Security

rsync Aug 2, 2022, 04:51 AMAug 2, 2022, 04:51 AM
Version: 3.2.5-alt0.1
Summary: A program for synchronizing files over a network
Changelog:
- v3.1.3 -> v3.2.5pre1 (fixes: CVE-2022-29154).
- Removed --noatime option added in 3.1.3-alt1
  in favour of --open-noatime option added in rsync 3.2.0.
nginx Jul 12, 2022, 10:15 AMJul 12, 2022, 10:15 AM
Version: 1.22.0-alt1
Summary: Fast HTTP server
Changelog:
- 1.22.0 (Fixes: CVE-2021-3618)
vim Jun 28, 2022, 02:23 PMJun 28, 2022, 02:23 PM
Version: 8.2.5172-alt1
Summary: VIsual editor iMproved
Changelog:
- Updated to 8.2.5172 (fixes CVE-2022-2129, CVE-2022-2126, CVE-2022-2125,
  CVE-2022-2124).
gmp Jun 21, 2022, 05:26 PMJun 21, 2022, 05:26 PM
Version: 6.1.2-alt3.c9f2.1
Summary: GNU MP arbitrary precision arithmetic library
Changelog:
- Fixes: CVE-2021-43618.
apache2 Jun 19, 2022, 03:48 PMJun 19, 2022, 03:48 PM
Version: 2.4.54-alt1
Summary: The most widely used Web server on the Internet
Changelog:
- 2.4.54 (Fixes: CVE-2022-31813, CVE-2022-30556, CVE-2022-30522, CVE-2022-29404, 
	  CVE-2022-28615, CVE-2022-28614, CVE-2022-28330, CVE-2022-26377)
php7 Jun 17, 2022, 11:01 AMJun 17, 2022, 11:01 AM
Version: 7.4.30-alt1
Summary: The PHP7 scripting language
Changelog:
- 7.4.28 -> 7.4.30 (Fixes: CVE-2022-31626, CVE-2022-31625)
php8.1 Jun 16, 2022, 02:07 PMJun 16, 2022, 02:07 PM
Version: 8.1.7-alt1
Summary: The PHP scripting language
Changelog:
- 8.1.6 -> 8.1.7 (Fixes: CVE-2022-31626, CVE-2022-31625)
feh Jun 9, 2022, 08:34 AMJun 9, 2022, 08:34 AM
Version: 2.16-alt1.c9f2.1
Summary: Image viewer using Imlib 2
Changelog:
- Fixes: CVE-2017-7875.
rsyslog Jun 6, 2022, 04:31 PMJun 6, 2022, 04:31 PM
Version: 8.2204.1-alt1
Summary: Enhanced system logging and kernel message trapping daemon
Changelog:
- 8.2204.1 (Fixes: CVE-2022-24903)
ardour May 30, 2022, 05:22 PMMay 30, 2022, 05:22 PM
Version: 5.12-alt1.1.c9f2.1
Summary: Professional multi-track audio recording application
Changelog:
- Fixes: CVE-2020-22617
sogo May 25, 2022, 05:14 PMMay 25, 2022, 05:14 PM
Version: 5.0.0-alt1.c9f2.1
Summary: SOGo is a very fast and scalable modern collaboration suite (groupware)
Changelog:
- Fixes: CVE-2021-33054
graphviz May 25, 2022, 04:55 PMMay 25, 2022, 04:55 PM
Version: 2.40.1-alt7.c9f2.1
Summary: Graphs visualization tools
Changelog:
- Fixes: CVE-2022-30333
clamav May 20, 2022, 01:30 PMMay 20, 2022, 01:30 PM
Version: 0.103.6-alt1
Summary: Clam Antivirus scanner
Changelog:
- 0.103.6
  + CVE-2022-20770
  + CVE-2022-20796
  + CVE-2022-20771
  + CVE-2022-20785
  + CVE-2022-20792
openvpn May 12, 2022, 05:33 PMMay 12, 2022, 05:33 PM
Version: 2.4.9-alt1.c9f2.2
Summary: a full-featured SSL VPN solution
Changelog:
- Security (Fixes: CVE-2022-0547)
curl May 11, 2022, 11:29 AMMay 11, 2022, 11:29 AM
Version: 7.83.1-alt1
Summary: Gets a file from a FTP, GOPHER or HTTP server
Changelog:
- 7.83.1
- Fixes:
  * CVE-2022-30115: HSTS bypass via trailing dot
  * CVE-2022-27782: TLS and SSH connection too eager reuse
  * CVE-2022-27781: CERTINFO never-ending busy-loop
  * CVE-2022-27780: percent-encoded path separator in URL host
  * CVE-2022-27779: cookie for trailing dot TLD
  * CVE-2022-27778: curl removes wrong file on error
lasso May 5, 2022, 04:41 PMMay 5, 2022, 04:41 PM
Version: 2.6.0-alt2.c9f2.2
Summary: Liberty Alliance Single Sign On
Changelog:
- Security (Fixes: CVE-2021-28091).
java-1.8.0-openjdk Apr 25, 2022, 07:12 AMApr 25, 2022, 07:12 AM
Version: 1.8.0.332.b09-alt0_0.1.eajpp8
Summary: OpenJDK Runtime Environment 8
Changelog:
- New version.
- Seciruty fixes:
  + JDK-8270504, CVE-2022-21426: Better XPath expression handling
  + JDK-8275151, CVE-2022-21443: Improved Object Identification
  + JDK-8277672, CVE-2022-21434: Better invocation handler handling
  + JDK-8278008, CVE-2022-21476: Improve Santuario processing
  + JDK-8278972, CVE-2022-21496: Improve URL supports
klibc Apr 22, 2022, 04:44 PMApr 22, 2022, 04:44 PM
Version: 2.0.8-alt2.c9f2.1
Summary: A minimal libc subset for use with initramfs
Changelog:
- Security update (Fixes: CVE-2021-31873, CVE-2021-31872, CVE-2021-31871, CVE-2021-31870).
polkit Mar 28, 2022, 02:34 PMMar 28, 2022, 02:34 PM
Version: 0.116-alt2.M90P.5
Summary: PolicyKit Authorization Framework
Changelog:
- (Fixes: CVE-2021-4115)
openssh Mar 22, 2022, 07:40 PMMar 22, 2022, 07:40 PM
Version: 7.9p1-alt4.p10.1
Summary: OpenSSH free Secure Shell (SSH) implementation
Changelog:
- Backported upstream security fixes (fixes CVE-2019-6111, CVE-2019-6109).
bind Mar 17, 2022, 04:28 PMMar 17, 2022, 04:28 PM
Version: 9.11.37-alt1
Summary: ISC BIND - DNS server
Changelog:
- 9.11.36 -> 9.11.37 (fixes: CVE-2021-25220).
krb5 Mar 15, 2022, 01:39 PMMar 15, 2022, 01:39 PM
Version: 1.17.2-alt3
Summary: The Kerberos network authentication system
Changelog:
- Backport fix from 1.18.5 (Fixes: CVE-2021-37750)
tcpreplay Feb 23, 2022, 09:56 AMFeb 23, 2022, 09:56 AM
Version: 4.4.1-alt1
Summary: A tool to replay captured network traffic
Changelog:
- 4.4.1 (Fixes: CVE-2021-45387, CVE-2021-45386)
wireshark Feb 21, 2022, 11:53 AMFeb 21, 2022, 11:53 AM
Version: 3.6.2-alt1
Summary: The BugTraq Award Winning Network Traffic Analyzer
Changelog:
- 3.6.2 (Fixes: CVE-2022-0586, CVE-2022-0585, CVE-2022-0583, CVE-2022-0582, CVE-2022-0581)
mc Jan 9, 2022, 01:28 AMJan 9, 2022, 01:28 AM
Version: 4.8.27-alt1
Summary: An user-friendly file manager and visual shell
Changelog:
- 4.8.27 (CVE-2021-36370; ALT #40217)
libICE Dec 23, 2021, 09:24 AMDec 23, 2021, 09:24 AM
Version: 1.0.9-alt1.c9f2.1
Summary: X Inter Client Exchange Library
Changelog:
- Security (Fixes: CVE-2017-2626)
dbus Dec 22, 2021, 11:12 AMDec 22, 2021, 11:12 AM
Version: 1.12.16-alt2.c9f2.1
Summary: D-BUS is a simple IPC framework based on messages.
Changelog:
- Security (Fixes: CVE-2020-12049)
log4j Dec 15, 2021, 11:35 PMDec 15, 2021, 11:35 PM
Version: 2.9.1-alt2.c9.1_4jpp8
Summary: Java logging package
Changelog:
- security fix CVE-2021-44228 and CVE-2021-45046
grafana Dec 9, 2021, 11:46 PMDec 9, 2021, 11:46 PM
Version: 8.1.8-alt1
Summary: Metrics dashboard and graph editor
Changelog:
- 8.1.8 (Fixes: CVE-2021-43798, CVE-2021-39226)
ffmpeg Dec 9, 2021, 01:51 PMDec 9, 2021, 01:51 PM
Version: 4.3.3-alt1
Summary: A command line toolbox to manipulate, convert and stream multimedia content
Changelog:
- 4.3.3 (Fixes: CVE-2020-20446, CVE-2020-20450, CVE-2020-20453,
	CVE-2020-22015, CVE-2020-22019, CVE-2020-22021, CVE-2020-22037,
	CVE-2020-22042, CVE-2021-38114, CVE-2021-38171, CVE-2021-38291)
Back to Top