– Update jackson-databind to version 2.9.9.3. – Update jackson-core to version 2.9.9. – Update jackson-annotations to version 2.9.9. – Update jackson-bom to version 2.9.9. Resolves CVE-2019-12086, CVE-2019-12384, CVE-2019-12814, CVE-2019-14379, and CVE-14439.
Archive for September, 2019
Supporting Open Source
The phrase “open source” has been in use much longer than you think, popping up as early as Thomas Willis‘ 1685 piece, The London Practice of, Or The Whole Practical Part of Physick, describing in medical terminology how a wound behaves. The modern usage of the phrase is a bit newer and has become the appropriate descriptor for a software product that gives the user permission to add/remove/change its source code, design, or contents. From casual …
An update for openshift-enterprise-console-operator-container is now available for Red Hat OpenShift Container Platform 4.1. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
An update for openshift-enterprise-console-container is now available for Red Hat OpenShift Container Platform 4.1. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
An update for rh-nginx114-nginx is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,
An update for qpid-proton is now available for Satellite Tools 6.5. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
USN-4113-1 introduced a regression in Apache.
– Update to 0.12.0b – Clean up SPEC – Remove patches – Use sed for make Phonon default – Use KF5 instead of KDE4 – Renew URLs – CVE-2019-9133
– Update to 0.12.0b – Clean up SPEC – Remove patches – Use sed for make Phonon default – Use KF5 instead of KDE4 – Renew URLs – CVE-2019-9133
Multiple vulnerabilities have been discovered in the Dino XMPP client, which could allow spoofing message, manipulation of a user’s roster (contact list) and unauthorised sending of message carbons.
IBus would allow local users to capture key strokes of other locally logged in users.
An update for thunderbird is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
Exim could be made to run programs as an administrator if it received specially crafted network traffic.
The post Top Hosting Providers for WordPress Developer Features appeared first on Plesk.
Wireshark could be made to crash if it received specially crafted network traffic or input files.
rebase to 0.16 (bz #1741605)
Update to latest upstream version.
Multiple security issues have been found in Thunderbird which could potentially result in the execution of arbitrary code, cross-site scripting, information disclosure and a covert content attack on S/MIME encryption using a crafted multipart/alternative message.
Multiple vulnerabilities have been discovered in faad2, the Freeware Advanced Audio Coder. These vulnerabilities might allow remote attackers to cause denial-of-service, or potentially execute arbitrary code if crafted MPEG AAC files are processed.
Upstream announcement: [WordPress 5.2.3 Security and Maintenance Release](https://wordpress.org/news/2019/09/wordpress-5-2-3-security-and- maintenance-release/)
This is an update fixing CVE-2019-15846.
# This is a beta preview of Python 3.8 Python 3.8 is still in development. This release, 3.8.0b4 is the last of four planned beta release previews. Beta release previews are intended to give the wider community the opportunity to test new features and bug fixes and to prepare their projects to support the new feature release. # Call to action We **strongly encourage** maintainers of third-party
rebase to 0.16 (bz #1741605)
curl could be made to crash or possibly execute arbitrary code if it incorrectly handled memory during TFTP transfers.
Expat could be made to expose sensitive information if it received a specially crafted XML file.
Expat could be made to expose sensitive information if it received a specially crafted XML file.
An update for gRPC, included in multus-cni-container, operator-lifecycle-manager-container, and operator-registry-container is now available for Red Hat OpenShift Container Platform 4.1. Red Hat Product Security has rated this update as having a security impact
An update for flash-plugin is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which
An update for rh-nginx112-nginx is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,
An update for rh-nginx110-nginx is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,