 21.x LTS and Ubuntu 22.10. Original advisory LibTIFF could be made to crash or run programs as your login ... oval:org.secpod.oval:def:88541 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:89433 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:95065 ffmpeg: Tools for transcoding, streaming and playing of multimedia files Several security issues were fixed in FFmpeg. oval:org.secpod.oval:def:88542 liblouis: Braille translation library - utilities Several security issues were fixed in liblouis. oval:org.secpod.oval:def:80419 subversion: Advanced version control system Several security issues were fixed in Subversion. oval:org.secpod.oval:def:88575 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK. oval:org.secpod.oval:def:70370 flatpak: Application deployment framework for desktop apps Flatpak could be made to crash or run programs if it received specially crafted input. oval:org.secpod.oval:def:78178 apache-log4j1.2: Java-based open-source logging tool Apache Log4j 1.2 could be made to crash or run programs if it received specially crafted input. oval:org.secpod.oval:def:75961 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK. oval:org.secpod.oval:def:75929 libssh: A tiny C SSH library libssh could be made to crash or run programs if it received specially crafted network traffic. oval:org.secpod.oval:def:88474 pillow: Python Imaging Library Several security issues were fixed in Pillow. oval:org.secpod.oval:def:72111 pillow: Python Imaging Library Pillow could be made to crash or hang if it opened a specially crafted file. oval:org.secpod.oval:def:70152 pillow: Python Imaging Library Pillow could be made to crash or run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:72101 flatpak: Application deployment framework for desktop apps A Flatpak application could access files that it would not normally be permitted to access. oval:org.secpod.oval:def:91463 liblouis: Braille translation library - utilities Several security issues were fixed in liblouis. oval:org.secpod.oval:def:89481 postgresql-14: Object-relational SQL database - postgresql-12: Object-relational SQL database PostgreSQL could be made to expose sensitive information over the network. oval:org.secpod.oval:def:91506 c-ares: library for asynchronous name resolution Several security issues were fixed in c-ares. oval:org.secpod.oval:def:88613 gmp: Multiprecision arithmetic library developers tools GMP could be made to crash if it received specially crafted input. oval:org.secpod.oval:def:91467 libreoffice: Office productivity suite LibreOffice could be made to run arbitrary code if an empty entry to the java class path is configured. oval:org.secpod.oval:def:89418 git: fast, scalable, distributed revision control system Several security issues were fixed in Git. oval:org.secpod.oval:def:88621 dbus: simple interprocess messaging system Several security issues were fixed in DBus. oval:org.secpod.oval:def:80421 git: fast, scalable, distributed revision control system Git could be made to run arbitrary commands in platforms with multiple users support. oval:org.secpod.oval:def:80406 dbus: simple interprocess messaging system Details: USN-5244-1 fixed a vulnerability in DBus. This update provides the corresponding update for Linux Mint 19.x LTS and Linux Mint 20.x LTS. Original advisory DBus could be made to crash if it received specially crafted input. oval:org.secpod.oval:def:91462 ldb: LDAP-like embedded database ldb could be made to expose sensitive information over the network. oval:org.secpod.oval:def:91742 samba: SMB/CIFS file, print, and login server for Unix Samba could be made to expose sensitive information over the network. oval:org.secpod.oval:def:88609 libreoffice: Office productivity suite Several security issues were fixed in LibreOffice. oval:org.secpod.oval:def:88493 libreoffice: Office productivity suite Several security issues were fixed in LibreOffice. oval:org.secpod.oval:def:88491 libreoffice: Office productivity suite Several security issues were fixed in LibreOffice. oval:org.secpod.oval:def:89403 sox: Swiss army knife of sound processing Several security issues were fixed in SoX. oval:org.secpod.oval:def:89480 sox: Swiss army knife of sound processing Details: USN-5904-1 fixed vulnerabilities in SoX. It was discovered that the fix for CVE-2021-33844 was incomplete. This update fixes the problem. Original advisory USN-5904-1 caused a minor regression in SoX. oval:org.secpod.oval:def:91508 libcap2: POSIX 1003.1e capabilities Several security issues were fixed in libcap2. oval:org.secpod.oval:def:95027 cargo: Rust package manager - rust-cargo: Rust package manager - feature "openssl" Cargo could be made to run programs as your login if it installed a specially crafted crate. oval:org.secpod.oval:def:91479 freetype: FreeType 2 is a font engine library FreeType could be made to crash or possibly execute arbitrary code if it opened a specially crafted font file. oval:org.secpod.oval:def:72107 gst-plugins-base1.0: GStreamer plugins GStreamer Base Plugins could be made to expose sensitive information if it received a specially crafted input. oval:org.secpod.oval:def:95001 poppler: PDF rendering library Several security issues were fixed in poppler. oval:org.secpod.oval:def:75932 squashfs-tools: Tools to create and modify squashfs filesystems squashfs-tools could be made to overwrite files. oval:org.secpod.oval:def:75953 squashfs-tools: Tools to create and modify squashfs filesystems Details: USN-5078-1 fixed a vulnerability in Squashfs-Tools. That update was incomplete and could still result in Squashfs-Tools mishandling certain malformed SQUASHFS files. This update fixes the problem. We apologize for the inconveni ... oval:org.secpod.oval:def:75952 squashfs-tools: Tools to create and modify squashfs filesystems Squashfs-Tools could be made to overwrite files. oval:org.secpod.oval:def:89395 bind9: Internet Domain Name Server Several security issues were fixed in Bind. oval:org.secpod.oval:def:91495 avahi: IPv4LL network address configuration daemon Avahi could be made to crash if it received specially crafted DBus traffic. oval:org.secpod.oval:def:73693 avahi: IPv4LL network address configuration daemon Several security issues were fixed in Avahi. oval:org.secpod.oval:def:91461 xorg-server: X.Org X11 server - xwayland: X server for running X clients under Wayland - xorg-server-hwe-18.04: X.Org X11 server X.Org X Server could be made to crash or run programs as the administrator if it received specially crafted input. oval:org.secpod.oval:def:91509 libx11: X11 client-side library libx11 could be made to crash if it received specially crafted network traffic. oval:org.secpod.oval:def:96308 node-url-parse: Small footprint URL parser that works across Node.js and browsers Several security issues were fixed in url-parse. oval:org.secpod.oval:def:96313 xcftools: command-line tools for extracting data for XCF files Xcftools could be made to crash or run programs as an administrator if it opened a specially crafted file. oval:org.secpod.oval:def:96315 ipmitool: utility for IPMI control with kernel driver or LAN interface oval:org.secpod.oval:def:96316 apache-log4j1.2: Java-based open-source logging tool Several security issues were fixed in Apache Log4j. oval:org.secpod.oval:def:96317 node-trim-newlines: Trim newlines from the start and/or end of a string A security issue was fixed in trim-newlines. oval:org.secpod.oval:def:96318 node-thenify: Promisify a callback-based function A security issue weas fixed in thenify. oval:org.secpod.oval:def:96330 heat: OpenStack Orchestration Service OpenStack Heat could be made to expose sensitive information. oval:org.secpod.oval:def:96336 node-minimatch: A glob matcher in javascript minimatch could be made to crash if it opened a specially crafted input file. oval:org.secpod.oval:def:96340 firefox: Mozilla Open Source web browser Details: USN-6074-1 fixed vulnerabilities and USN-6074-2 fixed minor regressions in Firefox. The update introduced several minor regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-6074-2 caused some minor reg ... oval:org.secpod.oval:def:96341 node-json-schema: A vocabulary that allows you to validate, annotate, and manipulate JSON files JSON Schema could be made to crash or run programs if it opened specially crafted input. oval:org.secpod.oval:def:96343 linuxptp: Precision Time Protocol implementation for Linux Linux PTP could be made to crash, run arbitrary code, or expose sensitive information if it received specially crafted input. oval:org.secpod.oval:def:96345 node-nth-check: Parses and compiles CSS nth-checks to highly optimized functions. nth-check could be made to crash if it opened a specially crafted file. oval:org.secpod.oval:def:96358 knot-resolver: caching, DNSSEC-validating DNS resolver Knot Resolver could be made to crash if it received specially crafted network traffic. oval:org.secpod.oval:def:96361 cjose: C library implementing the JOSE standard JOSE for C/C++ could be made to crash if it received specially crafted input. oval:org.secpod.oval:def:96367 openjdk-17: Open Source Java implementation - openjdk-lts: Open Source Java implementation Details: USN-6263-1 fixed vulnerabilities in OpenJDK. Unfortunately, that update introduced a regression when opening APK, ZIP or JAR files in OpenJDK 11 and OpenJDK 17. This update fixes the problem. We apolo ... oval:org.secpod.oval:def:96371 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:96372 docker-registry: Docker toolset to pack, ship, store, and deliver content Docker Registry could be made to crash if it received specially crafted input. oval:org.secpod.oval:def:96376 sox: Swiss army knife of sound processing SoX could be made to crash if it received specially crafted input. oval:org.secpod.oval:def:96382 flac: Free Lossless Audio Codec FLAC could be made to crash or run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:96383 gawk: GNU awk, a pattern scanning and processing language gawk could be made to crash if it received specially crafted input. oval:org.secpod.oval:def:96384 mutt: text-based mailreader supporting MIME, GPG, PGP and threading Mutt could be made to crash if it received specially crafted input. oval:org.secpod.oval:def:96387 opendmarc: Open Source implementation of the DMARC specification Several security issues were fixed in OpenDMARC. oval:org.secpod.oval:def:96389 cups: Common UNIX Printing System CUPS could be made to expose sensitive information. oval:org.secpod.oval:def:96391 libssh2: Client-side C library implementing the SSH2 protocol libssh2 could be made to crash if it received specially crafted network traffic. oval:org.secpod.oval:def:96396 indent: C language source code formatting program Indent could be made to crash or run programs if it opened a specially crafted file. oval:org.secpod.oval:def:96397 cups: Common UNIX Printing System CUPS could be made to crash or run programs if it opened a specially crafted file. oval:org.secpod.oval:def:96405 exim4: Exim is a mail transport agent Several security issues were fixed in Exim. oval:org.secpod.oval:def:96411 libcue: CUE Sheet Parser Library - development files CUE could be made to execute arbitrary code if it received a specially crafted file. oval:org.secpod.oval:def:96423 exim4: Exim is a mail transport agent Several security issues were fixed in Exim. oval:org.secpod.oval:def:96430 xrdp: Remote Desktop Protocol server xrdp could be made to crash or run programs if it received specially crafted network traffic. oval:org.secpod.oval:def:96431 libsndfile: Library for reading/writing audio files libsndfile could be made to crash if it received specially crafted input. oval:org.secpod.oval:def:96432 krb5: MIT Kerberos Network Authentication Protocol Details: USN-6467-1 fixed a vulnerability in Kerberos. This update provides the corresponding update for Linux Mint 20.x LTS, Linux Mint 21.x LTS and Ubuntu 23.04. Original advisory Kerberos could be made to crash if it received specially crafted ne ... oval:org.secpod.oval:def:96433 gsl: A modern numerical library for C and C++ programmers GNU Scientific Library could be made to crash or execute arbitrary code if it received specially crafted input. oval:org.secpod.oval:def:96439 firefox: Mozilla Open Source web browser Details: USN-6456-1 fixed vulnerabilities in Firefox. The update introduced several minor regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-6456-1 caused some minor regressions in Firefox. oval:org.secpod.oval:def:96440 procps: /proc file system utilities procps-ng could be made to crash if it received specially crafted input. oval:org.secpod.oval:def:96443 tidy-html5: HTML/XML syntax checker and reformatter tidy-html5 could be made to crash or run programs if it opened a specially crafted file. oval:org.secpod.oval:def:96446 intel-microcode: Processor microcode for Intel CPUs The system could be made to crash or expose sensitive information under certain conditions. oval:org.secpod.oval:def:96448 strongswan: IPsec VPN solution strongSwan could be made to crash or run programs if it received specially crafted network traffic. oval:org.secpod.oval:def:96449 tang: network-based cryptographic binding server Tang could allow unintended access to secret keys. oval:org.secpod.oval:def:96451 avahi: IPv4LL network address configuration daemon Avahi could be made to crash if it received specially crafted input. oval:org.secpod.oval:def:96454 hibagent: Agent that triggers hibernation on EC2 instances A security improvement was added to hibagent. oval:org.secpod.oval:def:96483 firefox: Mozilla Open Source web browser Details: USN-6509-1 fixed vulnerabilities in Firefox. The update introduced several minor regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-6509-1 caused some minor regressions in Firefox. oval:org.secpod.oval:def:96490 poppler: PDF rendering library Several security issues were fixed in poppler. oval:org.secpod.oval:def:96468 firefox: Mozilla Open Source web browser Several security issues were fixed in Firefox. oval:org.secpod.oval:def:96474 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:96457 rabbitmq-server: AMQP server written in Erlang RabbitMQ could be made to denial of service if it received a specially crafted HTTP request. oval:org.secpod.oval:def:93889 haproxy: fast and reliable load balancing reverse proxy Details: USN-6294-1 fixed vulnerabilities in HAProxy. This update provides the corresponding updates for Linux Mint 20.x LTS. Original advisory HAProxy could allow unintended access to network services. oval:org.secpod.oval:def:96388 libwebp: Lossy compression of digital photographic images libwebp could be made to crash or run programs if it opened a specially crafted file. oval:org.secpod.oval:def:96386 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:95019 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs if it opened a malicious website. oval:org.secpod.oval:def:91747 texlive-bin: Binaries for TeX Live LuaTeX could be made to run programs as your login if it compiled a specially crafted TeX file. oval:org.secpod.oval:def:89482 c-ares: library for asynchronous name resolution c-ares could be made to crash or run programs if it processed specially crafted input. oval:org.secpod.oval:def:91486 cups-filters: OpenPrinting CUPS Filters cups-filters could be made to crash or run programs if it received specially crafted network traffic. oval:org.secpod.oval:def:96779 request-tracker4: An enterprise-grade issue tracking system Several security issues were fixed in Request Tracker. oval:org.secpod.oval:def:96780 haproxy: fast and reliable load balancing reverse proxy HAProxy could be made to expose sensitive information. oval:org.secpod.oval:def:96786 tar: GNU version of the tar archiving utility tar could be made to crash if it opened a specially crafted file. oval:org.secpod.oval:def:96791 gnome-control-center: utilities to configure the GNOME desktop GNOME Settings could allow unintended access to network services. oval:org.secpod.oval:def:96795 audiofile: Open-source version of the SGI audiofile library Several security issues were fixed in audiofile. oval:org.secpod.oval:def:96796 yajl: Yet Another JSON Library Details: USN-6233-1 fixed vulnerabilities in YAJL. This update provides the corresponding updates for Linux Mint 20.x LTS, Linux Mint 21.x LTS, and Ubuntu 23.04. Original advisory Several security issues were fixed in YAJL. oval:org.secpod.oval:def:96479 gst-plugins-bad1.0: GStreamer plugins Several security issues were fixed in GStreamer Bad Plugins. oval:org.secpod.oval:def:95060 pmix: Process Management Interface library - tools PMIx could be made to overwrite files. oval:org.secpod.oval:def:95028 python-git: Python library to interact with Git repositories GitPython could me made to execute arbitrary commands on the host. oval:org.secpod.oval:def:88627 snapd: Daemon and tooling that enable snap packages snapd could be made to run programs as an administrator. oval:org.secpod.oval:def:96789 netatalk: Apple Filing Protocol service Netatalk could be made to crash or run programs if it received specially crafted network traffic. oval:org.secpod.oval:def:96480 freerdp2: RDP client for Windows Terminal Services Several security issues were fixed in FreeRDP. oval:org.secpod.oval:def:96408 freerdp2: RDP client for Windows Terminal Services Several security issues were fixed in FreeRDP. oval:org.secpod.oval:def:96394 open-vm-tools: Open VMware Tools for virtual machines hosted on VMware Open VM Tools could allow unintended access to network services. oval:org.secpod.oval:def:93891 faad2: Freeware Advanced Audio Decoder Several security issues were fixed in FAAD2. oval:org.secpod.oval:def:96395 ruby-redcloth: Textile module for Ruby RedCloth could be made to crash if it received specially crafted input. oval:org.secpod.oval:def:96784 tinyxml: A simple, small, minimal, C++ XML parser TinyXML could be made to crash if it opened a specially crafted file. oval:org.secpod.oval:def:91501 libreoffice: Office productivity suite Several security issues were fixed in LibreOffice. oval:org.secpod.oval:def:95000 golang-yaml.v2: YAML support for the Go language Several security issues were patched in the Go yaml package. oval:org.secpod.oval:def:88601 expat: XML parsing C library Details: USN-5638-1 fixed a vulnerability in Expat. This update provides the corresponding updates for Linux Mint 19.x LTS, Linux Mint 20.x LTS and Linux Mint 21.x LTS. Original advisory Expat could be made to crash or execute arbitrary code. oval:org.secpod.oval:def:88602 expat: XML parsing C library Details: USN-5638-1 fixed a vulnerability in Expat. This update provides the corresponding updates for Linux Mint 18.x ESM, Linux Mint 19.x LTS, Linux Mint 20.x LTS, Linux Mint 21.x LTS and Ubuntu 22.10. This update also fixes a minor regression introduced in Linux Mint ... oval:org.secpod.oval:def:79877 expat: XML parsing C library Details: USN-5288-1 fixed several vulnerabilities in Expat. For CVE-2022-25236 it caused a regression and an additional patch was required. This update address this regression and several other vulnerabilities. It was discovered that Expat incorrectly handled certain fil ... oval:org.secpod.oval:def:89456 python-django: High-level Python web development framework Django could be made to stop responding if it received specially crafted network traffic. oval:org.secpod.oval:def:89443 python-django: High-level Python web development framework Django could be made to consume memory if it received specially crafted network traffic. oval:org.secpod.oval:def:88489 bind9: Internet Domain Name Server Several security issues were fixed in Bind. oval:org.secpod.oval:def:76000 bind9: Internet Domain Name Server Bind could be made to consume resources if it received specially crafted network traffic. oval:org.secpod.oval:def:78180 lxml: pythonic binding for the libxml2 and libxslt libraries lxml could be made to execute arbitrary code if it received a specially crafted XML or HTML file. oval:org.secpod.oval:def:78170 python-django: High-level Python web development framework Several security issues were fixed in Django. oval:org.secpod.oval:def:80400 python-django: High-level Python web development framework Several security issues were fixed in Django. oval:org.secpod.oval:def:79865 bind9: Internet Domain Name Server Several security issues were fixed in Bind. oval:org.secpod.oval:def:73695 libuv1: asynchronous event notification library - runtime library libuv could be made to crash or expose sensitive information if it received a specially crafted input. oval:org.secpod.oval:def:73702 nettle: low level cryptographic library Several security issues were fixed in Nettle. oval:org.secpod.oval:def:91499 nghttp2: HTTP/2 C Library and tools nghttp2 could be made to crash if it opened a specially crafted file. oval:org.secpod.oval:def:95043 python-git: Python library to interact with Git repositories GitPython could be made to run arbitrary commands on the host. oval:org.secpod.oval:def:73698 apache2: Apache HTTP server Several security issues were fixed in Apache HTTP Server. oval:org.secpod.oval:def:78176 apache2: Apache HTTP server Several security issues were fixed in Apache HTTP Server. oval:org.secpod.oval:def:75917 apache2: Apache HTTP server Several security issues were fixed in Apache HTTP Server. oval:org.secpod.oval:def:89445 apache2: Apache HTTP server Several security issues were fixed in Apache HTTP Server. oval:org.secpod.oval:def:91503 requests: elegant and simple HTTP library for Python Requests could be made to expose sensitive information over the network. oval:org.secpod.oval:def:91744 python-django: High-level Python web development framework A Django hardening measure could be bypassed. oval:org.secpod.oval:def:79886 apache2: Apache HTTP server Several security issues were fixed in Apache HTTP Server. oval:org.secpod.oval:def:89439 python-future: Clean single-source support for Python 3 and 2 python-future could be made to crash if it received specially crafted input. oval:org.secpod.oval:def:70246 python-cryptography: Cryptography Python library python-cryptography could be made to expose sensitive information over the network. oval:org.secpod.oval:def:89450 imagemagick: Image manipulation programs and library Details: USN-5855-1 fixed a vulnerability in ImageMagick. This update provides the corresponding update for Linux Mint 20.x LTS, Linux Mint 21.x LTS, and Ubuntu 22.10. Original advisory Several security issues were fixed in ImageMagick. oval:org.secpod.oval:def:96785 glibc: GNU C Library Several security issues were fixed in GNU C Library. oval:org.secpod.oval:def:96329 ruby2.7: Object-oriented scripting language - ruby2.5: Object-oriented scripting language - ruby2.3: Object-oriented scripting language Details: USN-6055-1 fixed a vulnerability in Ruby. Unfortunately it introduced a regression. This update reverts the patches applied to CVE-2023-28755 in order to f ... oval:org.secpod.oval:def:96327 ruby2.7: Object-oriented scripting language - ruby2.5: Object-oriented scripting language - ruby2.3: Object-oriented scripting language Several security issues were fixed in Ruby. oval:org.secpod.oval:def:78163 ruby2.7: Object-oriented scripting language - ruby2.5: Object-oriented scripting language - ruby2.3: Object-oriented scripting language Several security issues were fixed in Ruby. oval:org.secpod.oval:def:89416 ruby2.7: Object-oriented scripting language Details: USN-5806-1 fixed vulnerabilities in Ruby. This update fixes the problem for Linux Mint 20.x LTS. Original advisory Ruby could allow for internet traffic to be modified if a vulnerable application processed malicious user input. oval:org.secpod.oval:def:88586 linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-bluefield: Linux kernel for NVIDIA BlueField platforms - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine sy ... oval:org.secpod.oval:def:88583 linux: Linux kernel - linux-raspi: Linux kernel for Raspberry Pi systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:88589 linux-azure-fde: Linux kernel for Microsoft Azure CVM cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:91505 binutils: GNU assembler, linker and binary utilities GNU binutils could be made to crash or run programs if it opened a specially crafted file. oval:org.secpod.oval:def:95075 ring: Secure and distributed voice, video, and chat platform Several security issues were fixed in Ring. oval:org.secpod.oval:def:75979 mongodb: object/document-oriented database MongoDB could be made to crash if it received specially crafted network traffic. oval:org.secpod.oval:def:75928 mongodb: Document-oriented database MongoDB could provide unintended access. oval:org.secpod.oval:def:89469 clamav: Anti-virus utility for Unix Several security issues were fixed in ClamAV. oval:org.secpod.oval:def:89398 fig2dev: Utilities for converting XFig figure files Several security issues were fixed in Fig2dev. oval:org.secpod.oval:def:88503 sudo: Provide limited super user privileges to specific users Several security issues were fixed in Sudo. oval:org.secpod.oval:def:91751 sysstat: system performance tools for Linux Sysstat could be made to crash or run programs if it processed specially crafted data. oval:org.secpod.oval:def:89477 gnutls28: GNU TLS library GnuTLS could be made to expose sensitive information over the network. oval:org.secpod.oval:def:96445 python-pip: Python package installer Details: USN-6473-1 fixed vulnerabilities in urllib3. This update provides the corresponding updates for the urllib3 module bundled into pip. Original advisory Several security issues were fixed in pip. oval:org.secpod.oval:def:96434 python-urllib3: HTTP library with thread-safe connection pooling Several security issues were fixed in urllib3. oval:org.secpod.oval:def:95067 openssl: Secure Socket Layer cryptographic library and tools Details: USN-6435-1 fixed vulnerabilities in OpenSSL. This update provides the corresponding updates for Linux Mint 20.x LTS. Original advisory OpenSSL could be made to consume resources and cause long delays if it processed certain input ... oval:org.secpod.oval:def:89459 git: fast, scalable, distributed revision control system Several security issues were fixed in Git. oval:org.secpod.oval:def:70397 python3.8: Interactive high-level object-oriented language - python2.7: An interactive high-level object-oriented language - python3.6: An interactive high-level object-oriented language - python3.5: An interactive high-level object-oriented language - python3.4: An interactive high-level object-or ... oval:org.secpod.oval:def:96799 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:96427 open-vm-tools: Open VMware Tools for virtual machines hosted on VMware Several security issues were fixed in Open VM Tools. oval:org.secpod.oval:def:88551 xorg-server: X.Org X11 server - xwayland: Xwayland X server - xorg-server-hwe-18.04: X.Org X11 server Several security issues were fixed in X.Org X Server. oval:org.secpod.oval:def:88475 containerd: daemon to control runC Several security issues were fixed in containerd. oval:org.secpod.oval:def:88506 containerd: daemon to control runC Details: USN-5311-1 released updates for contained. Unfortunately, a subsequent update reverted the fix for this CVE by mistake. This update corrects the problem. We apologize for the inconvenience. Original advisory USN-5311-1 fix was reverted by mistake in contai ... oval:org.secpod.oval:def:79880 nbd: Network Block Device protocol Several security issues were fixed in NBD. oval:org.secpod.oval:def:78188 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:75978 containerd: daemon to control runC containerd would allow unintended access to files. oval:org.secpod.oval:def:95063 aom: AV1 Video Codec Library Several security issues were fixed in AOM. oval:org.secpod.oval:def:91476 git: fast, scalable, distributed revision control system Several security issues were fixed in Git. oval:org.secpod.oval:def:96460 gnutls28: GNU TLS library GnuTLS could be made to expose sensitive information over the network. oval:org.secpod.oval:def:96803 python-cryptography: Cryptography Python library Several security issues were fixed in python-cryptography. oval:org.secpod.oval:def:75982 squid: Web proxy cache server - squid3: Web proxy cache server Squid could be made to crash or expose sensitive information over the network. oval:org.secpod.oval:def:96481 openjdk-17: Open Source Java implementation - openjdk-21: Open Source Java implementation - openjdk-lts: Open Source Java implementation Several security issues were fixed in OpenJDK 17, OpenJDK 21, OpenJDK. oval:org.secpod.oval:def:95058 iperf3: Internet Protocol bandwidth measuring tool Several security issues were fixed in iperf3. oval:org.secpod.oval:def:89490 tiff: Tag Image File Format library Several security issues were fixed in LibTIFF. oval:org.secpod.oval:def:96400 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:94989 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login. oval:org.secpod.oval:def:93884 firefox: Mozilla Open Source web browser Several security issues were fixed in Firefox. oval:org.secpod.oval:def:96399 libvpx: VP8 and VP9 video codec Several security issues were fixed in libvpx. oval:org.secpod.oval:def:95035 vlc: multimedia player and streamer Several security issues were fixed in VLC media player. oval:org.secpod.oval:def:95047 firefox: Mozilla Open Source web browser Several security issues were fixed in Firefox. oval:org.secpod.oval:def:95006 firefox: Mozilla Open Source web browser Several security issues were fixed in Firefox. oval:org.secpod.oval:def:96428 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:93880 firefox: Mozilla Open Source web browser Several security issues were fixed in Firefox. oval:org.secpod.oval:def:95070 firefox: Mozilla Open Source web browser Several security issues were fixed in Firefox. oval:org.secpod.oval:def:96414 tiff: Tag Image File Format library LibTIFF could be made to crash if it opened a specially crafted file. oval:org.secpod.oval:def:91494 cups: Common UNIX Printing System CUPS could be made to crash or run programs if it received specially crafted network traffic. oval:org.secpod.oval:def:91477 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK. oval:org.secpod.oval:def:91502 vim: Vi IMproved - enhanced vi editor Several security issues were fixed in Vim. oval:org.secpod.oval:def:96782 postgresql-15: Object-relational SQL database - postgresql-14: Object-relational SQL database - postgresql-12: Object-relational SQL database Several security issues were fixed in PostgreSQL. oval:org.secpod.oval:def:91483 openjdk-17: Open Source Java implementation - openjdk-20: Open Source Java implementation - openjdk-8: Open Source Java implementation - openjdk-lts: Open Source Java implementation Several security issues were fixed in OpenJDK. oval:org.secpod.oval:def:95059 quagga: BGP/OSPF/RIP routing daemon Several security issues were fixed in Quagga. oval:org.secpod.oval:def:89393 vim: Vi IMproved - enhanced vi editor Several security issues were fixed in Vim. oval:org.secpod.oval:def:88478 vim: Vi IMproved - enhanced vi editor Several security issues were fixed in Vim. oval:org.secpod.oval:def:95074 vim: Vi IMproved - enhanced vi editor Several security issues were fixed in Vim. oval:org.secpod.oval:def:75918 vim: Vi IMproved - enhanced vi editor Several security issues were fixed in Vim. oval:org.secpod.oval:def:78164 vim: Vi IMproved - enhanced vi editor Several security issues were fixed in Vim. oval:org.secpod.oval:def:75933 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:73703 libxml2: GNOME XML library Several security issues were fixed in libxml2. oval:org.secpod.oval:def:72098 exiv2: EXIF/IPTC/XMP metadata manipulation tool Several security issues were fixed in Exiv2. oval:org.secpod.oval:def:73712 ceph: distributed storage and file system Several security issues were fixed in Ceph. oval:org.secpod.oval:def:70255 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:70270 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:70307 firefox: Mozilla Open Source web browser Firefox could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:95076 vim: Vi IMproved - enhanced vi editor Several security issues were fixed in Vim. oval:org.secpod.oval:def:96783 bluez: Bluetooth tools and daemons BlueZ could be made to give a physically proximate attacker keyboard and mouse control of a computer. oval:org.secpod.oval:def:89389 sofia-sip: Sofia-SIP library development files Several security issues were fixed in Sofia-SIP. oval:org.secpod.oval:def:96424 mysql-8.0: MySQL database Several security issues were fixed in MySQL. oval:org.secpod.oval:def:70261 libmaxminddb: C library for the MaxMind DB file format libmaxminddb could be made to crash if it received specially crafted data. oval:org.secpod.oval:def:96475 gimp: GNU Image Manipulation Program GIMP could be made to crash or run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:96416 ghostscript: PostScript and PDF interpreter Ghostscript could be made to run programs if it opened a specially crafted file. oval:org.secpod.oval:def:88521 openjdk-17: Open Source Java implementation Several security issues were fixed in OpenJDK. oval:org.secpod.oval:def:80430 openjdk-lts: Open Source Java implementation Several security issues were fixed in OpenJDK. oval:org.secpod.oval:def:96420 sofia-sip: Sofia-SIP library development files Sofia-SIP could be made to crash or run programs if it received specially crafted network traffic. oval:org.secpod.oval:def:96404 libxpm: X11 pixmap library Several security issues were fixed in libXpm. oval:org.secpod.oval:def:96402 libx11: X11 client-side library Several security issues were fixed in libx11. oval:org.secpod.oval:def:75919 sssd: System Security Services Daemon Several security issues were fixed in sssd. oval:org.secpod.oval:def:91750 libraw: raw image decoder library Several security issues were fixed in LibRaw. oval:org.secpod.oval:def:96401 libtommath: multiple-precision integer library [development files] LibTomMatch could be made to execute arbitrary code or denial of service if it received a specially crafted input. oval:org.secpod.oval:def:91465 ghostscript: PostScript and PDF interpreter Ghostscript could be made to crash or run programs as your login if it received a specially crafted input. oval:org.secpod.oval:def:96469 tiff: Tag Image File Format library Several security issues were fixed in LibTIFF. oval:org.secpod.oval:def:89458 apr-util: Apache Portable Runtime Utility Library APR-util could be made to crash or run programs as an administrator if it received specially crafted input. oval:org.secpod.oval:def:89494 snakeyaml: YAML parser and emitter for the Java programming language Several security issues were fixed in SnakeYAML. oval:org.secpod.oval:def:89473 openjdk-17: Open Source Java implementation - openjdk-19: Open Source Java implementation - openjdk-lts: Open Source Java implementation Several security issues were fixed in OpenJDK. oval:org.secpod.oval:def:89474 openjdk-8: Open Source Java implementation Several security issues were fixed in OpenJDK. oval:org.secpod.oval:def:91491 postgresql-15: Object-relational SQL database - postgresql-14: Object-relational SQL database - postgresql-12: Object-relational SQL database - postgresql-10: Object-relational SQL database Several security issues were fixed in PostgreSQL. oval:org.secpod.oval:def:96466 zfs-linux: OpenZFS filesystem for Linux OpenZFS could allow unintended access to network services. oval:org.secpod.oval:def:89402 nss: Network Security Service library Several security issues were fixed in NSS. oval:org.secpod.oval:def:89466 firefox: Mozilla Open Source web browser Details: USN-5880-1 fixed vulnerabilities in Firefox. The update introduced several minor regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-5880-1 caused some minor regressions in Firefox. oval:org.secpod.oval:def:89465 firefox: Mozilla Open Source web browser Several security issues were fixed in Firefox. oval:org.secpod.oval:def:89493 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:89421 firefox: Mozilla Open Source web browser Several security issues were fixed in Firefox. oval:org.secpod.oval:def:91480 firefox: Mozilla Open Source web browser Several security issues were fixed in Firefox. oval:org.secpod.oval:def:91482 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:91485 libwebp: Lossy compression of digital photographic images libwebp could be made to crash or run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:91458 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:91464 firefox: Mozilla Open Source web browser Several security issues were fixed in Firefox. oval:org.secpod.oval:def:89498 firefox: Mozilla Open Source web browser Several security issues were fixed in Firefox. oval:org.secpod.oval:def:91500 firefox: Mozilla Open Source web browser Several security issues were fixed in Firefox. oval:org.secpod.oval:def:95073 imagemagick: Image manipulation programs and library Several security issues were fixed in ImageMagick. oval:org.secpod.oval:def:96472 openvswitch: Ethernet virtual switch Open vSwitch could be made to expose sensitive information over the network. oval:org.secpod.oval:def:95055 curl: HTTP, HTTPS, and FTP client and client libraries Several security issues were fixed in curl. oval:org.secpod.oval:def:93725 curl: cookie injection with none file. oval:org.secpod.oval:def:95026 imagemagick: Image manipulation programs and library ImageMagick could be made to crash when processing the -help option. oval:org.secpod.oval:def:88504 pillow: Python Imaging Library Details: USN-5227-1 fixed vulnerabilities in Pillow. It was discovered that the fix for CVE-2022-22817 was incomplete. This update fixes the problem. Original advisory An incomplete fix was discovered in Pillow. oval:org.secpod.oval:def:78182 pillow: Python Imaging Library Several security issues were fixed in Pillow. oval:org.secpod.oval:def:98652 clamav: Anti-virus utility for Unix ClamAV was updated to remain compatible with signature database downloads. oval:org.secpod.oval:def:98653 golang-1.13: Go programming language compiler - golang-1.16: Go programming language compiler Details: USN-6038-1 fixed several vulnerabilities in Go 1.18. This update provides the corresponding updates for Go 1.13 and Go 1.16. CVE-2022-29526 and CVE-2022-30630 only affected Go 1.16. Original adviso ... oval:org.secpod.oval:def:98656 firefox: Mozilla Open Source web browser Details: USN-6562-1 fixed vulnerabilities in Firefox. The update introduced several minor regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-6562-1 caused some minor regressions in Firefox. oval:org.secpod.oval:def:98660 libspf2: Sender Policy Framework for SMTP authorization Several security issues were fixed in Libspf2. oval:org.secpod.oval:def:98664 xerces-c: Validating XML parser written in a portable subset of C++ Details: USN-6579-1 fixed a vulnerability in Xerces-C++. This update provides the corresponding update for Linux Mint 20.x LTS, Linux Mint 21.x LTS. Original advisory Xerces-C++ could be made to crash or run programs if it opened a ... oval:org.secpod.oval:def:98665 pam: Pluggable Authentication Modules PAM could be made to stop responding if it opened a specially crafted file. oval:org.secpod.oval:def:98666 zookeeper: High-performance coordination service for distributed applications Several security issues were fixed in ZooKeeper. oval:org.secpod.oval:def:98667 xerces-c: Validating XML parser written in a portable subset of C++ Several security issues were fixed in Xerces-C++. oval:org.secpod.oval:def:98669 libssh: A tiny C SSH library Several security issues were fixed in libssh. oval:org.secpod.oval:def:98670 gnutls28: GNU TLS library Several security issues were fixed in GnuTLS. oval:org.secpod.oval:def:98671 postfix: High-performance mail transport agent Postfix could allow bypass of email authentication if it received specially crafted network traffic. oval:org.secpod.oval:def:98674 libapache-session-ldap-perl: Apache::Session::LDAP Perl module - Store Apache Session in LDAP Apache::Session::LDAP could be made to expose sensitive information through spoofing if it received invalid X.509 certificate. oval:org.secpod.oval:def:98675 mariadb: MariaDB database - mariadb-10.6: MariaDB database - mariadb-10.3: MariaDB database Several security issues were fixed in MariaDB. oval:org.secpod.oval:def:98683 exim4: Exim is a mail transport agent Exim could be made to bypass an SPF protection mechanism if it received a specially crafted request. oval:org.secpod.oval:def:98685 ceph: distributed storage and file system Ceph could be made to bypass authorization checks if it received a specially crafted request. oval:org.secpod.oval:def:98687 tinyxml: A simple, small, minimal, C++ XML parser TinyXML could be made to crash if it opened a specially crafted file. oval:org.secpod.oval:def:98688 xorg-server: X.Org X11 server - xwayland: X server for running X clients under Wayland Details: USN-6587-1 fixed vulnerabilities in X.Org X Server. The fix was incomplete resulting in a possible regression. This update fixes the problem. We apologize for the inconvenience. Original advisory A regres ... oval:org.secpod.oval:def:98690 mysql-8.0: MySQL database Several security issues were fixed in MySQL. oval:org.secpod.oval:def:98691 openldap: Lightweight Directory Access Protocol OpenLDAP could be made to crash if it received specially crafted input. oval:org.secpod.oval:def:98692 libde265: Open H.265 video codec implementation Several security issues were fixed in libde265. oval:org.secpod.oval:def:98693 amanda: Advanced Maryland Automatic Network Disk Archiver amanda could be used to escalate privilege if it was provided with specially crafted arguments. oval:org.secpod.oval:def:98695 postfix: High-performance mail transport agent Details: USN-6591-1 fixed vulnerabilities in Postfix. A fix with less risk of regression has been made available since the last update. This update updates the fix and aligns with the latest configuration guidelines regarding this vulnerability. We apol ... oval:org.secpod.oval:def:98699 firefox: Mozilla Open Source web browser Details: USN-6610-1 fixed vulnerabilities in Firefox. The update introduced several minor regressions. This update fixes the problem. Original advisory USN-6610-1 caused some minor regressions in Firefox. oval:org.secpod.oval:def:98704 libde265: Open H.265 video codec implementation Several security issues were fixed in libde265. oval:org.secpod.oval:def:98712 ujson: ultra fast JSON encoder and decoder for Python 3 Details: USN-6629-1 fixed vulnerabilities in UltraJSON. This update provides the corresponding updates for Linux Mint 20.x LTS. Original advisory UltraJSON could be made to crash if it received specially crafted input. oval:org.secpod.oval:def:98714 edk2: UEFI firmware for virtual machines Several security issues were fixed in EDK II. oval:org.secpod.oval:def:98715 shadow: system login tools shadow could be made to expose sensitive information. oval:org.secpod.oval:def:98720 tiff: Tag Image File Format library Several security issues were fixed in LibTIFF. oval:org.secpod.oval:def:98722 firefox: Mozilla Open Source web browser Several security issues were fixed in Firefox. oval:org.secpod.oval:def:98725 postgresql-15: Object-relational SQL database - postgresql-14: Object-relational SQL database - postgresql-12: Object-relational SQL database PostgreSQL could be made to run arbitrary SQL. oval:org.secpod.oval:def:98728 libde265: Open H.265 video codec implementation Several security issues were fixed in libde265. oval:org.secpod.oval:def:98730 php7.4: HTML-embedded scripting language interpreter - php7.2: HTML-embedded scripting language interpreter - php7.0: HTML-embedded scripting language interpreter Details: USN-6305-1 fixed several vulnerabilities in PHP. This update provides the corresponding update for Linux Mint 18.x LTS, Linux Mi ... oval:org.secpod.oval:def:98735 openssl: Secure Socket Layer cryptographic library and tools Add implicit rejection in PKCS#1 v1.5 in OpenSSL. oval:org.secpod.oval:def:98737 python-openstackclient: OpenStack Command-line Client python-openstackclient could delete incorrect access rules. oval:org.secpod.oval:def:98739 libcpanel-json-xs-perl: module for fast and correct serialising to JSON Cpanel-JSON-XS could be made to crash or expose information if it processed specially crafted data. oval:org.secpod.oval:def:98740 php-guzzlehttp-psr7: PSR-7 HTTP message library Several header injection issues were fixed in php-guzzlehttp-psr7. oval:org.secpod.oval:def:98742 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:98743 nodejs: An open-source, cross-platform JavaScript runtime environment. Several security issues were fixed in Node.js. oval:org.secpod.oval:def:98744 python-cryptography: Cryptography Python library Several security issues were fixed in python-cryptography. oval:org.secpod.oval:def:98745 ruby-image-processing: High-level image processing wrapper for libvips and ImageMagick/GraphicsMagick ImageProcessing could be made to crash or run programs as an administrator if it received specially crafted input. oval:org.secpod.oval:def:98746 libgit2: Portable C implementation of the Git core methods library Several security issues were fixed in libgit2. oval:org.secpod.oval:def:98748 firefox: Mozilla Open Source web browser Details: USN-6649-1 fixed vulnerabilities in Firefox. The update introduced several minor regressions. This update fixes the problem. Original advisory USN-6649-1 caused some minor regressions in Firefox. oval:org.secpod.oval:def:98750 mqtt-client: Java MQTT Client API mqtt-client could be made to crash if it received specially crafted input. oval:org.secpod.oval:def:98751 accountsservice: query and manipulate user account information AccountsService could be made to expose sensitive information. oval:org.secpod.oval:def:98752 libgoogle-gson-java: A Java serialization/deserialization library to convert Java Objects into JSON and back Gson could be made to crash if it opened a specially crafted file. oval:org.secpod.oval:def:98754 ovn: system to support virtual network abstraction OVN could be made to disrupt traffic. oval:org.secpod.oval:def:98755 openvswitch: Ethernet virtual switch Several security issues were fixed in Open vSwitch. oval:org.secpod.oval:def:98759 libclamunrar: anti-virus utility for Unix - unrar support Several security issues were fixed in libclamunrar. oval:org.secpod.oval:def:98760 golang-1.20: Go programming language compiler - golang-1.21: Go programming language compiler Several security issues were fixed in Go. oval:org.secpod.oval:def:98761 twisted: Event-based framework for internet applications Several security issues were fixed in Twisted. oval:org.secpod.oval:def:98762 freeimage: Support library for graphics image formats Several security issues were fixed in FreeImage. oval:org.secpod.oval:def:98765 jinja2: documentation for the Jinja2 Python library Several security issues were fixed in jinja2. oval:org.secpod.oval:def:98770 libde265: Open H.265 video codec implementation Several security issues were fixed in libde265. oval:org.secpod.oval:def:98771 texlive-bin: Binaries for TeX Live Several security issues were fixed in TeX Live. oval:org.secpod.oval:def:96482 openjdk-8: Open Source Java implementation Several security issues were fixed in OpenJDK. oval:org.secpod.oval:def:98707 python-glance-store: OpenStack Image Service store library Glance_store could be made to expose sensitive information. oval:org.secpod.oval:def:98658 w3m: WWW browsable pager with excellent tables/frames support w3m could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:96471 perl: Practical Extraction and Report Language Several security issues were fixed in Perl. oval:org.secpod.oval:def:88501 curl: HTTP, HTTPS, and FTP client and client libraries Several security issues were fixed in curl. oval:org.secpod.oval:def:88494 curl: HTTP, HTTPS, and FTP client and client libraries Several security issues were fixed in curl. oval:org.secpod.oval:def:88492 curl: HTTP, HTTPS, and FTP client and client libraries Several security issues were fixed in curl. oval:org.secpod.oval:def:88651 w3m: WWW browsable pager with excellent tables/frames support w3m could be made to crash or run programs as your login if it opened a malicious website. oval:org.secpod.oval:def:88480 curl: HTTP, HTTPS, and FTP client and client libraries Several security issues were fixed in curl. oval:org.secpod.oval:def:80404 libvirt: Libvirt virtualization toolkit Several security issues were fixed in libvirt. oval:org.secpod.oval:def:75954 curl: HTTP, HTTPS, and FTP client and client libraries Several security issues were fixed in curl. oval:org.secpod.oval:def:71238 curl: HTTP, HTTPS, and FTP client and client libraries curl could be made to expose sensitive information over the network. oval:org.secpod.oval:def:70226 curl: HTTP, HTTPS, and FTP client and client libraries Several security issues were fixed in curl. oval:org.secpod.oval:def:75994 libcaca: text mode graphics utilities libcaca could be made to crash if it received a specially crafted image. oval:org.secpod.oval:def:70130 curl: HTTP, HTTPS, and FTP client and client libraries Several security issues were fixed in curl. oval:org.secpod.oval:def:70382 wpa: client support for WPA and WPA2 Several security issues were fixed in wpa_supplicant and hostapd. oval:org.secpod.oval:def:70369 minidlna: lightweight DLNA/UPnP-AV server targeted at embedded systems ReadyMedia could be made to crash if it received specially crafted input. oval:org.secpod.oval:def:88561 net-snmp: SNMP server and applications Several security issues were fixed in Net-SNMP. oval:org.secpod.oval:def:88652 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK. oval:org.secpod.oval:def:88564 libxml2: GNOME XML library libxml2 could be made to execute arbitrary code if it received a specially crafted file. oval:org.secpod.oval:def:73442 linux-oem-5.10: Linux kernel for OEM systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:71243 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud sys ... oval:org.secpod.oval:def:78191 policykit-1: framework for managing administrative policies and privileges policykit-1 could be made to run programs as an administrator. oval:org.secpod.oval:def:98659 binutils: GNU assembler, linker and binary utilities Several security issues were fixed in GNU binutils. oval:org.secpod.oval:def:91492 binutils: GNU assembler, linker and binary utilities Several security issues were fixed in GNU binutils. oval:org.secpod.oval:def:98726 binutils: GNU assembler, linker and binary utilities Several security issues were fixed in GNU binutils. oval:org.secpod.oval:def:96788 binutils: GNU assembler, linker and binary utilities Several security issues were fixed in GNU binutils. oval:org.secpod.oval:def:88616 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-bluefield: Linux kernel for NVIDIA BlueField platforms - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Googl ... oval:org.secpod.oval:def:88617 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Goo ... oval:org.secpod.oval:def:88605 linux-gcp: Linux kernel for Google Cloud Platform systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:88606 linux-gke-5.15: Linux kernel for Google Container Engine systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:88604 linux-gcp-5.15: Linux kernel for Google Cloud Platform systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:88552 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-fde: Linux kernel for Microsoft Azure cloud systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel fo ... oval:org.secpod.oval:def:78175 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Goo ... oval:org.secpod.oval:def:88597 linux-hwe-5.15: Linux hardware enablement kernel - linux-lowlatency-hwe-5.15: Linux low latency kernel Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:88598 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-kvm: Linux kernel for cloud environments - linux-lowlatency: Linux low latency kernel - linux-aws-5.15: Linux kernel for Amazon Web Services systems - ... oval:org.secpod.oval:def:88596 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-bluefield: Linux kernel for NVIDIA BlueField platforms - linux-gkeop: Linux kernel for Google Container Engine systems - linux-ibm: Linux kernel for I ... oval:org.secpod.oval:def:88660 linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-lowlatency: Linux low latency kernel - linux-gkeop: Linux kernel for Google Container Engine systems - linux-intel-iotg: Linux kernel for Intel IoT platforms - linux-lowlatency-hwe-5.15: Linux low latency kernel - linux-oracle-5.15 ... oval:org.secpod.oval:def:88658 linux-oem-5.14: Linux kernel for OEM systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:88659 linux-gkeop: Linux kernel for Google Container Engine systems - linux-aws-5.4: Linux kernel for Amazon Web Services systems - linux-hwe-5.4: Linux hardware enablement kernel - linux-oracle: Linux kernel for Oracle Cloud systems - linux-snapdragon: Linux kernel for Qualcomm Snapdragon processors S ... oval:org.secpod.oval:def:88654 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-ibm: Linux kernel for IBM cloud systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud systems - linux-a ... oval:org.secpod.oval:def:88655 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-ibm: Linux kernel for IBM cloud systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud systems - linux-a ... oval:org.secpod.oval:def:88614 linux-gcp: Linux kernel for Google Cloud Platform systems - linux-raspi: Linux kernel for Raspberry Pi systems - linux-oracle-5.4: Linux kernel for Oracle Cloud systems - linux-raspi-5.4: Linux kernel for Raspberry Pi systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:88610 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-bluefield: Linux kernel for NVIDIA BlueField platforms - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Google Container Engine systems - linux-ibm: Linux kernel for ... oval:org.secpod.oval:def:88622 linux-azure-fde: Linux kernel for Microsoft Azure CVM cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:93882 dwarves-dfsg: set of advanced DWARF utilities Several security issues were fixed in dwarves. oval:org.secpod.oval:def:88473 backport-iwlwifi-dkms: iwlwifi driver backport in DKMS format Several security issues were fixed in backport-iwlwifi-dkms. oval:org.secpod.oval:def:88533 linux-gkeop: Linux kernel for Google Container Engine systems - linux-oracle: Linux kernel for Oracle Cloud systems - linux-raspi: Linux kernel for Raspberry Pi systems - linux-gcp-5.4: Linux kernel for Google Cloud Platform systems - linux-gkeop-5.4: Linux kernel for Google Container Engine syst ... oval:org.secpod.oval:def:88562 linux: Linux kernel - linux-lowlatency: Linux low latency kernel - linux-hwe-5.15: Linux hardware enablement kernel - linux-lowlatency-hwe-5.15: Linux low latency kernel Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:88546 linux-oem-5.14: Linux kernel for OEM systems Several security issues were mitigated in the Linux kernel. oval:org.secpod.oval:def:88573 linux: Linux kernel - linux-lowlatency: Linux low latency kernel - linux-hwe-5.15: Linux hardware enablement kernel - linux-lowlatency-hwe-5.15: Linux low latency kernel Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:88574 linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-ibm: Linux kernel for IBM cloud systems - linux-k ... oval:org.secpod.oval:def:89437 linux-raspi: Linux kernel for Raspberry Pi systems - linux-raspi-5.4: Linux kernel for Raspberry Pi systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:89438 linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-5.4: Linux kernel for Microsoft Azure cloud systems - linux-raspi2: Linux kernel for Raspberry Pi systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:89501 python3.10: An interactive high-level object-oriented language - python3.8: An interactive high-level object-oriented language - python2.7: An interactive high-level object-oriented language - python3.6: An interactive high-level object-oriented language - python3.5: An interactive high-level object ... oval:org.secpod.oval:def:96477 pypy3: fast alternative implementation of Python 3.x PyPy could be made to crash or run programs if it received specially crafted data. oval:org.secpod.oval:def:96476 pysha3: SHA-3 hash implementation pysha3 could be made to crash or run programs if it received specially crafted data. oval:org.secpod.oval:def:91498 python3.11: An interactive high-level object-oriented language - python3.10: An interactive high-level object-oriented language - python3.8: An interactive high-level object-oriented language - python2.7: An interactive high-level object-oriented language - python3.6: An interactive high-level objec ... oval:org.secpod.oval:def:88554 python2.7: An interactive high-level object-oriented language - python3.10: Interactive high-level object-oriented language - python3.9: Interactive high-level object-oriented language - python3.8: An interactive high-level object-oriented language - python3.6: An interactive high-level object-ori ... oval:org.secpod.oval:def:89431 mysql-8.0: MySQL database - mysql-5.7: MySQL database Several security issues were fixed in MySQL. oval:org.secpod.oval:def:70283 qemu: Machine emulator and virtualizer Several security issues were fixed in QEMU. oval:org.secpod.oval:def:88497 qemu: Machine emulator and virtualizer Several security issues were fixed in QEMU. oval:org.secpod.oval:def:88485 qemu: Machine emulator and virtualizer Several security issues were fixed in QEMU. oval:org.secpod.oval:def:88526 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud sys ... oval:org.secpod.oval:def:88524 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-fde: Linux kernel for Microsoft Azure cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Go ... oval:org.secpod.oval:def:88513 linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gcp-5.13: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Google Container E ... oval:org.secpod.oval:def:88512 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud systems - linux-azure: Linux kernel for Microsoft Azure Cloud sys ... oval:org.secpod.oval:def:88509 linux-oem-5.14: Linux kernel for OEM systems The system could be made to crash or run programs as an administrator. oval:org.secpod.oval:def:78185 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud sys ... oval:org.secpod.oval:def:78171 linux-oem-5.14: Linux kernel for OEM systems The system could be made to crash or run programs as an administrator. oval:org.secpod.oval:def:80426 linux-oem-5.14: Linux kernel for OEM systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:80423 linux-bluefield: Linux kernel for NVIDIA BlueField platforms Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:80427 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-fde: Linux kernel for Microsoft Azure cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Go ... oval:org.secpod.oval:def:79871 linux-hwe-5.13: Linux hardware enablement kernel Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:79875 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-fde: Linux kernel for Microsoft Azure cloud systems - linux-bluefield: Linux kernel for NVIDIA BlueField platforms - linux-gcp: Linux kernel for ... oval:org.secpod.oval:def:88572 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-bluefield: Linux kernel for NVIDIA BlueField platforms - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Googl ... oval:org.secpod.oval:def:79891 linux-oem-5.14: Linux kernel for OEM systems The system could be made to crash if it received specially crafted network traffic. oval:org.secpod.oval:def:79888 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Google Container Engine systems - linux-ibm: Linux kernel for I ... oval:org.secpod.oval:def:96456 nodejs: An open-source, cross-platform JavaScript runtime environment. Several security issues were fixed in Node.js. oval:org.secpod.oval:def:89503 curl: HTTP, HTTPS, and FTP client and client libraries Several security issues were fixed in curl. oval:org.secpod.oval:def:91478 mysql-8.0: MySQL database - mysql-5.7: MySQL database Several security issues were fixed in MySQL. oval:org.secpod.oval:def:91470 vim: Vi IMproved - enhanced vi editor Several security issues were fixed in Vim. oval:org.secpod.oval:def:88486 curl: HTTP, HTTPS, and FTP client and client libraries Several security issues were fixed in curl. oval:org.secpod.oval:def:89401 curl: HTTP, HTTPS, and FTP client and client libraries Several security issues were fixed in curl. oval:org.secpod.oval:def:96805 vim: Vi IMproved - enhanced vi editor Several security issues were fixed in Vim. oval:org.secpod.oval:def:88579 rsync: fast, versatile, remote file-copying tool rsync could be made to crash or run programs if it received specially crafted input. oval:org.secpod.oval:def:88578 zlib: Lossless data-compression library Details: USN-5570-1 fixed a vulnerability in zlib. This update provides the corresponding update for Linux Mint 21.x LTS and Linux Mint 20.x LTS. Original advisory zlib could be made to crash or run programs if it received specially crafted input. oval:org.secpod.oval:def:75989 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-raspi: Linux kernel for Raspberry Pi syst ... oval:org.secpod.oval:def:75992 linux: Linux kernel - linux-bluefield: Linux kernel for NVIDIA BlueField platforms - linux-kvm: Linux kernel for cloud environments - linux-gcp-5.4: Linux kernel for Google Cloud Platform systems - linux-hwe-5.4: Linux hardware enablement kernel Several security issues were fixed in the Linux kern ... oval:org.secpod.oval:def:75991 linux-oem-5.10: Linux kernel for OEM systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:75993 linux-oem-5.13: Linux kernel for OEM systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:75944 linux-azure-5.8: Linux kernel for Microsoft Azure cloud systems - linux-oem-5.10: Linux kernel for OEM systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:75943 linux-raspi: Linux kernel for Raspberry Pi systems - linux-raspi-5.4: Linux kernel for Raspberry Pi systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:75941 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Goo ... oval:org.secpod.oval:def:75940 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud sys ... oval:org.secpod.oval:def:75958 linux-oem-5.13: Linux kernel for OEM systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:73443 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud sys ... oval:org.secpod.oval:def:73441 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Goo ... oval:org.secpod.oval:def:78172 linux-oem-5.10: Linux kernel for OEM systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:78173 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud sys ... oval:org.secpod.oval:def:75925 linux-aws-5.8: Linux kernel for Amazon Web Services systems - linux-azure-5.8: Linux kernel for Microsoft Azure cloud systems - linux-gcp-5.8: Linux kernel for Google Cloud Platform systems - linux-oracle-5.8: Linux kernel for Oracle Cloud systems Several security issues were fixed in the Linux ke ... oval:org.secpod.oval:def:72089 linux-oem-5.6: Linux kernel for OEM systems - linux-gke-5.3: Linux kernel for Google Container Engine systems - linux-hwe: Linux hardware enablement kernel - linux-raspi2-5.3: Linux kernel for Raspberry Pi systems - linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - ... oval:org.secpod.oval:def:70342 linux: Linux kernel - linux-hwe-5.8: Linux hardware enablement kernel - linux-hwe-5.4: Linux hardware enablement kernel - linux-hwe: Linux hardware enablement kernel - linux-lts-xenial: Linux hardware enablement kernel from Xenial for Trusty The system could allow unintended access to data in som ... oval:org.secpod.oval:def:70361 linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud systems - linux-raspi: Linux kernel for Raspberry Pi systems - linux-gcp: Linux kerne ... oval:org.secpod.oval:def:70398 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gkeop: Linux kernel for Google Container Engine systems - linux-kvm: Linux kernel for clo ... oval:org.secpod.oval:def:70399 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud sys ... oval:org.secpod.oval:def:71242 linux-oem-5.10: Linux kernel for OEM systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:93897 modsecurity-apache: Tighten web applications security for Apache Several security issues were fixed in ModSecurity. oval:org.secpod.oval:def:70293 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud sys ... oval:org.secpod.oval:def:70221 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud sys ... oval:org.secpod.oval:def:70401 linux-oem-5.6: Linux kernel for OEM systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:70199 linux: Linux kernel Systems running on s390x architecture could be made to crash or run programs as an administrator under certain conditions. oval:org.secpod.oval:def:70259 linux: Linux kernel - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-oracle: Linux kernel for Oracle Cloud systems - linux-gcp-4.15: Linux kernel for Google Cloud Platform systems - linux-gcp-5.4: Linux kernel for Google Cloud Platform systems - linux-gke-4.15: Linux kernel for ... oval:org.secpod.oval:def:70330 linux-oem-5.6: Linux kernel for OEM systems The system could be made to crash or expose sensitive information under certain conditions. oval:org.secpod.oval:def:70328 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud sys ... oval:org.secpod.oval:def:70235 linux: Linux kernel - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-oracle: Linux kernel for Oracle Cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:75999 php8.0: HTML-embedded scripting language interpreter - php7.4: HTML-embedded scripting language interpreter - php7.2: HTML-embedded scripting language interpreter - php7.0: HTML-embedded scripting language interpreter - php5: HTML-embedded scripting language interpreter PHP-PFM in PHP could be made ... oval:org.secpod.oval:def:88543 php8.1: HTML-embedded scripting language interpreter - php8.0: HTML-embedded scripting language interpreter - php7.4: HTML-embedded scripting language interpreter - php7.2: HTML-embedded scripting language interpreter Several security issues were fixed in PHP. oval:org.secpod.oval:def:73692 php7.4: HTML-embedded scripting language interpreter - php7.2: HTML-embedded scripting language interpreter Several security issues were fixed in PHP. oval:org.secpod.oval:def:70206 php7.4: server-side, HTML-embedded scripting language Details: USN-4330-1 fixed vulnerabilities in PHP. This update provides the corresponding update for Linux Mint 20.x LTS. Original advisory Several security issues were fixed in PHP. oval:org.secpod.oval:def:89478 php8.1: HTML-embedded scripting language interpreter - php7.4: HTML-embedded scripting language interpreter - php7.2: HTML-embedded scripting language interpreter Several security issues were fixed in PHP. oval:org.secpod.oval:def:73444 intel-microcode: Processor microcode for Intel CPUs Several security issues were fixed in Intel Microcode. oval:org.secpod.oval:def:72086 openvpn: virtual private network software everal security issues were fixed in OpenVPN. oval:org.secpod.oval:def:88488 libxslt: XSLT processing library Several security issues were fixed in Libxslt. oval:org.secpod.oval:def:96462 apache2: Apache HTTP server Several security issues were fixed in Apache HTTP Server. oval:org.secpod.oval:def:73428 squid: Web proxy cache server - squid3: Web proxy cache server Several security issues were fixed in Squid. oval:org.secpod.oval:def:95023 bind9: Internet Domain Name Server Bind could be made to crash if it received specially crafted network traffic. oval:org.secpod.oval:def:94983 linux-xilinx-zynqmp: Linux kernel for Xilinx ZynqMP processors Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:94978 linux-bluefield: Linux kernel for NVIDIA BlueField platforms Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:96309 linux-oem-5.17: Linux kernel for OEM systems - linux-oem-5.14: Linux kernel for OEM systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:89485 linux-oem-5.17: Linux kernel for OEM systems - linux-oem-5.14: Linux kernel for OEM systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:98098 linux-raspi: Linux kernel for Raspberry Pi systems - linux-oracle-5.4: Linux kernel for Oracle Cloud systems - linux-raspi-5.4: Linux kernel for Raspberry Pi systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:98107 linux-iot: Linux kernel for IoT platforms Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:98103 linux-oracle: Linux kernel for Oracle Cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:98106 linux-gkeop: Linux kernel for Google Container Engine systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:98100 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-bluefield: Linux kernel for NVIDIA BlueField platforms - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-ibm: Linux kernel for IBM c ... oval:org.secpod.oval:def:94987 linux-gke: Linux kernel for Google Container Engine systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:94991 linux-xilinx-zynqmp: Linux kernel for Xilinx ZynqMP processors Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:96357 linux-intel-iotg: Linux kernel for Intel IoT platforms - linux-intel-iotg-5.15: Linux kernel for Intel IoT platforms Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:96354 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-kvm: Linux kernel for cloud environments - linux-lowlatency: Linux low latency kernel - linux-raspi: Linux kernel for Raspberry Pi systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: ... oval:org.secpod.oval:def:91473 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Google Container Engine systems - linux-ibm: Linux kernel for I ... oval:org.secpod.oval:def:91475 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Goo ... oval:org.secpod.oval:def:96366 amd64-microcode: Processor microcode firmware for AMD CPUs AMD processors may allow an attacker to expose sensitive information due to a speculative execution vulnerability. oval:org.secpod.oval:def:96324 linux-azure-fde: Linux kernel for Microsoft Azure CVM cloud systems - linux-kvm: Linux kernel for cloud environments - linux-azure-5.15: Linux kernel for Microsoft Azure cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:96331 linux-raspi: Linux kernel for Raspberry Pi systems - linux-raspi-5.4: Linux kernel for Raspberry Pi systems - linux-raspi2: Linux kernel for Raspberry Pi systems The system could be made to run programs as an administrator. oval:org.secpod.oval:def:96332 linux-raspi: Linux kernel for Raspberry Pi systems - linux-azure-fde-5.15: Linux kernel for Microsoft Azure CVM cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:94996 linux-iot: Linux kernel for IoT platforms Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:94994 linux-intel-iotg-5.15: Linux kernel for Intel IoT platforms Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:94995 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Goo ... oval:org.secpod.oval:def:96359 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-fde: Linux kernel for Microsoft Azure CVM cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel fo ... oval:org.secpod.oval:def:96461 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-bluefield: Linux kernel for NVIDIA BlueField platforms - linux-ibm: Linux kernel for IBM cloud systems - linux-iot: Linux kernel for IoT platforms - linux-kvm: Linux kernel for cloud environments - linux-oracle: L ... oval:org.secpod.oval:def:98094 linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gkeop: Linux kernel for Google Container Engine systems - linux-azure-5.4: Linux kernel for Microsoft Azure cloud systems - linux-gcp-5.4: Linux kernel for Google Cloud P ... oval:org.secpod.oval:def:96484 minidlna: lightweight DLNA/UPnP-AV server targeted at embedded systems Several security issues were fixed in ReadyMedia. oval:org.secpod.oval:def:98686 linux-kvm: Linux kernel for cloud environments Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:98677 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-bluefield: Linux kernel for NVIDIA BlueField platforms - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gkeop: Linux kernel for Goo ... oval:org.secpod.oval:def:98099 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-fde: Linux kernel for Microsoft Azure CVM cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel fo ... oval:org.secpod.oval:def:98109 linux-gcp-5.15: Linux kernel for Google Cloud Platform systems - linux-intel-iotg-5.15: Linux kernel for Intel IoT platforms Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:98104 linux-lowlatency: Linux low latency kernel - linux-lowlatency-hwe-5.15: Linux low latency kernel Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:98101 linux-gkeop: Linux kernel for Google Container Engine systems - linux-gkeop-5.15: Linux kernel for Google Container Engine systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:98738 libuv1: asynchronous event notification library libuv could be made to truncate certain hostnames. oval:org.secpod.oval:def:96473 python3.11: An interactive high-level object-oriented language - python3.10: An interactive high-level object-oriented language - python3.8: An interactive high-level object-oriented language Details: USN-6513-1 fixed vulnerabilities in Python. This update provides the corresponding updates for Linu ... oval:org.secpod.oval:def:89420 python-urllib3: HTTP library with thread-safe connection pooling urllib3 could be made to stop responding if it received specially crafted network traffic. oval:org.secpod.oval:def:98696 openssl: Secure Socket Layer cryptographic library and tools Several security issues were fixed in OpenSSL. oval:org.secpod.oval:def:98698 linux-oracle: Linux kernel for Oracle Cloud systems - linux-oracle-5.15: Linux kernel for Oracle Cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:98680 linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-fde: Linux kernel for Microsoft Azure CVM cloud systems - linux-azure-5.15: Linux kernel for Microsoft Azure cloud systems - linux-azure-fde-5.15: Linux kernel for Microsoft Azure CVM cloud systems Several security issues were ... oval:org.secpod.oval:def:98681 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Google Container Engine systems - linux-ibm: Linux kernel for IB ... oval:org.secpod.oval:def:88643 linux-oem-5.14: Linux kernel for OEM systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:88636 linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-fde: Linux kernel for Microsoft Azure CVM cloud systems - linux-azure-5.15: Linux kernel for Microsoft Azure cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:88632 linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-5.4: Linux kernel for Microsoft Azure cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:88630 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gkeop: Linux kernel for Google Container Engine systems - linux-ibm: Linux kernel for IBM cloud systems - linux-kvm: Linux kernel for cloud environment ... oval:org.secpod.oval:def:88631 linux-gke: Linux kernel for Google Container Engine systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:88629 linux-gke: Linux kernel for Google Container Engine systems - linux-gcp-5.15: Linux kernel for Google Cloud Platform systems - linux-gke-5.15: Linux kernel for Google Container Engine systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:88628 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gkeop: Linux kernel for Google Container Engine systems - linux-ibm: Linux kernel for IBM cloud systems - linux-intel-iotg: Linux kernel for Intel IoT ... oval:org.secpod.oval:def:96425 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-fde: Linux kernel for Microsoft Azure CVM cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gkeop: Linux kernel ... oval:org.secpod.oval:def:96436 linux-iot: Linux kernel for IoT platforms Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:96403 linux-intel-iotg: Linux kernel for Intel IoT platforms - linux-oracle: Linux kernel for Oracle Cloud systems - linux-intel-iotg-5.15: Linux kernel for Intel IoT platforms - linux-oracle-5.15: Linux kernel for Oracle Cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:91493 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Goo ... oval:org.secpod.oval:def:94988 linux-xilinx-zynqmp: Linux kernel for Xilinx ZynqMP processors Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:91471 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Goo ... oval:org.secpod.oval:def:94981 linux-bluefield: Linux kernel for NVIDIA BlueField platforms Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:94982 linux-intel-iotg-5.15: Linux kernel for Intel IoT platforms Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:94986 linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-bluefield: Linux kernel for NVIDIA BlueField platforms - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine sy ... oval:org.secpod.oval:def:94984 linux-intel-iotg-5.15: Linux kernel for Intel IoT platforms Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:91489 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Goo ... oval:org.secpod.oval:def:94999 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gkeop: Linux kernel for Google Container Engine systems - linux-iot: Linux kernel for IoT platforms - linux-kvm: Linux kernel for cloud environments - ... oval:org.secpod.oval:def:94993 linux-iot: Linux kernel for IoT platforms Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:91487 linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Google Container Engine systems - linux-gcp-5.15: Linux kernel for Google Cloud Platform systems - linux-gke-5.15: Linux kernel for Google Conta ... oval:org.secpod.oval:def:94979 linux-hwe-5.15: Linux hardware enablement kernel Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:94976 linux-bluefield: Linux kernel for NVIDIA BlueField platforms Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:91469 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-fde: Linux kernel for Microsoft Azure CVM cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel fo ... oval:org.secpod.oval:def:91460 linux-gke: Linux kernel for Google Container Engine systems - linux-ibm: Linux kernel for IBM cloud systems - linux-kvm: Linux kernel for cloud environments - linux-gke-5.15: Linux kernel for Google Container Engine systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:94974 linux-raspi: Linux kernel for Raspberry Pi systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:88525 linux-oem-5.14: Linux kernel for OEM systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:88560 linux-bluefield: Linux kernel for NVIDIA BlueField platforms - linux-gcp-5.4: Linux kernel for Google Cloud Platform systems - linux-gke-5.4: Linux kernel for Google Container Engine systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:96393 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-fde: Linux kernel for Microsoft Azure CVM cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel fo ... oval:org.secpod.oval:def:95072 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-bluefield: Linux kernel for NVIDIA BlueField platforms - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gkeop: Linux kernel for Goo ... oval:org.secpod.oval:def:88548 linux-hwe-5.13: Linux hardware enablement kernel The system could be made to crash under certain conditions. oval:org.secpod.oval:def:88547 linux: Linux kernel - linux-hwe: Linux hardware enablement kernel The system could be made to crash under certain conditions. oval:org.secpod.oval:def:96368 linux-intel-iotg: Linux kernel for Intel IoT platforms - linux-gkeop-5.15: Linux kernel for Google Container Engine systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:96374 linux-raspi: Linux kernel for Raspberry Pi systems - linux-intel-iotg-5.15: Linux kernel for Intel IoT platforms Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:96373 linux-aws: Linux kernel for Amazon Web Services systems - linux-oracle: Linux kernel for Oracle Cloud systems - linux-aws-5.15: Linux kernel for Amazon Web Services systems - linux-ibm-5.15: Linux kernel for IBM cloud systems - linux-oracle-5.15: Linux kernel for Oracle Cloud systems Several secur ... oval:org.secpod.oval:def:96377 linux: Linux kernel - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-ibm: Linux kernel for IBM cloud systems - linux-kvm: Linux kernel for cloud environments - linux-lowlatency: Linux low latency kernel - linux-nvidia: Linux kernel for NVIDIA systems - linux-hwe-5.15: Linux hardw ... oval:org.secpod.oval:def:96380 linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-fde: Linux kernel for Microsoft Azure CVM cloud systems - linux-raspi: Linux kernel for Raspberry Pi systems - linux-azure-5.15: Linux kernel for Microsoft Azure cloud systems - linux-azure-fde-5.15: Linux kernel for Microsoft ... oval:org.secpod.oval:def:95015 linux-gcp-5.15: Linux kernel for Google Cloud Platform systems - linux-gkeop-5.15: Linux kernel for Google Container Engine systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:96346 linux-oracle: Linux kernel for Oracle Cloud systems - linux-oracle-5.4: Linux kernel for Oracle Cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:96349 linux-azure-fde: Linux kernel for Microsoft Azure CVM cloud systems - linux-azure-fde-5.15: Linux kernel for Microsoft Azure CVM cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:96348 linux-bluefield: Linux kernel for NVIDIA BlueField platforms - linux-aws-5.4: Linux kernel for Amazon Web Services systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:95020 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gkeop: Linux kernel for Google Container Engine systems - linux-ibm: Linux kernel for IBM ... oval:org.secpod.oval:def:96351 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Goo ... oval:org.secpod.oval:def:96350 linux-intel-iotg: Linux kernel for Intel IoT platforms - linux-raspi: Linux kernel for Raspberry Pi systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:96356 linux-intel-iotg: Linux kernel for Intel IoT platforms - linux-intel-iotg-5.15: Linux kernel for Intel IoT platforms Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:95024 linux-bluefield: Linux kernel for NVIDIA BlueField platforms - linux-raspi: Linux kernel for Raspberry Pi systems - linux-raspi-5.4: Linux kernel for Raspberry Pi systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:96364 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Google Container Engine systems - linux-ibm: Linux kernel for IB ... oval:org.secpod.oval:def:95009 linux-azure: Linux kernel for Microsoft Azure Cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:95004 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud systems - linux-xilinx-zynqmp: Linux kernel for Xilinx ZynqMP pro ... oval:org.secpod.oval:def:95003 linux-gke: Linux kernel for Google Container Engine systems - linux-ibm-5.4: Linux kernel for IBM cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:95002 linux-xilinx-zynqmp: Linux kernel for Xilinx ZynqMP processors - linux-hwe-5.4: Linux hardware enablement kernel Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:95008 linux-gcp-5.15: Linux kernel for Google Cloud Platform systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:95007 linux-gkeop: Linux kernel for Google Container Engine systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:95005 linux-bluefield: Linux kernel for NVIDIA BlueField platforms - linux-ibm: Linux kernel for IBM cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:95011 linux-raspi: Linux kernel for Raspberry Pi systems - linux-raspi-5.4: Linux kernel for Raspberry Pi systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:96342 linux-raspi: Linux kernel for Raspberry Pi systems - linux-raspi-5.4: Linux kernel for Raspberry Pi systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:96307 linux-ibm: Linux kernel for IBM cloud systems - linux-ibm-5.4: Linux kernel for IBM cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:89463 linux-aws: Linux kernel for Amazon Web Services systems - linux-azure-fde: Linux kernel for Microsoft Azure CVM cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-intel-iotg: Linux kernel for Intel IoT platforms - linux-aws-5.15: Linux kernel for Amazon Web Services ... oval:org.secpod.oval:def:89486 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Goo ... oval:org.secpod.oval:def:89484 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-fde: Linux kernel for Microsoft Azure CVM cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel fo ... oval:org.secpod.oval:def:79870 linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-fde: Linux kernel for Microsoft Azure cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gkeop: Linux kernel for Google Container Engin ... oval:org.secpod.oval:def:79872 linux-gke: Linux kernel for Google Container Engine systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:79869 linux: Linux kernel Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:89451 linux-oem-5.14: Linux kernel for OEM systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:79887 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-raspi: Linux kernel for Raspberry Pi systems - linux-aws-5.13: Linux kernel for Amazon Web Services sy ... oval:org.secpod.oval:def:89448 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gkeop: Linux kernel for Google Container Engine systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud ... oval:org.secpod.oval:def:89447 linux: Linux kernel - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gkeop: Linux kernel for Google Container Engine systems - linux-ibm: Linux kernel for IBM cloud systems - linux-kvm: Linux kernel for cloud environments - linux-lowlatency: Linux low latency kernel - linux-ora ... oval:org.secpod.oval:def:91746 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-fde: Linux kernel for Microsoft Azure CVM cloud systems - linux-ibm: Linux kernel for IBM cloud systems - linux-kvm: Linux kernel for cloud envir ... oval:org.secpod.oval:def:91749 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-ibm: Linux kernel for IBM cloud systems - linux-kvm: Linux kernel for cloud environments - ... oval:org.secpod.oval:def:91741 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-fde: Linux kernel for Microsoft Azure CVM cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gkeop: Linux kernel ... oval:org.secpod.oval:def:91496 perl: Practical Extraction and Report Language Details: USN-6112-1 fixed vulnerabilities in Perl. This update provides the corresponding updates for Linux Mint 20.x LTS, Linux Mint 21.x LTS, Ubuntu 22.10, and Ubuntu 23.04. Original advisory Perl could be made to install modules from untrusted source ... oval:org.secpod.oval:def:99530 linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-5.4: Linux kernel for Microsoft Azure cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:98723 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-bluefield: Linux kernel for NVIDIA BlueField platforms - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gkeop: Linux kernel for Google Container Engine systems - linux-ibm: Linux kernel for IB ... oval:org.secpod.oval:def:99543 vim: Vi IMproved - enhanced vi editor Vim could be made to crash if it opened a specially crafted file. oval:org.secpod.oval:def:99544 openjdk-8: Open Source Java implementation Several security issues were fixed in OpenJDK 8. oval:org.secpod.oval:def:98729 openjdk-lts: Open Source Java implementation Several security issues were fixed in OpenJDK 11. oval:org.secpod.oval:def:98734 openjdk-17: Open Source Java implementation Several security issues were fixed in OpenJDK 17. oval:org.secpod.oval:def:98732 openjdk-21: Open Source Java implementation Several security issues were fixed in OpenJDK 21. oval:org.secpod.oval:def:98705 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Google Container Engine systems - linux-ibm: Linux kernel for IB ... oval:org.secpod.oval:def:98717 linux-intel-iotg-5.15: Linux kernel for Intel IoT platforms Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:98718 linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-fde: Linux kernel for Microsoft Azure CVM cloud systems - linux-azure-5.15: Linux kernel for Microsoft Azure cloud systems - linux-azure-fde-5.15: Linux kernel for Microsoft Azure CVM cloud systems Several security issues were ... oval:org.secpod.oval:def:99558 crmsh: CRM shell for the pacemaker cluster manager CRM shell could be made to execute arbitrary code if it received a specially crafted input. oval:org.secpod.oval:def:99559 debian-goodies: Small toolbox-style utilities for Debian systems debmany in Debian Goodies could be made to execute arbitrary shell commands if it received a specially crafted deb file. oval:org.secpod.oval:def:99561 libnet-cidr-lite-perl: module for merging IPv4 or IPv6 CIDR address ranges Net::CIDR::Lite could allow unintended access to network services. oval:org.secpod.oval:def:99527 linux: Linux kernel - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-fde: Linux kernel for Microsoft Azure CVM cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gkeop: Linux kernel for Google Container Engine systems - linux-ibm: Linux ker ... oval:org.secpod.oval:def:99531 linux-aws: Linux kernel for Amazon Web Services systems - linux-aws-5.15: Linux kernel for Amazon Web Services systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:88520 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud sys ... oval:org.secpod.oval:def:79874 linux-oem-5.14: Linux kernel for OEM systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:98684 firefox: Mozilla Open Source web browser Several security issues were fixed in Firefox. oval:org.secpod.oval:def:98721 linux-raspi: Linux kernel for Raspberry Pi systems - linux-raspi-5.4: Linux kernel for Raspberry Pi systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:98701 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-bluefield: Linux kernel for NVIDIA BlueField platforms - linux-gkeop: Linux kernel for Google Container Engine systems - linux-ibm: Linux kernel for I ... oval:org.secpod.oval:def:98702 linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gcp-5.4: Linux kernel for Google Cloud Platform systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:99568 unixodbc: Basic ODBC tools unixODBC could be made to crash or execute arbitrary code. oval:org.secpod.oval:def:99556 linux: Linux kernel - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-fde: Linux kernel for Microsoft Azure CVM cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux ker ... oval:org.secpod.oval:def:99562 linux-oracle: Linux kernel for Oracle Cloud systems - linux-oracle-5.15: Linux kernel for Oracle Cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:99570 linux-intel-iotg: Linux kernel for Intel IoT platforms - linux-intel-iotg-5.15: Linux kernel for Intel IoT platforms Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:99549 linux: Linux kernel - linux-bluefield: Linux kernel for NVIDIA BlueField platforms - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gkeop: Linux kernel for Google Container Engine systems - linux-ibm: Linux kernel for IBM cloud systems - linux-iot: Linux kernel for IoT platforms ... oval:org.secpod.oval:def:99550 linux-aws: Linux kernel for Amazon Web Services systems - linux-raspi: Linux kernel for Raspberry Pi systems - linux-xilinx-zynqmp: Linux kernel for Xilinx ZynqMP processors - linux-aws-5.4: Linux kernel for Amazon Web Services systems - linux-gcp-5.4: Linux kernel for Google Cloud Platform syste ... oval:org.secpod.oval:def:99572 firefox: Mozilla Open Source web browser Details: USN-6710-1 fixed vulnerabilities in Firefox. The update introduced several minor regressions. This update fixes the problem. Original advisory USN-6710-1 caused some minor regressions in Firefox. oval:org.secpod.oval:def:99575 xorg-server: X.Org X11 server - xwayland: X server for running X clients under Wayland Details: USN-6721-1 fixed vulnerabilities in X.Org X Server. That fix was incomplete resulting in a regression. This update fixes the problem. We apologize for the inconvenience. Original advisory A regression was ... oval:org.secpod.oval:def:99567 util-linux: miscellaneous system utilities util-linux could be made to expose sensitive information. oval:org.secpod.oval:def:99577 util-linux: miscellaneous system utilities Details: USN-6719-1 fixed a vulnerability in util-linux. Unfortunately, it was discovered that the fix did not fully address the issue. This update removes the setgid permission bit from the wall and write utilities. Original advisory util-linux could be ma ... oval:org.secpod.oval:def:99580 squid: Web proxy cache server Details: USN-6728-1 fixed vulnerabilities in Squid. The fix for CVE-2023-5824 caused Squid to crash in certain environments on Linux Mint 20.x LTS. The problematic fix has been reverted pending further investigation. We apologize for the inconvenience. Original advisory ... oval:org.secpod.oval:def:99581 nss: Network Security Service library Details: USN-6727-1 fixed vulnerabilities in NSS. The update introduced a regression when trying to load security modules on Linux Mint 20.x LTS and Linux Mint 21.x LTS. This update fixes the problem. We apologize for the inconvenience. Original advisory USN-672 ... oval:org.secpod.oval:def:99582 - maven-shared-utils: A collection of Maven utility classes. maven-shared-utils could be made to run programs if it received specially crafted input. oval:org.secpod.oval:def:99586 yard: Ruby documentation tool Several security issues were fixed in yard. oval:org.secpod.oval:def:99587 nss: Network Security Service library Several security issues were fixed in NSS. oval:org.secpod.oval:def:96798 firefox: Mozilla Open Source web browser Several security issues were fixed in Firefox. oval:org.secpod.oval:def:99588 squid: Web proxy cache server Several security issues were fixed in Squid. oval:org.secpod.oval:def:98673 squid: Web proxy cache server Several security issues were fixed in Squid. oval:org.secpod.oval:def:98697 python-django: High-level Python web development framework Django could be made to denial of service if received a specially crafted input. oval:org.secpod.oval:def:96407 python-django: High-level Python web development framework Django could be made to consume resources or crash if it received specially crafted network traffic. oval:org.secpod.oval:def:96385 python-django: High-level Python web development framework Django could be made to crash or consume resources if it received specially crafted network traffic. oval:org.secpod.oval:def:98741 python-django: High-level Python web development framework Django could be made to consume resources or crash if it received specially crafted network traffic. oval:org.secpod.oval:def:98747 c-ares: library for asynchronous name resolution c-ares could be made to crash if it received specially crafted input. oval:org.secpod.oval:def:96444 quagga: BGP/OSPF/RIP routing daemon Quagga could be made to crash if it received specially crafted network traffic. oval:org.secpod.oval:def:95052 samba: SMB/CIFS file, print, and login server for Unix Several security issues were fixed in Samba. oval:org.secpod.oval:def:96409 grub2-signed: GRand Unified Bootloader - grub2-unsigned: GRand Unified Bootloader Several security issues were fixed in GRUB2. oval:org.secpod.oval:def:96465 nghttp2: HTTP/2 C Library and tools nghttp2 could be made to consume resources if it received specially crafted network traffic. oval:org.secpod.oval:def:89390 apache2: Apache HTTP server Several security issues were fixed in Apache HTTP Server. oval:org.secpod.oval:def:91507 glib2.0: GLib library of C routines Several security issues were fixed in GLib. oval:org.secpod.oval:def:88653 heimdal: Heimdal Kerberos Network Authentication Protocol Several security issues were fixed in Heimdal. oval:org.secpod.oval:def:89394 samba: SMB/CIFS file, print, and login server for Unix Several security issues were fixed in Samba. oval:org.secpod.oval:def:89492 samba: SMB/CIFS file, print, and login server for Unix Several security issues were fixed in Samba. oval:org.secpod.oval:def:98668 filezilla: Full-featured graphical FTP/FTPS/SFTP client FileZilla could be made to expose sensitive information over the network. oval:org.secpod.oval:def:98679 paramiko: Python SSH2 library A protocol flaw was fixed in Paramiko. oval:org.secpod.oval:def:91497 libssh: A tiny C SSH library Several security issues were fixed in libssh. oval:org.secpod.oval:def:96797 libssh: A tiny C SSH library A security issue was fixed in libssh. oval:org.secpod.oval:def:98733 less: pager program similar to more less could be made to crash or run arbitrary commands if it receive a crafted input. oval:org.secpod.oval:def:98694 runc: Open Container Project runC could be made to expose sensitive information or allow to escape contianers. oval:org.secpod.oval:def:80405 openssl: Secure Socket Layer cryptographic library and tools - openssl1.0: Secure Socket Layer cryptographic library and tools Several security issues were fixed in OpenSSL. oval:org.secpod.oval:def:91512 openssl: Secure Socket Layer cryptographic library and tools - openssl1.0: Secure Socket Layer cryptographic library and tools Several security issues were fixed in OpenSSL. oval:org.secpod.oval:def:91510 openssl: Secure Socket Layer cryptographic library and tools - openssl1.0: Secure Socket Layer cryptographic library and tools Several security issues were fixed in OpenSSL. oval:org.secpod.oval:def:91745 sqlparse: documentation for non-validating SQL parser in Python SQL parse could be made to denial of service if it received a specially crafted regular expression. oval:org.secpod.oval:def:88558 mysql-8.0: MySQL database - mysql-5.7: MySQL database Several security issues were fixed in MySQL. oval:org.secpod.oval:def:98655 golang-1.20: Go programming language compiler - golang-1.21: Go programming language compiler Several security issues were fixed in Go. oval:org.secpod.oval:def:91459 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Goo ... oval:org.secpod.oval:def:96378 grub2-signed: GRand Unified Bootloader - grub2-unsigned: GRand Unified Bootloader - shim: boot loader to chain-load signed boot loaders under Secure Boot - shim-signed: Secure Boot chain-loading bootloader Several security issues were fixed in GRUB2. oval:org.secpod.oval:def:96470 linux-intel-iotg: Linux kernel for Intel IoT platforms - linux-intel-iotg-5.15: Linux kernel for Intel IoT platforms Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:96458 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-ibm: Linux kernel for IBM cloud systems - linux-kvm: Linux kernel for cloud environments - linux-lowlatency: Linux low latency kernel - linux-nvidia: Linux kernel for NVIDIA systems - linux-oracle: Linux kernel fo ... oval:org.secpod.oval:def:96418 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-fde: Linux kernel for Microsoft Azure CVM cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel fo ... oval:org.secpod.oval:def:98092 linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-fde: Linux kernel for Microsoft Azure CVM cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Google Contain ... oval:org.secpod.oval:def:88537 linux-oem-5.14: Linux kernel for OEM systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:95062 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gkeop: Linux kernel for Google Container Engine systems - linux-ibm: Linux kernel for IBM ... oval:org.secpod.oval:def:95061 linux-bluefield: Linux kernel for NVIDIA BlueField platforms Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:95066 linux-gcp-5.15: Linux kernel for Google Cloud Platform systems - linux-gkeop-5.15: Linux kernel for Google Container Engine systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:95069 linux-iot: Linux kernel for IoT platforms - linux-raspi: Linux kernel for Raspberry Pi systems - linux-raspi-5.4: Linux kernel for Raspberry Pi systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:95068 linux-oracle-5.15: Linux kernel for Oracle Cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:96370 linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-fde: Linux kernel for Microsoft Azure CVM cloud systems - linux-azure-5.15: Linux kernel for Microsoft Azure cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:95013 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-ibm: Linux kernel for IBM cloud systems - linux-iot: Linux kernel for IoT platforms - linux-kvm: Linux kernel for cloud environments - linux-oracle: Lin ... oval:org.secpod.oval:def:95012 linux-azure-fde-5.15: Linux kernel for Microsoft Azure CVM cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:95017 linux-ibm: Linux kernel for IBM cloud systems - linux-ibm-5.4: Linux kernel for IBM cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:95016 linux-gkeop: Linux kernel for Google Container Engine systems - linux-raspi: Linux kernel for Raspberry Pi systems - linux-xilinx-zynqmp: Linux kernel for Xilinx ZynqMP processors - linux-azure-5.4: Linux kernel for Microsoft Azure cloud systems - linux-gcp-5.4: Linux kernel for Google Cloud Platfo ... oval:org.secpod.oval:def:95025 linux-bluefield: Linux kernel for NVIDIA BlueField platforms Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:96360 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-ibm: Linux kernel for IBM cloud systems - linux-intel-iotg: Linux kernel for Intel IoT platforms - linux-kvm: Linux kernel for cloud environments - linu ... oval:org.secpod.oval:def:96363 linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Google Container Engine systems - linux-gcp-5.15: Linux kernel for Google Cloud Platform systems - linux-gke-5.15: Linux kernel for Google Container Engine systems - linux-gkeop-5.15: Linux kernel for Goo ... oval:org.secpod.oval:def:95010 linux-azure: Linux kernel for Microsoft Azure Cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:98663 xorg-server: X.Org X11 server - xwayland: X server for running X clients under Wayland Several security issues were fixed in X.Org X Server. oval:org.secpod.oval:def:96422 xorg-server: X.Org X11 server - xwayland: X server for running X clients under Wayland Several security issues were fixed in X.Org X Server, xwayland. oval:org.secpod.oval:def:96792 xorg-server: X.Org X11 server - xwayland: X server for running X clients under Wayland Several security issues were fixed in X.Org X Server. oval:org.secpod.oval:def:99584 gnutls28: GNU TLS library Several security issues were fixed in GnuTLS. oval:org.secpod.oval:def:98724 libxml2: GNOME XML library libxml2 could be made to crash or run programs if it opened a specially crafted file. oval:org.secpod.oval:def:99565 thunderbird: Mozilla Open Source mail and newsgroup client Several security issues were fixed in Thunderbird. oval:org.secpod.oval:def:96807 openssh: secure shell for secure access to remote machines Several security issues were fixed in OpenSSH. oval:org.secpod.oval:def:98766 pillow: Python Imaging Library Several security issues were fixed in Pillow. oval:org.secpod.oval:def:96487 squid: Web proxy cache server Several security issues were fixed in Squid. oval:org.secpod.oval:def:99571 xorg-server: X.Org X11 server - xwayland: X server for running X clients under Wayland Several security issues were fixed in X.Org X Server, xwayland. oval:org.secpod.oval:def:99585 libvirt: Libvirt virtualization toolkit Several security issues were fixed in libvirt. oval:org.secpod.oval:def:99579 apache2: Apache HTTP server Several security issues were fixed in Apache HTTP Server. oval:org.secpod.oval:def:98727 dnsmasq: Small caching DNS proxy and DHCP/TFTP server Several security issues were fixed in Dnsmasq. oval:org.secpod.oval:def:98736 unbound: validating, recursive, caching DNS resolver Several security issues were fixed in Unbound. oval:org.secpod.oval:def:98719 bind9: Internet Domain Name Server Several security issues were fixed in Bind. oval:org.secpod.oval:def:96781 curl: HTTP, HTTPS, and FTP client and client libraries Several security issues were fixed in curl. oval:org.secpod.oval:def:99560 firefox: Mozilla Open Source web browser Several security issues were fixed in Firefox. oval:org.secpod.oval:def:99555 linux-aws: Linux kernel for Amazon Web Services systems - linux-aws-5.15: Linux kernel for Amazon Web Services systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:99564 linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-5.4: Linux kernel for Microsoft Azure cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:99566 linux-intel-iotg: Linux kernel for Intel IoT platforms - linux-intel-iotg-5.15: Linux kernel for Intel IoT platforms Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:99574 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-bluefield: Linux kernel for NVIDIA BlueField platforms - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gkeop: Linux kernel for Goo ... oval:org.secpod.oval:def:99576 linux: Linux kernel - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-fde: Linux kernel for Microsoft Azure CVM cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux ker ... oval:org.secpod.oval:def:99537 linux: Linux kernel - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-fde: Linux kernel for Microsoft Azure CVM cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux ker ... oval:org.secpod.oval:def:99536 linux: Linux kernel - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gkeop: Linux kernel for Google Container Engine systems - linux-iot: Linux kernel for IoT platforms - linux-kvm: Linux kernel for cloud environments - linux-raspi: Linux kernel for Raspberry Pi systems - linux- ... oval:org.secpod.oval:def:99541 linux-ibm: Linux kernel for IBM cloud systems - linux-oracle: Linux kernel for Oracle Cloud systems - linux-ibm-5.4: Linux kernel for IBM cloud systems - linux-oracle-5.4: Linux kernel for Oracle Cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:99540 linux-bluefield: Linux kernel for NVIDIA BlueField platforms - linux-xilinx-zynqmp: Linux kernel for Xilinx ZynqMP processors - linux-raspi-5.4: Linux kernel for Raspberry Pi systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:99547 linux-aws: Linux kernel for Amazon Web Services systems - linux-aws-5.4: Linux kernel for Amazon Web Services systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:99546 linux-oracle: Linux kernel for Oracle Cloud systems - linux-oracle-5.15: Linux kernel for Oracle Cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:96793 libreoffice: Office productivity suite Details: USN-6546-1 fixed vulnerabilities in LibreOffice. This update provides the corresponding updates for Linux Mint 20.x LTS and Linux Mint 21.x LTS. Original advisory Several security issues were fixed in LibreOffice. oval:org.secpod.oval:def:91488 ruby2.7: Object-oriented scripting language - ruby2.5: Object-oriented scripting language - ruby2.3: Object-oriented scripting language Several security issues were fixed in Ruby. oval:org.secpod.oval:def:99552 firefox: Mozilla Open Source web browser Several security issues were fixed in Firefox. oval:org.secpod.oval:def:96800 sqlite3: C library that implements an SQL database engine Several security issues were fixed in SQLite. oval:org.secpod.oval:def:96429 axis: SOAP implementation in Java Axis could be made to crash or execute arbitrary code if it received specially crafted input. oval:org.secpod.oval:def:91472 libxml2: GNOME XML library Several security issues were fixed in libxml2. oval:org.secpod.oval:def:98758 qemu: Machine emulator and virtualizer Several security issues were fixed in QEMU. oval:org.secpod.oval:def:96410 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-fde: Linux kernel for Microsoft Azure CVM cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel fo ... oval:org.secpod.oval:def:95064 linux-intel-iotg-5.15: Linux kernel for Intel IoT platforms Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:95049 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-bluefield: Linux kernel for NVIDIA BlueField platforms - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gkeop: Linux kernel for Goo ... oval:org.secpod.oval:def:95051 linux-hwe-5.15: Linux hardware enablement kernel - linux-oracle-5.15: Linux kernel for Oracle Cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:95044 scipy: scientific library for Python - documentation Several security issues were fixed in SciPy. oval:org.secpod.oval:def:96326 libzen: ZenLib C++ utility library -- development files ZenLib could be made to crash if it received specially crafted input. oval:org.secpod.oval:def:88661 linux-bluefield: Linux kernel for NVIDIA BlueField platforms Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:88649 linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-azure-fde: Linux kernel for Microsoft Azure CVM cloud systems - linux-aws-5.15: Linux kernel for Amazon Web Services systems - linux-azure-5.15: Linux kernel for Microsoft ... oval:org.secpod.oval:def:88647 linux-azure-fde: Linux kernel for Microsoft Azure CVM cloud systems - linux-azure-5.4: Linux kernel for Microsoft Azure cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:88648 linux: Linux kernel - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Google Container Engine systems - linux-ibm: Linux kernel for IBM cloud systems - linux-kvm: Linux kernel for cloud environ ... oval:org.secpod.oval:def:88645 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Google Container Engine systems - linux-ibm: Linux kernel for IB ... oval:org.secpod.oval:def:88646 linux-azure: Linux kernel for Microsoft Azure Cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:89464 linux-gke-5.15: Linux kernel for Google Container Engine systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:89462 linux-gke: Linux kernel for Google Container Engine systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:89461 linux-gcp: Linux kernel for Google Cloud Platform systems - linux-ibm: Linux kernel for IBM cloud systems - linux-aws-5.4: Linux kernel for Amazon Web Services systems - linux-gcp-5.4: Linux kernel for Google Cloud Platform systems - linux-hwe-5.4: Linux hardware enablement kernel - linux-ibm-5. ... oval:org.secpod.oval:def:89487 linux-bluefield: Linux kernel for NVIDIA BlueField platforms Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:89483 linux-azure-fde: Linux kernel for Microsoft Azure CVM cloud systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:95040 python3.9: An interactive high-level object-oriented language Several security issues were fixed in Python. oval:org.secpod.oval:def:75916 libgd2: GD Graphics Library Several security issues were fixed in GD library. oval:org.secpod.oval:def:89471 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK. oval:org.secpod.oval:def:80435 sqlite3: C library that implements an SQL database engine SQLite could be made to crash or run programs if it processed a specially crafted query. oval:org.secpod.oval:def:91511 ncurses: shared libraries for terminal handling Several security issues were fixed in ncurses. oval:org.secpod.oval:def:89455 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK. oval:org.secpod.oval:def:75984 linux-oem-5.10: Linux kernel for OEM systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:75974 linux-oem-5.13: Linux kernel for OEM systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:75969 linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-signed-azure: Signed kernel image azure - linux-azure-5.11: Linux kernel for Microsoft Azure cloud systems - linux-hwe-5.11: Linux hardware enablement kernel - linux-oracle-5.11: Linux kernel for Oracle Cloud systems Several securi ... oval:org.secpod.oval:def:75968 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud systems - linux-raspi: Linux kernel for Raspberry Pi systems - li ... oval:org.secpod.oval:def:75966 linux-raspi: Linux kernel for Raspberry Pi systems - linux-raspi-5.4: Linux kernel for Raspberry Pi systems Several security issues were fixed in the Linux kernel. oval:org.secpod.oval:def:75965 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-azure: Linux kernel for Microsoft Azure Cloud systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-gke: Linux kernel for Google Container Engine systems - linux-gkeop: Linux kernel for Goo ... oval:org.secpod.oval:def:72095 unbound: validating, recursive, caching DNS resolver Several security issues were fixed in Unbound. oval:org.secpod.oval:def:72096 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK. oval:org.secpod.oval:def:71246 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK. oval:org.secpod.oval:def:70396 linux-oem-5.10: Linux kernel for OEM systems The system could allow unintended access to data in some environments. oval:org.secpod.oval:def:70230 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud systems - linux-riscv: Linux kernel for RISC-V systems Several se ... oval:org.secpod.oval:def:70211 linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services systems - linux-gcp: Linux kernel for Google Cloud Platform systems - linux-kvm: Linux kernel for cloud environments - linux-oracle: Linux kernel for Oracle Cloud systems - linux-riscv: Linux kernel for RISC-V systems Several se ... |
