ASA-202007-6: libjcat: insufficient validation

Arch Linux 754 Published 2020-08-01 05:25 by Philipp Esselbach

News

A libjcat security update has been released for Arch Linux.

ASA-202007-6: libjcat: insufficient validation

Arch Linux Security Advisory ASA-202007-6
========================================
Severity: High
Date : 2020-07-31
CVE-ID : CVE-2020-10759
Package : libjcat
Type : insufficient validation
Remote : Yes
Link : https://security.archlinux.org/AVG-1185

Summary
======
The package libjcat before version 0.1.3-1 is vulnerable to
insufficient validation.

Resolution
=========
Upgrade to 0.1.3-1.

# pacman -Syu "libjcat>=0.1.3-1"

The problem has been fixed upstream in version 0.1.3.

Workaround
=========
None.

Description
==========
A PGP signature verification bypass has been found in fwupd prior to
1.4.0, and in libjcat

ELSA-2020-3241 Important: Oracle Linux 8 firefox security update

GLSA 202007-61 : WebKitGTK+: Multiple vulnerabilities

Windows

Windows 11 418
Windows 11 Insider Preview Build 26120.670 (Dev Channel) released
2024-05-17 20:19 by Philipp Esselbach
Windows 11 418
Windows 11 Insider Preview Build 22635.3640 (Beta Channel) released
2024-05-17 22:15 by Philipp Esselbach
Windows 11 418
Windows 11 Builds 22621.3668 and 22631.3668 released
2024-05-17 22:11 by Philipp Esselbach

Linux

Software 42359
Wine Staging 9.9 released
2024-05-18 08:16 by Philipp Esselbach
Software 42359
Wine 9.9 released
2024-05-18 08:12 by Philipp Esselbach
Software 42359
MariaDB 11.2.4, 11.1.5, 11.0.6, 10.11.8, 10.6.18, 10.5.25, 10.4.34 released
2024-05-18 08:10 by Philipp Esselbach

macOS

Apple 10169
tvOS 17.5 released
2024-05-14 07:14 by Philipp Esselbach
Apple 10169
watchOS 10.5 released
2024-05-14 07:14 by Philipp Esselbach
Apple 10169
iOS 17.5 released
2024-05-14 07:14 by Philipp Esselbach

Community

dhamu
Hello Phil, I have a Linux Tutorial website that curre ...
StephanX
Hi friends, i am new in the Linux universe but i try to ...
Philipp
I would try the XanMod kernel: https://xanmod.org I ...