dav1d is an AV1 decoder.
+In some circumstances, dav1d might treat an invalid frame as valid, resulting in a crash.
+Malformed frame data can result in a denial of service.
+Users should avoid parsing untrusted video with dav1d.
+All dav1d users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=media-libs/dav1d-1.2.0"
+
+ Heimdal is a free implementation of Kerberos 5.
+Multiple vulnerabilities have been discovered in Heimdal, the worst of which could lead to remote code execution on a Kerberos Domain Controller. + +Please review the CVE identifiers referenced below for details.
+Please review the referenced CVE identifiers for details.
+There is no known workaround at this time.
+All Cross-realm trust vulnerability in Heimdal users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=app-crypt/heimdal-7.8.0-r1"
+
+ VirtualBox is a powerful virtualization product from Oracle.
+Multiple vulnerabilities have been discovered in Oracle VirtualBox, the worst of which may lead to VirtualBox compromise by an attacker with network access. + +Please review the CVE identifiers referenced below for details.
+Please review the referenced CVE identifiers for details.
+There is no known workaround at this time.
+All Oracle VirtualBox users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=app-emulation/virtualbox-7.0.6"
+
+
+ If you still need to use VirtualBox 6:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=app-emulation/virtualbox-6.1.46" "=app-emulation/virtualbox-6*"
+
+ man-db is a man replacement that utilizes BerkeleyDB instead of flat files.
+A root privilege escalation through setuid executable and cron job has been discovered in man-db. Please review the CVE identifier referenced below for details.
+A local user with access to the man user or group can elevate privileges to root.
+There is no known workaround at this time.
+All man-db users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=sys-apps/man-db-2.8.5"
+
+ c-ares is a C library for asynchronous DNS requests (including name resolves).
+Multiple vulnerabilities have been discovered in c-ares. Please review the CVE identifiers referenced below for details.
+Please review the referenced CVE identifiers for details.
+There is no known workaround at this time.
+All c-ares users should upgrade to the latest version:
+ +
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=net-dns/c-ares-1.19.1"
+
+