– Update jackson-databind to version 2.9.9.3. – Update jackson-core to version 2.9.9. – Update jackson-annotations to version 2.9.9. – Update jackson-bom to version 2.9.9. Resolves CVE-2019-12086, CVE-2019-12384, CVE-2019-12814, CVE-2019-14379, and CVE-14439.
Archive for September, 2019
– Update jackson-databind to version 2.9.9.3. – Update jackson-core to version 2.9.9. – Update jackson-annotations to version 2.9.9. – Update jackson-bom to version 2.9.9. Resolves CVE-2019-12086, CVE-2019-12384, CVE-2019-12814, CVE-2019-14379, and CVE-14439.
– Update jackson-databind to version 2.9.9.3. – Update jackson-core to version 2.9.9. – Update jackson-annotations to version 2.9.9. – Update jackson-bom to version 2.9.9. Resolves CVE-2019-12086, CVE-2019-12384, CVE-2019-12814, CVE-2019-14379, and CVE-14439.
An update for kpatch-patch is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
Update to Samba 4.11.0 —- Update to Samba 4.11.0rc4 —- Update to Samba 4.11.0rc3 – Security fixes for CVE-2019-10197
– Updated to new upstream (69.0.1) – Wayland rendering fixes —- – The update to 69.0.1 – Fix flickering issues – Fix disappearing webrtc dialogs —- – Fixed rendering artifacts on Wayland backend
Multiple security issues were found in PHP, a widely-used open source general purpose scripting language: Missing sanitising in the EXIF extension and the iconv_mime_decode_headers() function could result in information disclosure or denial of service.
Several security issues were fixed in the kernel.
An update for kernel-alt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
An update for qpid-proton is now available for Satellite Tools 6.3. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
An update for qpid-proton is now available for Satellite Tools 6.4. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
An update for kernel is now available for Red Hat Enterprise Linux 7.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,
An update for jenkins is now available for Red Hat OpenShift Container Platform 4.1. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,
Update dino to [a96c8014](https://github.com/dino/dino/compare/016ab2c1…a96c8014), which addresses three CVEs. CVE-2019-16235 check the source of message carbons. https://nvd.nist.gov/vuln/detail/CVE-2019-16235 Fixed in
Update to 8.05 release (CVE-2019-16239)
Daniel McCarney discovered that the BIRD internet routing daemon incorrectly validated RFC 8203 messages in it’s BGP daemon, resulting in a stack buffer overflow.
Multiple security issues were found in PHP, a widely-used open source general purpose scripting language: Missing sanitising in the EXIF extension and the iconv_mime_decode_headers() function could result in information disclosure or denial of service.
It was discovered that OpenDMARC, a milter implementation of DMARC, is prone to a signature-bypass vulnerability with multiple From: addresses. For the oldstable distribution (stretch), this problem has been fixed
An update for the nginx:1.14 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,
An update for thunderbird is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
Update to Samba 4.9.13 – Security fixes for CVE-2019-10197 —- Update to Samba 4.9.12
Update to 4.1.7
Simon McVittie reported a flaw in ibus, the Intelligent Input Bus. Due to a misconfiguration during the setup of the DBus, any unprivileged user could monitor and send method calls to the ibus bus of another user, if able to discover the UNIX socket used by another user connected
#WebProsSummit19 Guest Blog: Halon Security
Halon Security, a Swedish company with offices overlooking the beautiful city of Gothenburg, Sweden, is proud to be sponsoring the WebPros Summit 2019 in Atlanta, Georgia! While we’ve partnered with cPanel and sponsored conferences in the past, this year has special significance for us; taking part in the very first WebPros Summit in Atlanta, Georgia! Regardless if you are a hosting provider or managed service provider, secure email is undoubtedly an integral part of your …
Several security issues were fixed in Tomcat 9.
wpa_supplicant could be made to be disconnected and require reconnection to the network if it received a specially crafted management frame.
wpa_supplicant could be made to be disconnected and require reconnection to the network if it received a specially crafted management frame.
Several security issues were fixed in the Linux kernel.
Several security issues were fixed in the Linux kernel.
– double free due to subsequent call of realloc() (CVE-2019-5481) – fix heap buffer overflow in function tftp_receive_packet() (CVE-2019-5482)