Summary: A high-performance email, contacts and calendar server
Changes:
- 3.2.7 (fixes: CVE-2021-32056)
Summary: PolicyKit Authorization Framework
Changes:
- (Fixes: CVE-2021-3560)
Summary: The Go Programming Language
Changes:
- New version (1.15.13).
- Fixes:
+ CVE-2021-33195
+ CVE-2021-33196
+ CVE-2021-33197
+ CVE-2021-33198
Summary: The Linux kernel (the core of the Linux operating system)
Changes:
- v5.10.42 (Fixes: CVE-2020-24586, CVE-2020-24587, CVE-2020-24588, CVE-2020-26141,
CVE-2020-26145, CVE-2020-26147)
Summary: The Linux kernel (the core of the Linux operating system)
Changes:
- v5.4.124 (Fixes: CVE-2020-24586, CVE-2020-24587, CVE-2020-24588, CVE-2020-26141,
CVE-2020-26145, CVE-2020-26147)
Summary: Thunderbird is Mozilla's e-mail client
Changes:
- New version (78.11.0).
- Security fixes:
+ CVE-2021-29964 Out of bounds-read when parsing a `WM_COPYDATA` message
+ CVE-2021-29967 Memory safety bugs fixed in Thunderbird 78.11
Summary: The Mozilla Firefox project is a redesign of Mozilla's browser
Changes:
- New version (78.11.0).
- Security fixes:
+ CVE-2021-29964 Out of bounds-read when parsing a `WM_COPYDATA` message
+ CVE-2021-29967 Memory safety bugs fixed in Firefox 89 and Firefox ESR 78.11
Summary: A TLS protocol implementation
Changes:
- Updated to 3.6.16 (fixes: CVE-2021-20305).
- Dropped obsoleted patches.
Summary: An open source, production quality, multilayer virtual switch
Changes:
- 2.14.2 (Fixes: CVE-2020-35498)
Summary: Gets a file from a FTP, GOPHER or HTTP server
Changes:
- 7.77.0
- Fixes:
* CVE-2021-22897 schannel cipher selection surprise
* CVE-2021-22898 TELNET stack contents disclosure
* CVE-2021-22901 TLS session caching disaster
Summary: X11 Library
Changes:
- 1.7.1 (fixes: CVE-2021-31535)
Summary: PostgreSQL client programs and libraries
Changes:
- 10.17 (Fixes CVE-2021-32027, CVE-2021-32028)
Summary: PostgreSQL client programs and libraries
Changes:
- 11.12 (Fixes CVE-2021-32027, CVE-2021-32028, CVE-2021-32029)
Summary: PostgreSQL client programs and libraries
Changes:
- 12.7 (Fixes CVE-2021-32027, CVE-2021-32028, CVE-2021-32029)
Summary: PostgreSQL client programs and libraries
Changes:
- 9.6.22 (Fixes CVE-2021-32027, CVE-2021-32028)
Summary: NIS Server and Schema Compatibility plugins for Directory Server
Changes:
- Backported CVE fix to P9.
Summary: PostgreSQL client programs and libraries (edition for 1C 8.3.13 and later)
Changes:
- Fixes CVE-2021-32027, CVE-2021-32028, CVE-2021-32029
Summary: NIS Server and Schema Compatibility plugins for Directory Server
Changes:
- 0.56.6 -> 0.56.7 (fixes: CVE-2021-3480).
Summary: PostgreSQL client programs and libraries (edition for 1C 8.3.13 and later)
Changes:
- Fixes CVE-2021-32027, CVE-2021-32028, CVE-2021-32029
Summary: Thunderbird is Mozilla's e-mail client
Changes:
- New version (78.10.2).
- Security fixes:
+ CVE-2021-29957 Partial protection of inline OpenPGP message not indicated
+ CVE-2021-29956 Thunderbird stored OpenPGP secret keys without master password protection
Summary: Thunderbird is Mozilla's e-mail client
Changes:
- New version (78.10.2).
- Security fixes:
+ CVE-2021-29957 Partial protection of inline OpenPGP message not indicated
+ CVE-2021-29956 Thunderbird stored OpenPGP secret keys without master password protection
Summary: User space components of the Ceph file system
Changes:
- 14.2.21 (Fixes: CVE-2021-3531, CVE-2021-3524, CVE-2021-3509).
Summary: Thunar File Manager for the Xfce Desktop Environment
Changes:
- Updated to 1.8.17 (fixes: CVE-2021-32563).
Summary: The Linux kernel (the core of the Linux operating system)
Changes:
- v5.10.37 (Fixes: CVE-2021-23133, CVE-2021-23134, CVE-2021-3491)
Summary: The Linux kernel (the core of the Linux operating system)
Changes:
- v5.4.119 (Fixes: CVE-2021-23133, CVE-2021-23134)
Summary: The Linux kernel (the core of the Linux operating system)
Changes:
- v5.10.37 (Fixes: CVE-2021-23133, CVE-2021-23134, CVE-2021-3491)
Summary: The Linux kernel (the core of the Linux operating system)
Changes:
- v5.4.119 (Fixes: CVE-2021-23133, CVE-2021-23134)
Summary: The Linux kernel (the core of the Linux operating system)
Changes:
- v5.10.37 (Fixes: CVE-2021-23133, CVE-2021-23134, CVE-2021-3491)
Summary: The Linux kernel (the core of the Linux operating system)
Changes:
- v5.4.119 (Fixes: CVE-2021-23133, CVE-2021-23134)
Summary: The Linux kernel (the core of the Linux operating system)
Changes:
- v5.10.37 (Fixes: CVE-2021-23133, CVE-2021-23134, CVE-2021-3491)
Summary: The Linux kernel (the core of the Linux operating system)
Changes:
- v5.4.119 (Fixes: CVE-2021-23133, CVE-2021-23134)
Summary: IT and asset management software
Changes:
- New version 9.5.5
- This is a security release, upgrading is recommended
- Security fixes:
+ CVE-2021-3486 : Stored XSS in plugins information
Summary: The Go Programming Language
Changes:
- New version (1.15.12).
- Fixes:
+ CVE-2021-31525
Summary: The Go Programming Language
Changes:
- New version (1.15.12).
- Fixes:
+ CVE-2021-31525
Summary: The Mozilla Firefox project is a redesign of Mozilla's browser
Changes:
- New version (78.10.1).
- Security fixes:
+ CVE-2021-29951 Mozilla Maintenance Service could have been started or stopped by domain users
Summary: The Mozilla Firefox project is a redesign of Mozilla's browser
Changes:
- New version (78.10.1).
- Security fixes:
+ CVE-2021-29951 Mozilla Maintenance Service could have been started or stopped by domain users
Summary: Thunderbird is Mozilla's e-mail client
Changes:
- New version (78.10.1).
- Security fixes:
+ CVE-2021-29951 Thunderbird Maintenance Service could have been started or stopped by domain users
- Do not build for ppc64le.
Summary: Thunderbird is Mozilla's e-mail client
Changes:
- New version (78.10.1).
- Security fixes:
+ CVE-2021-29951 Thunderbird Maintenance Service could have been started or stopped by domain users
- Do not build for ppc64le.
Summary: ISC BIND - DNS server
Changes:
- 9.11.28 -> 9.11.31 (fixes: CVE-2021-25214, CVE-2021-25215, CVE-2021-25216).
Summary: Local network service discovery
Changes:
- avoid infinite-loop in avahi-daemon (closes: #39357) (fixes: CVE-2021-3468)
Summary: The BugTraq Award Winning Network Traffic Analyzer
Changes:
- 3.4.5 (Fixes: CVE-2021-22207)
Summary: Thunderbird is Mozilla's e-mail client
Changes:
- New version (78.10.0).
- Security fixes:
+ CVE-2021-23994 Out of bound write due to lazy initialization
+ CVE-2021-23995 Use-after-free in Responsive Design Mode
+ CVE-2021-23998 Secure Lock icon could have been spoofed
+ CVE-2021-23961 More internal network hosts could have been probed by a malicious webpage
+ CVE-2021-23999 Blob URLs may have been granted additional privileges
+ CVE-2021-24002 Arbitrary FTP command execution on FTP servers using an encoded URL
+ CVE-2021-29945 Incorrect size computation in WebAssembly JIT could lead to null-reads
+ CVE-2021-29946 Port blocking could be bypassed
+ CVE-2021-29948 Race condition when reading from disk while verifying signatures
+ CVE-2021-23991 An attacker may use Thunderbird's OpenPGP key refresh mechanism to poison an existing key
+ CVE-2021-23992 A crafted OpenPGP key with an invalid user ID could be used to confuse the user
+ CVE-2021-23993 Inability to send encrypted OpenPGP email after importing a crafted OpenPGP key
+ CVE-2021-29949 Thunderbird might execute an alternative OTR library
+ CVE-2021-23981 Texture upload into an unbound backing buffer resulted in an out-of-bound read
+ CVE-2021-23982 Internal network hosts could have been probed by a malicious webpage
+ CVE-2021-23984 Malicious extensions could have spoofed popup information
+ CVE-2021-23987 Memory safety bugs fixed in Thunderbird 78.9
Summary: Thunderbird is Mozilla's e-mail client
Changes:
- New version (78.10.0).
- Security fixes:
+ CVE-2021-23994 Out of bound write due to lazy initialization
+ CVE-2021-23995 Use-after-free in Responsive Design Mode
+ CVE-2021-23998 Secure Lock icon could have been spoofed
+ CVE-2021-23961 More internal network hosts could have been probed by a malicious webpage
+ CVE-2021-23999 Blob URLs may have been granted additional privileges
+ CVE-2021-24002 Arbitrary FTP command execution on FTP servers using an encoded URL
+ CVE-2021-29945 Incorrect size computation in WebAssembly JIT could lead to null-reads
+ CVE-2021-29946 Port blocking could be bypassed
+ CVE-2021-29948 Race condition when reading from disk while verifying signatures
+ CVE-2021-23991 An attacker may use Thunderbird's OpenPGP key refresh mechanism to poison an existing key
+ CVE-2021-23992 A crafted OpenPGP key with an invalid user ID could be used to confuse the user
+ CVE-2021-23993 Inability to send encrypted OpenPGP email after importing a crafted OpenPGP key
+ CVE-2021-29949 Thunderbird might execute an alternative OTR library
+ CVE-2021-23981 Texture upload into an unbound backing buffer resulted in an out-of-bound read
+ CVE-2021-23982 Internal network hosts could have been probed by a malicious webpage
+ CVE-2021-23984 Malicious extensions could have spoofed popup information
+ CVE-2021-23987 Memory safety bugs fixed in Thunderbird 78.9
Summary: The Linux kernel (the core of the Linux operating system)
Changes:
- v5.10.32 (Fixes: CVE-2021-23133)
Summary: The Linux kernel (the core of the Linux operating system)
Changes:
- v5.4.114 (Fixes: CVE-2021-23133)
Summary: The Linux kernel (the core of the Linux operating system)
Changes:
- v5.10.32 (Fixes: CVE-2021-23133)
Summary: The Linux kernel (the core of the Linux operating system)
Changes:
- v5.4.114 (Fixes: CVE-2021-23133)
Summary: The Linux kernel (the core of the Linux operating system)
Changes:
- v5.10.32 (Fixes: CVE-2021-23133)
Summary: The Linux kernel (the core of the Linux operating system)
Changes:
- v5.4.114 (Fixes: CVE-2021-23133)
Summary: The Linux kernel (the core of the Linux operating system)
Changes:
- v5.10.32 (Fixes: CVE-2021-23133)
