Download
| Alert*
|
oval:org.secpod.oval:def:67889
The host is missing a security update according to Apple advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle a malicious web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:67890 The host is missing a security update according to Apple advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle a malicious web content. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:66732 The following vulnerabilities have been discovered in the libwebkit2gtk-4.0-dev web engine: CVE-2020-9862 Ophir Lojkine discovered that copying a URL from the Web Inspector may lead to command injection. CVE-2020-9893 0011 discovered that a remote attacker may be able to cause unexpected application ... oval:org.secpod.oval:def:89003004 This update for webkit2gtk3 fixes the following issues: - Update to version 2.28.4 : + Fix several crashes and rendering issues. + Security fixes: CVE-2020-9862, CVE-2020-9893, CVE-2020-9894, CVE-2020-9895, CVE-2020-9915, CVE-2020-9925. oval:org.secpod.oval:def:67915 The host is installed with Apple iTunes before 12.10.8 or iCloud before 7.20 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to properly handle a logic issue. Successful exploitation could allow an attacker to cause cross-site scripting. oval:org.secpod.oval:def:89002888 This update for webkit2gtk3 fixes the following issues: - Update to version 2.28.4 : + Fix several crashes and rendering issues. + Security fixes: CVE-2020-9862, CVE-2020-9893, CVE-2020-9894, CVE-2020-9895, CVE-2020-9915, CVE-2020-9925. oval:org.secpod.oval:def:1802041 CVE-2020-9862 Copying a URL from Web Inspector may lead to command injection. A command injection issue existed in Web Inspector. This issue was addressed with improved escaping. Versions affected: WebKitGTK before 2.28.4 and WPE WebKit before 2.28.4. CVE-2020-9893 A remote attacker may be able to ... oval:org.secpod.oval:def:118570 WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. This package contains WebKit2 based WebKitGTK for GTK 3. oval:org.secpod.oval:def:67058 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK. oval:org.secpod.oval:def:89050254 This update for webkit2gtk3 fixes the following issues: - Update to version 2.28.4 : + Fix several crashes and rendering issues. + Security fixes: CVE-2020-9862, CVE-2020-9893, CVE-2020-9894, CVE-2020-9895, CVE-2020-9915, CVE-2020-9925. oval:org.secpod.oval:def:2106323 Oracle Solaris 11 - ( CVE-2020-9862 ) oval:org.secpod.oval:def:705564 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK. oval:org.secpod.oval:def:604978 The following vulnerabilities have been discovered in the libwebkit2gtk-4.0-dev web engine: CVE-2020-9862 Ophir Lojkine discovered that copying a URL from the Web Inspector may lead to command injection. CVE-2020-9893 0011 discovered that a remote attacker may be able to cause unexpected application ... oval:org.secpod.oval:def:64584 The host is installed with Safari before 13.1.2 on Apple Mac OS X 10.13.6, 10.14.6 or 10.15.x before 10.15.6 and is prone to a cross site scripting vulnerability. A flaw is present in the application, which fails to properly handle a logic issue. Successful exploitation may allow an attacker to lead ... oval:org.secpod.oval:def:64578 The host is missing a security update according to Apple advisory, APPLE-SA-2020-07-15-5. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle a malicious web content. Successful exploitation could allow attackers to execute arbitrar ... oval:org.secpod.oval:def:2500129 GNOME is the default desktop environment of AlmaLinux. oval:org.secpod.oval:def:504769 GNOME is the default desktop environment of Red Hat Enterprise Linux. The following packages have been upgraded to a later upstream version: gnome-remote-desktop , pipewire , vte291 , webkit2gtk3 , xdg-desktop-portal , xdg-desktop-portal-gtk . Security Fix: * webkitgtk: Multiple security issues * ... oval:org.secpod.oval:def:68025 GNOME is the default desktop environment of Red Hat Enterprise Linux. The following packages have been upgraded to a later upstream version: gnome-remote-desktop , pipewire , vte291 , webkit2gtk3 , xdg-desktop-portal , xdg-desktop-portal-gtk . Security Fix: * webkitgtk: Multiple security issues * ... oval:org.secpod.oval:def:1504515 dleyna-renderer [0.6.0-3] - Add a manual Resolves: #1612579 frei0r-plugins [1.6.1-7] - Rebuild with newer annobin to fix rpmdiff problems - Fix the build with a newer opencv - Resolves: rhbz#1703994 gdm [3.28.3-34] - Fix file descriptor leak Resolves: #1877853 [3.28.3-33] - Fix problem with Xorg fal ... |
