[ GLSA 202403-04 ] XZ utils: Backdoor in release tarballs
A security advisory concerning XZ utilities has been published for the Gentoo Linux operating system:
[ GLSA 202403-04 ] XZ utils: Backdoor in release tarballs
[ GLSA 202403-04 ] XZ utils: Backdoor in release tarballs
The following updates have been released for Gentoo Linux:
[ GLSA 202403-03 ] UltraJSON: Multiple Vulnerabilities
[ GLSA 202403-02 ] Blender: Multiple Vulnerabilities
[ GLSA 202403-01 ] Tox: Remote Code Execution
[ GLSA 202403-03 ] UltraJSON: Multiple Vulnerabilities
[ GLSA 202403-02 ] Blender: Multiple Vulnerabilities
[ GLSA 202403-01 ] Tox: Remote Code Execution
The following security updates have been released for Gentoo Linux:
[ GLSA 202402-32 ] btrbk: Remote Code Execution
[ GLSA 202402-31 ] GNU Aspell: Heap Buffer Overflow
[ GLSA 202402-30 ] Glances: Arbitrary Code Execution
[ GLSA 202402-33 ] PyYAML: Arbitrary Code Execution
[ GLSA 202402-32 ] btrbk: Remote Code Execution
[ GLSA 202402-31 ] GNU Aspell: Heap Buffer Overflow
[ GLSA 202402-30 ] Glances: Arbitrary Code Execution
[ GLSA 202402-33 ] PyYAML: Arbitrary Code Execution
An LibreOffcie security update is available for Gentoo Linux:
[ GLSA 202402-29 ] LibreOffice: Multiple Vulnerabilities
[ GLSA 202402-29 ] LibreOffice: Multiple Vulnerabilities
The following security updates are available for Gentoo Linux:
[ GLSA 202402-28 ] Samba: Multiple Vulnerabilities
[ GLSA 202402-26 ] Mozilla Firefox: Multiple Vulnerabilities
[ GLSA 202402-27 ] Glade: Denial of Service
[ GLSA 202402-22 ] intel-microcode: Multiple Vulnerabilities
[ GLSA 202402-23 ] Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities
[ GLSA 202402-25 ] Mozilla Thunderbird: Multiple Vulnerabilities
[ GLSA 202402-24 ] Seamonkey: Multiple Vulnerabilities
[ GLSA 202402-21 ] QtNetwork: Multiple Vulnerabilities
[ GLSA 202402-20 ] Thunar: Arbitrary Code Execution
[ GLSA 202402-19 ] libcaca: Arbitary Code Execution
[ GLSA 202402-18 ] Exim: Multiple Vulnerabilities
[ GLSA 202402-17 ] CUPS: Multiple Vulnerabilities
[ GLSA 202402-16 ] Apache Log4j: Multiple Vulnerabilities
[ GLSA 202402-15 ] e2fsprogs: Arbitrary Code Execution
[ GLSA 202402-14 ] QtWebEngine: Multiple Vulnerabilities
[ GLSA 202402-13 ] TACACS+: Remote Code Execution
[ GLSA 202402-12 ] GNU Tar: Out of Bounds Read
[ GLSA 202402-28 ] Samba: Multiple Vulnerabilities
[ GLSA 202402-26 ] Mozilla Firefox: Multiple Vulnerabilities
[ GLSA 202402-27 ] Glade: Denial of Service
[ GLSA 202402-22 ] intel-microcode: Multiple Vulnerabilities
[ GLSA 202402-23 ] Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities
[ GLSA 202402-25 ] Mozilla Thunderbird: Multiple Vulnerabilities
[ GLSA 202402-24 ] Seamonkey: Multiple Vulnerabilities
[ GLSA 202402-21 ] QtNetwork: Multiple Vulnerabilities
[ GLSA 202402-20 ] Thunar: Arbitrary Code Execution
[ GLSA 202402-19 ] libcaca: Arbitary Code Execution
[ GLSA 202402-18 ] Exim: Multiple Vulnerabilities
[ GLSA 202402-17 ] CUPS: Multiple Vulnerabilities
[ GLSA 202402-16 ] Apache Log4j: Multiple Vulnerabilities
[ GLSA 202402-15 ] e2fsprogs: Arbitrary Code Execution
[ GLSA 202402-14 ] QtWebEngine: Multiple Vulnerabilities
[ GLSA 202402-13 ] TACACS+: Remote Code Execution
[ GLSA 202402-12 ] GNU Tar: Out of Bounds Read
The following security update is available for Gentoo Linux:
[ GLSA 202402-11 ] libxml2: Multiple Vulnerabilities
[ GLSA 202402-11 ] libxml2: Multiple Vulnerabilities
The following security updates have been released for Gentoo Linux:
[ GLSA 202402-10 ] NBD Tools: Multiple Vulnerabilities
[ GLSA 202402-09 ] Wireshark: Multiple Vulnerabilities
[ GLSA 202402-08 ] OpenSSL: Multiple Vulnerabilities
[ GLSA 202402-10 ] NBD Tools: Multiple Vulnerabilities
[ GLSA 202402-09 ] Wireshark: Multiple Vulnerabilities
[ GLSA 202402-08 ] OpenSSL: Multiple Vulnerabilities
The following security updates are available for Gentoo Linux:
[ GLSA 202402-06 ] FreeType: Multiple Vulnerabilities
[ GLSA 202402-05 ] Microsoft Edge: Multiple Vulnerabilities
[ GLSA 202402-07 ] Xen: Multiple Vulnerabilities
[ GLSA 202402-06 ] FreeType: Multiple Vulnerabilities
[ GLSA 202402-05 ] Microsoft Edge: Multiple Vulnerabilities
[ GLSA 202402-07 ] Xen: Multiple Vulnerabilities
The following three security updates are available for Gentoo Linux:
[ GLSA 202402-04 ] GNAT Ada Suite: Remote Code Execution
[ GLSA 202402-02 ] SDDM: Privilege Escalation
[ GLSA 202402-03 ] QtGui: Multiple Vulnerabilities
[ GLSA 202402-04 ] GNAT Ada Suite: Remote Code Execution
[ GLSA 202402-02 ] SDDM: Privilege Escalation
[ GLSA 202402-03 ] QtGui: Multiple Vulnerabilities
The following security updates are available for Gentoo Linux:
[ GLSA 202401-31 ] containerd: Multiple Vulnerabilities
[ GLSA 202401-30 ] X.Org X Server, XWayland: Multiple Vulnerabilities
[ GLSA 202401-34 ] Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities
[ GLSA 202401-33 ] WebKitGTK+: Multiple Vulnerabilities
[ GLSA 202401-32 ] libaom: Multiple Vulnerabilities
[ GLSA 202401-31 ] containerd: Multiple Vulnerabilities
[ GLSA 202401-30 ] X.Org X Server, XWayland: Multiple Vulnerabilities
[ GLSA 202401-34 ] Chromium, Google Chrome, Microsoft Edge: Multiple Vulnerabilities
[ GLSA 202401-33 ] WebKitGTK+: Multiple Vulnerabilities
[ GLSA 202401-32 ] libaom: Multiple Vulnerabilities
The following security updates have been released for Gentoo Linux:
[ GLSA 202401-27 ] Ruby: Multiple vulnerabilities
[ GLSA 202401-28 ] GOCR: Multiple Vulnerabilities
[ GLSA 202401-29 ] sudo: Memory Manipulation
[ GLSA 202401-27 ] Ruby: Multiple vulnerabilities
[ GLSA 202401-28 ] GOCR: Multiple Vulnerabilities
[ GLSA 202401-29 ] sudo: Memory Manipulation
An Apache XML-RPC security update is available for Gentoo Linux:
[ GLSA 202401-26 ] Apache XML-RPC: Multiple Vulnerabilities
[ GLSA 202401-26 ] Apache XML-RPC: Multiple Vulnerabilities
An OpenJDK update is available for Gentoo Linux:
[ GLSA 202401-25 ] OpenJDK: Multiple Vulnerabilities
[ GLSA 202401-25 ] OpenJDK: Multiple Vulnerabilities
The following two security updates are available for Gentoo Linux:
[ GLSA 202401-23 ] libuv: Buffer Overread
[ GLSA 202401-24 ] Nettle: Denial of Service
[ GLSA 202401-23 ] libuv: Buffer Overread
[ GLSA 202401-24 ] Nettle: Denial of Service
The following security updates are available for Gentoo Linux:
[ GLSA 202401-20 ] QPDF: Buffer Overflow
[ GLSA 202401-22 ] libspf2: Multiple vulnerabilities
[ GLSA 202401-21 ] KTextEditor: Arbitrary Local Code Execution
[ GLSA 202401-20 ] QPDF: Buffer Overflow
[ GLSA 202401-22 ] libspf2: Multiple vulnerabilities
[ GLSA 202401-21 ] KTextEditor: Arbitrary Local Code Execution
The following two security updates are available for Gentoo Linux:
[ GLSA 202401-19 ] Opera: Multiple Vulnerabilities
[ GLSA 202401-18 ] zlib: Buffer Overflow
[ GLSA 202401-19 ] Opera: Multiple Vulnerabilities
[ GLSA 202401-18 ] zlib: Buffer Overflow
A libgit2 security update has been released for Gentoo Linux:
[ GLSA 202401-17 ] libgit2: Privilege Escalation Vulnerability
[ GLSA 202401-17 ] libgit2: Privilege Escalation Vulnerability
The following two security updates are available for Gentoo Linux:
[ GLSA 202401-16 ] FreeRDP: Multiple Vulnerabilities
[ GLSA 202401-15 ] Prometheus SNMP Exporter: Basic Authentication Bypass
[ GLSA 202401-16 ] FreeRDP: Multiple Vulnerabilities
[ GLSA 202401-15 ] Prometheus SNMP Exporter: Basic Authentication Bypass
The following two security updates are available for Gentoo Linux:
[ GLSA 202401-14 ] RedCloth: ReDoS Vulnerability
[ GLSA 202401-13 ] FAAD2: Multiple Vulnerabilities
[ GLSA 202401-14 ] RedCloth: ReDoS Vulnerability
[ GLSA 202401-13 ] FAAD2: Multiple Vulnerabilities
The following security updates have been released for Gentoo Linux:
[ GLSA 202401-12 ] Synapse: Multiple Vulnerabilities
[ GLSA 202401-11 ] Apache Batik: Multiple Vulnerabilities
[ GLSA 202401-10 ] Mozilla Firefox: Multiple Vulnerabilities
[ GLSA 202401-09 ] Eclipse Mosquitto: Multiple Vulnerabilities
[ GLSA 202401-08 ] util-linux: Multiple Vulnerabilities
[ GLSA 202401-12 ] Synapse: Multiple Vulnerabilities
[ GLSA 202401-11 ] Apache Batik: Multiple Vulnerabilities
[ GLSA 202401-10 ] Mozilla Firefox: Multiple Vulnerabilities
[ GLSA 202401-09 ] Eclipse Mosquitto: Multiple Vulnerabilities
[ GLSA 202401-08 ] util-linux: Multiple Vulnerabilities
The following security updates are available for Gentoo Linux:
[ GLSA 202401-06 ] CUPS filters: Remote Code Execution
[ GLSA 202401-05 ] RDoc: Command Injection
[ GLSA 202401-04 ] WebKitGTK+: Multiple Vulnerabilities
[ GLSA 202401-03 ] BlueZ: Privilege Escalation
[ GLSA 202401-02 ] c-ares: Multiple Vulnerabilities
[ GLSA 202401-06 ] CUPS filters: Remote Code Execution
[ GLSA 202401-05 ] RDoc: Command Injection
[ GLSA 202401-04 ] WebKitGTK+: Multiple Vulnerabilities
[ GLSA 202401-03 ] BlueZ: Privilege Escalation
[ GLSA 202401-02 ] c-ares: Multiple Vulnerabilities
A Joblib security update has been released for Gentoo Linux:
[ GLSA 202401-01 ] Joblib: Arbitrary Code Execution
[ GLSA 202401-01 ] Joblib: Arbitrary Code Execution
To improve overall convenience and speed up working with slow hardware, Gentoo Linux now offers binary packages for download and direct installation.
Git, libssh, and OpenSSH updates are available for Gentoo Linux:
[ GLSA 202312-15 ] Git: Multiple Vulnerabilities
[ GLSA 202312-16 ] libssh: Multiple Vulnerabilities
[ GLSA 202312-17 ] OpenSSH: Multiple Vulnerabilities
[ GLSA 202312-15 ] Git: Multiple Vulnerabilities
[ GLSA 202312-16 ] libssh: Multiple Vulnerabilities
[ GLSA 202312-17 ] OpenSSH: Multiple Vulnerabilities
The following updates are available for Gentoo Linux:
[ GLSA 202312-10 ] Ceph: Root Privilege Escalation
[ GLSA 202312-14 ] FFmpeg: Multiple Vulnerabilities
[ GLSA 202312-13 ] Gitea: Multiple Vulnerabilities
[ GLSA 202312-12 ] Flatpak: Multiple Vulnerabilities
[ GLSA 202312-11 ] SABnzbd: Remote Code Execution
[ GLSA 202312-10 ] Ceph: Root Privilege Escalation
[ GLSA 202312-14 ] FFmpeg: Multiple Vulnerabilities
[ GLSA 202312-13 ] Gitea: Multiple Vulnerabilities
[ GLSA 202312-12 ] Flatpak: Multiple Vulnerabilities
[ GLSA 202312-11 ] SABnzbd: Remote Code Execution
The following security updates are available for Gentoo Linux:
[ GLSA 202312-06 ] Exiv2: Multiple Vulnerabilities
[ GLSA 202312-05 ] libssh: Multiple Vulnerabilities
[ GLSA 202312-04 ] Arduino: Remote Code Execution
[ GLSA 202312-07 ] QtWebEngine: Multiple Vulnerabilities
[ GLSA 202312-09 ] NASM: Multiple Vulnerabilities
[ GLSA 202312-08 ] LibRaw: Heap Buffer Overflow
[ GLSA 202312-06 ] Exiv2: Multiple Vulnerabilities
[ GLSA 202312-05 ] libssh: Multiple Vulnerabilities
[ GLSA 202312-04 ] Arduino: Remote Code Execution
[ GLSA 202312-07 ] QtWebEngine: Multiple Vulnerabilities
[ GLSA 202312-09 ] NASM: Multiple Vulnerabilities
[ GLSA 202312-08 ] LibRaw: Heap Buffer Overflow
The following two security updates are available for Gentoo Linux:
[ GLSA 202312-03 ] Mozilla Thunderbird: Multiple Vulnerabilities
[ GLSA 202312-02 ] Minecraft Server: Remote Code Execution
[ GLSA 202312-03 ] Mozilla Thunderbird: Multiple Vulnerabilities
[ GLSA 202312-02 ] Minecraft Server: Remote Code Execution
A Leptonica security update has been released for Gentoo Linux:
[ GLSA 202312-01 ] Leptonica: Multiple Vulnerabilities
[ GLSA 202312-01 ] Leptonica: Multiple Vulnerabilities
A GLib security update has been released for Gentoo Linux.
An Open vSwitch security update has been released for Gentoo Linux.
A LibreOffice security update has been released for Gentoo Linux.
A phpMyAdmin security update has been released for Gentoo Linux.
A QtWebEngine security update has been released for Gentoo Linux.
A RenderDoc security update has been released for Gentoo Linux.
An Apptainer security update has been released for Gentoo Linux.
A Go security update has been released for Gentoo Linux.
A MiniDLNA security update has been released for Gentoo Linux.
A GRUB security update has been released for Gentoo Linux.
A GNU Libmicrohttpd security update has been released for Gentoo Linux.
A multipath-tools security update has been released for Gentoo Linux.
An AIDE security update has been released for Gentoo Linux.
A LinuxCIFS security update has been released for Gentoo Linux.
A SQLite security update has been released for Gentoo Linux.
A Zeppelin security update has been released for Gentoo Linux.
A Netatalk security update has been released for Gentoo Linux.
A GitPython security update has been released for Gentoo Linux.
A libxslt security update has been released for Gentoo Linux.
A Salt security update has been released for Gentoo Linux.