Security Fixes 11.09.100

IBM_5250

• Updated IBM iAccess Client Solutions to version 1.1.9.2. Complete changelog via [https://www.ibm.com/support/pages/ibm-i-access-acs-updates]

Chromium

• Updated Chromium browser to version 115.0.5790.170.

Firefox

• Updated Mozilla Firefox browser to version 115.2.1.

Base System

• Fixed nss security issue CVE-2023-0767.  

• Fixed libxml2 security issues CVE-2023-29469, CVE-2023-28484, CVE-2022-40304 and CVE-2022-40303.  

• Fixed wavpack security issue CVE-2021-44269.  

• Fixed tar security issue CVE-2022-48303.  

• Fixed python3.6 security issue CVE-2022-37454.  

• Fixed tiff security issues
  CVE-2023-0804, CVE-2023-0803, CVE-2023-0802,
  CVE-2023-0801, CVE-2023-0800, CVE-2023-0799, CVE-2023-0798, CVE-2023-0797,
  CVE-2023-0796 and CVE-2023-0795.  

• Fixed rsync security issue CVE-2022-29154.  

• Fixed vim security issues

  More...

  CVE-2022-2946, CVE-2022-2923, CVE-2022-2849,
  CVE-2022-2845, CVE-2022-2581, CVE-2022-2571, CVE-2022-2345, CVE-2022-2304,
  CVE-2022-2206, CVE-2022-2183, CVE-2022-2175, CVE-2022-2129, CVE-2022-2126,
  CVE-2022-2125, CVE-2022-2124, CVE-2022-1968, CVE-2022-1942, CVE-2022-1898,
  CVE-2022-1851, CVE-2022-1796, CVE-2022-1785, CVE-2022-1735, CVE-2022-1733,
  CVE-2022-1720, CVE-2022-1674, CVE-2022-1629, CVE-2022-0413, CVE-2023-1175,
  CVE-2023-1170, CVE-2023-0433, CVE-2023-0288, CVE-2023-0054, CVE-2023-0049 and
  CVE-2022-47024.  

  
  

• Fixed systemd security issues
  CVE-2022-4415 and CVE-2022-3821.  

• Fixed curl security issues
  CVE-2023-27538, CVE-2023-27537, CVE-2023-27536, CVE-2023-27535, CVE-2023-27534 and CVE-2023-27533.  

• Fixed xorg-server security issue CVE-2023-1393.  

• Fixed protobuf security issues
  CVE-2022-1941 and CVE-2021-22570.  

• Fixed python2.7 security issue CVE-2023-24329.  

• Fixed python3.6 security issue CVE-2023-24329.  

• Fixed libtpms security issues CVE-2023-1018 and CVE-2023-1017.  

• Fixed chromium-browser security issues

• Fixed sudo security issues CVE-2023-28487, CVE-2023-28486 and CVE-2023-2848.  

• Fixed vim security issues

  More...

  CVE-2022-2207, CVE-2022-0729, CVE-2022-0714,
  CVE-2022-0685, CVE-2022-0572, CVE-2022-0554, CVE-2022-0443, CVE-2022-0408,
  CVE-2022-0368, CVE-2022-0361, CVE-2022-0359, CVE-2022-0351, CVE-2022-0319,
  CVE-2022-0318, CVE-2022-0261, CVE-2022-0213, CVE-2021-4193 and CVE-2021-4192.  

  
  

• Fixed heimdal security issue CVE-2022-45142.  

• Fixed ghostscript security issue CVE-2023-28879.  

• Fixed dnsmasq security issue CVE-2023-28450.  

• Fixed zulu8-ca security issues
  CVE-2023-21930, CVE-2023-21937, CVE-2023-21938,
  CVE-2023-21939, CVE-2023-21954, CVE-2023-21967 and CVE-2023-21968.

• Updated Intel microcode to version 20230808.  

• Updated AMD microcode to version 20230809.

• Fixed libwebp security issue
  CVE-2023-4863 (initial only Chromium related) and CVE-2023-5129.

• Fixed libvpx security issue CVE-2023-5217.  

• Fixed libx11 security issues
  CVE-2023-43787, CVE-2023-43786 and CVE-2023-43785.  

• Fixed Chromium security issue CVE-2023-5217.  

• Fixed libxpm security issues
  CVE-2023-43789, CVE-2023-43788, CVE-2023-43787 and CVE-2023-43786.  

• Fixed glibc security issue CVE-2023-4911.