This update for gstreamer-plugins-bad fixes the following issues: CVE-2023-40474: Fixed integer overflow causing out of bounds writes when handling invalid uncompressed video (bsc#1215796).
This update for xerces-c fixes the following issues: CVE-2023-37536: Fixed an integer overflow that could have led to a out-of- bounds memory accesses (bsc#1216156).
This update for squid fixes the following issues: CVE-2023-46728: Remove gopher support (bsc#1216926). Fixed overread in HTTP request header parsing (bsc#1217274).
This update for maven, maven-resolver, sbt, xmvn fixes the following issues: CVE-2023-46122: Fixed an arbitrary file write when extracting a crafted zip file with sbt (bsc#1216529).
This update for python-Pillow fixes the following issues: CVE-2023-44271: Fixed uncontrolled resource consumption when textlength in an ImageDraw instance operates on a long text argument (bsc#1216894).
This update for strongswan fixes the following issues: CVE-2023-41913: Fixed a bug in charon-tkm related to handling DH public values that can lead to remote code execution (bsc#1216901).
This update for apache2-mod_jk fixes the following issues: Update to version 1.2.49: Apache Retrieve default request id from mod_unique_id. It can also be taken from an arbitrary environment variable by
This update for strongswan fixes the following issues: CVE-2023-41913: Fixed a bug in charon-tkm related to handling DH public values that can lead to remote code execution (bsc#1216901).
This update for python3-setuptools fixes the following issues: CVE-2022-40897: Fixed Regular Expression Denial of Service (ReDoS) in package_index.py (bsc#1206667).
