This update for xen fixes the following issues: * CVE-2023-46836: Fixed BTC/SRSO fixes not fully effective . * CVE-2023-46835: Fixed mismatch in IOMMU quarantine page table levels on x86/AMD . Update to Xen 4.17.3 bug fix release .
This update for poppler fixes the following issues: * CVE-2018-20662: PDFDoc setup in PDFDoc.cc allows attackers to cause DOS because of a wrong return value from PDFDoc:setup .
This update for xrdp fixes the following issues: * CVE-2023-42822: Fixed unchecked access to font glyph info . * CVE-2023-40184: Fixed restriction bypass via improper session handling .
This update for cosign fixes the following issues: Updated to 2.2.1 * Enhancements: * CVE-2023-46737: Possible endless data attack from attacker-controlled registry * feat: Support basic auth and bearer auth login to registry * add support for ignoring certificates with pkcs11 * Support ReplaceOp in Signatures * feat: added ability to get image digest back via triangulate * feat: add `--only ...
This update for tracker-miners fixes the following issues: * CVE-2023-5557: Fixed a sandbox escape by adding seccomp rules and applying it to the whole process * rebuild against current ICU 73.
This update of runc and containerd fixes the following issues: containerd: * Update to containerd v1.7.8. Upstream release notes: https://github.com/containerd/containerd/releases/tag/v1.7.8 * CVE-2022-1996: Fixed CORS bypass in go-restful catatonit: * Update to catatonit v0.2.0. * Change license to GPL-2.0-or-later. * Update to catatont v0.1.7 * This release adds the ability for catatonit to be ...