Happy Friday fellow Linux geeks! This week, Chromium announced multiple important security issues that threaten the confidentiality of your sensitive information and the availability of your systems. We encourage Chromium users to update immediately. An important security vulnerability in PostgreSQL that could allow a remote attacker to inject arbitrary SQL queries when a connection is first established has also been fixed this week.
Read on to learn about how you can update your systems to obtain these fixes for your distribution.
Have you customized your LinuxSecurity advisories based on the distro(s) you use? If not, we encourage you to do so now!
Yours in Open Source,
ChromiumThe DiscoveryMultiple important security issues were discovered in Chromium. |
libxml2The DiscoveryIt was discovered that the libxml2 GNOME XML library incorrectly handled certain XML files (CVE-2022-40303 and CVE-2022-40304). The ImpactAn attacker could possibly use these issues to expose sensitive information, cause a crash, or execute arbitrary code. The FixAn update is available for libxml2 that fixes these flaws. We urge you to update promptly to protect against attacks and compromise. Your Related Advisories:Register to Customize Your Advisories |
PostgreSQLThe DiscoveryAn important security vulnerability has been identified in the PostgreSQL object-relational SQL database. It was discovered that PostgreSQL incorrectly handled SSL certificate verification and encryption (CVE-2021-23222). The ImpactA remote attacker could possibly use this issue to inject arbitrary SQL queries when a connection is first established. |
