Security fix for CVE-2019-3885, CVE-2018-16877, CVE-2018-16878
Comment
Archive for April 23rd, 2019
17 results.
One of the more popular topics talked about amongst the cPanel Community is AutoSSL, a tool that automatically installs domain-validated SSL certificates for cPanel services and users’ websites. Since we haven’t touched on AutoSSL on our blog for a bit, some of the recent changes added to cPanel & WHM have created an opportune time to revisit one of cPanel’s most popular features. What is AutoSSL? AutoSSL is the solution for one of the most prominent SSL pain points for cPanel & …
Update to version 2.7 from upstream Security fix for CVE-2019-9494 (cache attack against SAE) Security fix for CVE-2019-9495 (cache attack against EAP-pwd) Security fix for CVE-2019-9496 (SAE confirm missing state validation in hostapd/AP) Security fix for CVE-2019-9497 (EAP-pwd server not checking for reflection attack) Security fix for CVE-2019-9498 (EAP-pwd server missing commit
**Version 9.3.4** This is a security release, upgrading is highly recommended * [security] Prevent external redirections This release also fix some minor issues.
Fedora 29: python-urllib3 Security Update
Apr23
on April 23, 2019
at 4:33 pm
Posted In: Uncategorized
– Fix an issue similar to CVE-2018-20060 where the authorization header was removed only when the case matched. – Fix an issue where the system CA bundle was loaded even when an alternate bundle was explicitly specified (https://www.openwall.com/lists/oss-security/2019/04/17/3) Full changelog at: https://github.com/urllib3/urllib3/blob/1.24.2/CHANGES.rst
Ubuntu 3936-2: AdvanceCOMP vulnerability
Apr23
on April 23, 2019
at 1:48 pm
Posted In: Uncategorized
AdvanceCOMP could be made to run arbitrary code if it opened a specially crafted file.
RedHat: RHSA-2019-0868:01 Moderate: Red Hat Single Sign-On 7.2.7 security
Apr23
on April 23, 2019
at 1:29 pm
Posted In: Uncategorized
A security update is now available for Red Hat Single Sign-On 7.2 from the Customer Portal. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
RedHat: RHSA-2019-0856:01 Moderate: Red Hat Single Sign-On 7.2.7 security
Apr23
on April 23, 2019
at 1:20 pm
Posted In: Uncategorized
Security updates for Red Hat Single Sign-On 7.2.7 packages are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
RedHat: RHSA-2019-0857:01 Moderate: Red Hat Single Sign-On 7.2.7 security
Apr23
on April 23, 2019
at 1:20 pm
Posted In: Uncategorized
Security updates for Red Hat Single Sign-On 7.2.7 packages are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
Several security issues were fixed in PHP.
RedHat: RHSA-2019-0809:01 Important: ovmf security update
Apr23
on April 23, 2019
at 10:31 am
Posted In: Uncategorized
An update for ovmf is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
RedHat: RHSA-2019-0831:01 Important: kernel-alt security and bug fix update
Apr23
on April 23, 2019
at 10:31 am
Posted In: Uncategorized
An update for kernel-alt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
RedHat: RHSA-2019-0818:01 Important: kernel security and bug fix update
Apr23
on April 23, 2019
at 10:31 am
Posted In: Uncategorized
An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
Ubuntu 3952-1: Pacemaker vulnerabilities
Apr23
on April 23, 2019
at 9:08 am
Posted In: Uncategorized
Several security issues were fixed in Pacemaker.
Several security issues were fixed in PHP.
Dovecot could be made to crash if it received specially crafted network traffic.
RedHat: RHSA-2019-0832:01 Important: polkit security update
Apr23
on April 23, 2019
at 9:01 am
Posted In: Uncategorized
An update for polkit is now available for Red Hat Enterprise Linux 6.6 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,