INFOSEC – USERSPACE.ORG :

OS: Mageia

Mageia 9: MGASA-2025-0207 critical update for Firefox available now

Suggested Advisory The last packaged version for armv7hl was 115.13.0, so from the point of view of the armv7hl architecture, this is a Security Advisory and fixes a lot of CVEs; see the linked Security Advisories below. https://advisories.mageia.org/MGASA-2024-0325.html

Mageia 9: MGASA-2025-0206 important: gnupg2 key validity issue

Key validity not computed when key is certified by a trusted "certify-only" key (regression due to patch for CVE-2025-30258) References: - https://bugs.mageia.org/show_bug.cgi?id=34458

Mageia 9: Critical GoLang Code Execution Vulnerability on 2025-02-05

Various uses of the Go toolchain in untrusted VCS repositories can result in unexpected code execution. When using the Go toolchain in directories fetched using various VCS tools (such as directly cloning Git or Mercurial repositories) can cause the toolchain to execute unexpected commands, if said directory contains multiple

Mageia 9: MGASA-2025-0204 critical: dpkg directory permissions DoS

It was discovered that dpkg-deb does not properly sanitize directory permissions when extracting a control member into a temporary directory, which is documented as being a safe operation even on untrusted data. This may result in leaving temporary files behind on cleanup. Given automated and repeated execution of dpkg-deb commands on adversarial

Exploit-DB.com

[webapps] Stacks Mobile App Builder 5.2.3 - Authentication Bypass via Account Takeover
Stacks Mobile App Builder 5.2.3 - Authentication Bypass via Account Takeover

[remote] Microsoft PowerPoint 2019 - Remote Code Execution (RCE)
Microsoft PowerPoint 2019 - Remote Code Execution (RCE)

[remote] ScriptCase 9.12.006 (23) - Remote Command Execution (RCE)
ScriptCase 9.12.006 (23) - Remote Command Execution (RCE)

[local] Sudo chroot 1.9.17 - Local Privilege Escalation
Sudo chroot 1.9.17 - Local Privilege Escalation

OS: Scientific

Scientific Linux 7 SLSA-2023:6885 Critical: Python TLS Handshake Bypass

python: TLS handshake bypass (CVE-2023-40217) --- This content is derived from https://access.redhat.com/errata/RHSA-2023:6885 SL7 srpm python-0:2.7.5-94.el7_9.src x86_64 python-0:2.7.5-94.el7_9.x86_64 i386 python-libs-0:2.7.5-94.el7_9.i686 - Scientific Linux Development Team

SciLinux: SLSA-2023:6886 Critical: Plexus-Archiver File Creation Risk

plexus-archiver: Arbitrary File Creation in AbstractUnArchiver (CVE-2023-37460) --- This content is derived from https://access.redhat.com/errata/RHSA-2023:6886 SL7 srpm plexus-archiver-0:2.4.2-6.el7_9.src noarch plexus-archiver-0:2.4.2-6.el7_9.noarch - Scientific Linux Development Team

Scientific Linux 7 Advisory SLSA-2023:5691 Critical DoS in BIND

bind: stack exhaustion in control channel code may lead to DoS (CVE-2023-3341) --- This content is derived from https://access.redhat.com/errata/RHSA-2023:5691 SL7 srpm bind-32:9.11.4-26.P2.el7_9.15.src i386 bind-export-libs-32:9.11.4-26.P2.el7_9.15.i686 x86_64 bind-export-libs-32:9.11.4-26.P2.el7_9.15.x86_64 noarch bind-license-32:9.11.4-26.P2.el7_9.15.noarch - Scie [More...]

Scientific Linux SLSA-2023:5615 Moderate Security Issue in libssh2

libssh2: use-of-uninitialized-value in _libssh2_transport_read (CVE-2020-22218) --- This content is derived from https://sso.redhat.com/auth/realms/redhat-external/protocol/saml?SAMLRequest=fZJBT8MwDIX%2FSm85ZWk7yrZonVQxIU0ChDbgwAVlqccipUmJXTb49aQbg3Hh6jy%2F79nOFFVjW1l1tHVLeOsAKakQIZDx7so77BoIKwjvRsPj8qZkW6IWpRBKa0AcBKi3igbaN6L2O2e9qlH0nmJjnLLmE1hSEQWz7giOfsa9fhsuXA37kmUsmUdu1PfQXwSiP%2FdXMaMIoGyD4ljmsCcIESPa4Mlrbw9olizmJXvJ9WgMWmV8qMcTfpGNUq7WxZCvVTEe5dmoUJebKEXsYhAk5ahkeZoXPL3g6eQhHcqikGn2zJInCHhIlg9Sluwb61D2oJJ1wUmv0KB0qgGUpOWqur2RUSjVaY3nLe3%2FPac52Gzaq%2BUhXZh1zmwM1PxnxVNx%2Fjw9HvEu2i3m994a%2FZFU1vrdVVwXQckodPEO1z40iv4P0FdMzTcHqWz7wZHAEROzI%2FPvX5l9AQ%3D%3D&RelayState=https%3A%2F%2Faccess.redhat.com%2Ferrata%2FRHSA-2&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256&Signature=BrJPc%2FvdbvszAnFEmxMHTWhWO5IJXnU8CNik001PBsM04yezeCS%2B0pETxgMIupFPsrxTbmD1oepOHhERcPL4Byk1qKkm6TtFvfXm74lB8Pui6rdjg%2B8IwVmrenuF4Ph3LD4ZnDeuNW3YO4dDbN5Q4%2F89FIjEkeGKeLLar10vtkiy8GweKEe8cuja3717pxNrVTOi8ckfBHwomdUD8Xw1IE6M1qHI4u6pOMtxqpKQPu%2FZzsAgrME854P7NQqtGaZRI3eqZlBRVyG2FYrR7KFC6QtA%2FdVCYBxBWG4JdxZhXmbM%2Fc%2Bn%2B04WEKPpbhH12qa7URkjktnYMsJNcVF7rtYtn1D6gCyPnuXrwe7qcV0MgnrfuqmW4FoGsGrjhFdp7Eebe40wh78VaLxxAxO9hR%2BrYRDgNjvtewICpUbzYQUm6jzVk3i%2FYjt5Pmr9HesI1zvaI80Jmpgud1snf1z7VWoIqnAXwIZyLlo%2BxyFZs4qDUBgFr9tqrgbnGjBgTzdyJTItq7yFMVJDCt6dy5LjnMgKSMd%2BjjsoDBjssytWMM4ulzlyQHtn4IdVgCe4q4jgLQrHXf4ZucbUIA6q%2Fxgg7favSO%2FZaivTQq%2BoaQQKJ1NXxPiMXw6j354mdaEtz8jK549xaCEZi2OiF3l8Qrzc%2B7JikRXQ8wlX1gh8SbiNHfo6ZcE%3D 023:5615 SL7 srpm libssh2-0:1.8.0-4.el7_9.1.src i386 libssh2-0:1.8.0-4.el7_9.1.i686 x86_64 libssh2-0:1.8.0-4.el7_9.1.x86_64 noarch libssh2-docs-0:1.8.0- 4.el7_9.1.noarch - Scientific Linux Development Team

OS: Suse

SUSE: 2025:02309-2 critical: Linux System Enhancement Notification

* bsc#1065729 * bsc#1156395 * bsc#1199487 * bsc#1201160 * bsc#1201956

SUSE 15 SP7: 2025:02307-1 important: Kernel Security Update

* bsc#1012628 * bsc#1151679 * bsc#1151680 * bsc#1151794 * bsc#1151927

SUSE 2025:02302-1 moderate: gstreamer-plugins-base null-pointer fix

* bsc#1244403 * bsc#1244404 * bsc#1244407 Cross-References:

SUSE: 2025:02303-1 moderate: gstreamer-plugins-good security update

* bsc#1244406 Cross-References: * CVE-2025-47183

OS: Debian LTS

Debian 11 DLA-4241-1 critical: ffmpeg input parsing issues

Multiple vulnerabilities have been fixed in the multimedia framework FFmpeg. CVE-2023-6601

Debian 11: DLA-4240-1 important: redis DoS and remote code execution

Two issues were discovered in Redis, the key-value database: * CVE-2025-32023: An authenticated user may have used a specially-crafted string to trigger a stack/heap out-of-bounds

Debian: DLA-4239-1 critical: thunderbird security issues resolved

Multiple vulnerabilities have been fixed in the email, calendar and contacts client Thunderbird. CVE-2025-5986

Debian 11: DLA-4238-1 important: update for sslh available now

It was discovered that there was a so-called "link following" vulnerability in sslh, a protocol multiplexor often used to share SSH and HTTPS on the same port.

OS: Debian

Debian DSA-5961-1 slurm-wlm critical: improper permission escalation

Sekou Diakite from HPE discovered a mistake with permission handling for Coordinators within the accounting system of Slurm Workload Manager, a cluster resource management and job scheduling system, that it could allow a Coordinator to promote a user to Administrator.

Debian: DSA-5960-1 critical: djvulibre arbitrary code execution

Antonio Morales discovered an out-of-bounds write in the MMRDecoder::scanruns method in djvulibre, a library and set of tools to handle documents in the DjVu format, which may result in the execution of arbitrary code if a specially crafted document is processed.

Debian Bookworm DSA-5959-1 Important: Thunderbird Arbitrary Code Execution

Multiple security issues were discovered in Thunderbird, which could result in the execution of arbitrary code. For the stable distribution (bookworm), these problems have been fixed in

Debian 12: DSA-5958-1 critical: jpeg-xl buffer overflow

Multiple vulnerabilities are discovered in jpeg-xl, the JPEG XL ("JXL") image coding library, including out of bounds read/write and stack based buffer overflow, which may cause excessive memory usage and denial of service attacks.

OS: Arch

Fedora: 203105-8 moderate: ruby-on-rails sql injection vulnerability

The package python-django before version 5.1.11-1 is vulnerable to content spoofing.

Ubuntu: 303103-1 medium: gnome-terminal privilege escalation

The package konsole before version 25.04.2-1 is vulnerable to arbitrary code execution.

ArchLinux: ASA-202506-4 medium risk of go certificate bypass issue

The package go before version 1.24.4-1 is vulnerable to multiple issues including certificate verification bypass and information disclosure.

Arch Linux: ASA-202506-3 CVE-2025-0620 low: samba access issue

The package samba before version 4.22.2-1 is vulnerable to access restriction bypass.

OS: Gentoo

Gentoo Linux GLSA-202507-09 high: Git allows arbitrary code execution

Multiple vulnerabilities have been discovered in Git, the worst of which could lead to arbitrary code execution.

Gentoo: GLSA-202507-09 high: XMLParser security vulnerability

Multiple vulnerabilities have been discovered in REXML, the worst of which can lead to a denial of service.

Gentoo: GLSA-202507-07 critical vulnerabilities in Chromium and its forks

Multiple vulnerabilities have been discovered in Chromium and its derivatives, the worst of which can lead to remote code execution.

Gentoo: GLSA-202507-05 normal: NTP multiple vulnerabilities

Multiple vulnerabilities have been discovered in NTP, the worst of which could lead to the execution of arbitrary code.

OS: Slackware

Slackware: 2025-192-02 critical: httpd denial of service fix

New httpd packages are available for Slackware 15.0 and -current to fix security issues.

Slackware 15.0: 2025-192-01 critical: kernel security upgrade

New kernel packages are available for Slackware 15.0 to fix security issues.

Slackware 15.0: 2025-190-01 critical: git remote access issues

New git packages are available for Slackware 15.0 and -current to fix security issues.

Slackware 15.0: 2025-184-01 critical: php security issues

New php packages are available for Slackware 15.0 and -current to fix security issues.

OS: CentOS

CentOS 7 CESA-2024-1498 Moderate Advisory: Thunderbird Update

Upstream details at : https://access.redhat.com/errata/RHSA-2024:1498

CentOS 7 CESA-2024-1486 Critical: Firefox Security Update

Upstream details at : https://access.redhat.com/errata/RHSA-2024:1486

CentOS 7 CESA-2024-1249 Important: Kernel Critical Update

Upstream details at : https://access.redhat.com/errata/RHSA-2024:1249

CentOS 7 CESA-2024-0957 Critical Thunderbird Security Update

Upstream details at : https://access.redhat.com/errata/RHSA-2024:0957

OS: Redhat

Red Hat: RHSA-2023-5538-01 Important: libvpx Heap Overflow and Crash

An update for libvpx is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,

Red Hat Enterprise Linux 8.2 RHSA-2023-5527 Important: Bind DoS Risk

An update for bind is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions.

Red Hat Enterprise Linux 8.2 RHSA-2023-5534-01 Important: libvpx Issues

An update for libvpx is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions.

Important Advisory RHSA-2023-5539-01 for libvpx Crash and Heap Overflow

An update for libvpx is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability

OS: Fedora

Fedora 41 FEDORA-2025-b712778148 critical: salt regression fix

Contains fixes for regressions introduced during CVE bugfix update (3007.4).

Fedora 41: Critical Security Issue in mingw-python-requests Announced

Update to 2.32.4. Fixes CVE-2024-47081.

Fedora 41 FEDORA-2025-0f35c5dbbb critical: mingw-djvulibre buffer overflow

Update to 3.5.29, fixes CVE-2025-53367.

Fedora 42: gnutls update 2025-16a24364ce important security fixes

This updates gnutls to the latest upstream release. Notable changes are: PKCS#11 cryptographic provider support Support for kTLS rekeying with kernel 6.14+ Support for the almost standardized ML-DSA private key formats This also fixes 4 CVEs (CVE-2025-32989, CVE-2025-6395, CVE-2025-32988, and