Leptonica is a C library for image processing and analysis.
+Multiple vulnerabilities have been discovered in Leptonica. Please review the CVE identifiers referenced below for details.
+Please review the referenced CVE identifiers for details.
+There is no known workaround at this time.
+All Leptonica users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=media-libs/leptonica-1.81.0"
+
+ Minecraft Server is the official server for the sandbox video game.
+A vulnerability has been discovered in Minecraft Server. Please review the CVE identifier referenced below for details.
+Vulnerable Minecraft Server versions include a bundled version of log4j which is vulnerable to remote code execution.
+There is no known workaround at this time.
+All Minecraft Server users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=games-server/minecraft-server-1.18.1"
+
+ Mozilla Thunderbird is a popular open-source email client from the Mozilla project.
+Multiple vulnerabilities have been discovered in Mozilla Thunderbird. Please review the CVE identifiers referenced below for details.
+Please review the referenced CVE identifiers for details.
+There is no known workaround at this time.
+All Mozilla Thunderbird users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=mail-client/thunderbird-bin-102.12"
+
+
+ All Mozilla Thunderbird users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=mail-client/thunderbird-102.12"
+
+ Arduino is an open-source AVR electronics prototyping platform.
+A vulnerability has been discovered in Arduino. Please review the CVE identifier referenced below for details.
+Arduino bundles a vulnerable version of log4j that may lead to remote code execution.
+There is no known workaround at this time.
+All Arduino users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=dev-embedded/arduino-1.8.19"
+
+ libssh is a multiplatform C library implementing the SSHv2 protocol on client and server side.
+Multiple vulnerabilities have been discovered in libssh. Please review the CVE identifiers referenced below for details.
+Please review the referenced CVE identifiers for details.
+There is no known workaround at this time.
+All libssh users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=net-libs/libssh-0.10.5"
+
+ Exiv2 is a C++ library and set of tools for parsing, editing and saving Exif and IPTC metadata from images. Exif, the Exchangeable image file format, specifies the addition of metadata tags to JPEG, TIFF and RIFF files.
+Multiple vulnerabilities have been discovered in Exiv2. Please review the CVE identifiers referenced below for details.
+Please review the referenced CVE identifiers for details.
+There is no known workaround at this time.
+All Exiv2 users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=media-gfx/exiv2-0.28.1"
+
+ QtWebEngine is a library for rendering dynamic web content in Qt5 and Qt6 C++ and QML applications.
+Multiple vulnerabilities have been discovered in QtWebEngine. Please review the CVE identifiers referenced below for details.
+Please review the referenced CVE identifiers for details.
+There is no known workaround at this time.
+All QtWebEngine users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=dev-qt/qtwebengine-5.15.11_p20231120"
+
+ LibRaw is a library for reading RAW files obtained from digital photo cameras.
+A vulnerability has been discovered in LibRaw. Please review the CVE identifier referenced below for details.
+A heap-buffer-overflow in raw2image_ex() caused by a maliciously crafted file may lead to an application crash.
+There is no known workaround at this time.
+All LibRaw users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=media-libs/libraw-0.21.1-r1"
+
+ NASM is a 80x86 assembler that has been created for portability and modularity. NASM supports Pentium, P6, SSE MMX, and 3DNow extensions. It also supports a wide range of objects formats (ELF, a.out, COFF, etc), and has its own disassembler.
+Multiple vulnerabilities have been discovered in NASM. Please review the CVE identifiers referenced below for details.
+Please review the referenced CVE identifiers for details.
+There is no known workaround at this time.
+All NASM users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=dev-lang/nasm-2.16.01"
+
+ Ceph is a distributed network file system designed to provide excellent performance, reliability, and scalability.
+A vulnerability has been discovered in Ceph. Please review the CVE identifier referenced below for details.
+The ceph-crash.service runs the ceph-crash Python script as root. The script is operating in the directory /var/lib/ceph/crash which is controlled by the unprivileged ceph user (ceph:ceph mode 0750). The script periodically scans for new crash directories and forwards the content via `ceph crash post`.
+There is no known workaround at this time.
+All Ceph users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=sys-cluster/ceph-17.2.6"
+
+ Free and easy binary newsreader with web interface.
+A vulnerability has been discovered in SABnzbd. Please review the CVE identifier referenced below for details.
+A design flaw was discovered in SABnzbd that could allow remote code execution. Manipulating the Parameters setting in the Notification Script functionality allows code execution with the privileges of the SABnzbd process. Exploiting the vulnerabilities requires access to the web interface. Remote exploitation is possible if users exposed their setup to the internet or other untrusted networks without setting a username/password. By default SABnzbd is only accessible from `localhost`, with no authentication required for the web interface.
+There is no known workaround at this time.
+All SABnzbd users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=net-nntp/sabnzbd-4.0.2"
+
+ Flatpak is a Linux application sandboxing and distribution framework.
+Multiple vulnerabilities have been discovered in Flatpak. Please review the CVE identifiers referenced below for details.
+Please review the referenced CVE identifiers for details.
+There is no known workaround at this time.
+All Flatpak users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=sys-apps/flatpak-1.14.4"
+
+ Gitea is a painless self-hosted Git service.
+Multiple vulnerabilities have been discovered in Gitea. Please review the CVE identifiers referenced below for details.
+Please review the referenced CVE identifiers for details.
+There is no known workaround at this time.
+All Gitea users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=www-apps/gitea-1.20.6"
+
+ FFmpeg is a complete solution to record, convert and stream audio and video.
+Multiple vulnerabilities have been discovered in FFmpeg. Please review the CVE identifiers referenced below for details.
+Please review the referenced CVE identifiers for details.
+There is no known workaround at this time.
+All FFmpeg 4 users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=media-video/ffmpeg-4.4.3"
+
+
+ All FFmpeg 6 users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=media-video/ffmpeg-6.0"
+
+ Git is a free and open source distributed version control system designed to handle everything from small to very large projects with speed and efficiency.
+Multiple vulnerabilities have been discovered in Git. Please review the CVE identifiers referenced below for details.
+Please review the referenced CVE identifiers for details.
+There is no known workaround at this time.
+All Git users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=dev-vcs/git-2.39.3"
+
+ libssh is a multiplatform C library implementing the SSHv2 protocol on client and server side.
+Multiple vulnerabilities have been discovered in libssh. Please review the CVE identifiers referenced below for details.
+Please review the referenced CVE identifiers for details.
+There is no known workaround at this time.
+All libssh users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=net-libs/libssh-0.10.6"
+
+ OpenSSH is a free application suite consisting of server and clients that replace tools like telnet, rlogin, rcp and ftp with more secure versions offering additional functionality.
+Multiple vulnerabilities have been discovered in OpenSSH. Please review the CVE identifiers referenced below for details.
+Please review the referenced CVE identifiers for details.
+There is no known workaround at this time.
+All OpenSSH users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=net-misc/openssh-9.6_p1"
+
+