The patches cover concerns ranging from flaws that ... the former lets attackers access sensitive data by bypassing a file path filter without any additional input from the user.