Advisory: ArchLinux Essential and Critical Security Patch Updates
Find the information you need for your favorite open source distribution .
Find the information you need for your favorite open source distribution .
The package nextcloud-app-mail before version 1.10.1-1 is vulnerable to information disclosure.
The package openvswitch before version 2.15.1-1 is vulnerable to arbitrary code execution.
The package racket before version 8.2-1 is vulnerable to sandbox escape.
The package firefox-ublock-origin before version 1.36.2-1 is vulnerable to denial of service.
The package putty before version 0.76-1 is vulnerable to content spoofing.
The package libuv before version 1.41.1-1 is vulnerable to information disclosure.
The package dino before version 0.2.1-1 is vulnerable to directory traversal.
The package code before version 1.58.0-1 is vulnerable to arbitrary code execution.
The package nodejs-lts-erbium before version 12.22.3-1 is vulnerable to multiple issues including denial of service and information disclosure.
The package nodejs-lts-fermium before version 14.17.3-1 is vulnerable to multiple issues including denial of service and information disclosure.
The package vivaldi before version 4.0.2312.41-1 is vulnerable to arbitrary code execution.
The package chromium before version 91.0.4472.164-1 is vulnerable to arbitrary code execution.
The package systemd before version 249-2 is vulnerable to denial of service.
The package varnish before version 6.6.1-1 is vulnerable to url request injection.
The package mbedtls before version 2.26.0-1 is vulnerable to information disclosure.
The package python-pillow before version 8.3.0-1 is vulnerable to arbitrary code execution.
The package ruby2.6 before version 2.6.8-1 is vulnerable to multiple issues including silent downgrade, arbitrary command execution and information disclosure.
The package ruby2.7 before version 2.7.4-1 is vulnerable to multiple issues including silent downgrade and information disclosure.
The package ruby before version 3.0.2-1 is vulnerable to multiple issues including silent downgrade and information disclosure.
The package nextcloud before version 21.0.3-1 is vulnerable to multiple issues including authentication bypass, privilege escalation, access restriction bypass, content spoofing, cross-site scripting, incorrect calculation, information disclosure and insufficient validation.