NSS could be made to crash if it received a specially crafted certificate.
Archive for December, 2019
An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
Libidn 2.3.0 (released 2019-11-14) has assigned CVE-2019-12290 which was fixed by the roundtrip feature introduced in 2.2.0 (commit 241e8f48) * Update the data tables from Unicode 6.3.0 to Unicode 11.0 * Turn `_idn2_punycode_encode`, `_idn2_punycode_decode` into compat symbols (Fixes #74)
This update addresses a number of bugs affecting processing of CRLs in mod_tls, including possible null pointer dereferences and missing some checks. Thanks to Lionel Debroux for reporting them.
This update addresses a number of bugs affecting processing of CRLs in mod_tls, including possible null pointer dereferences and missing some checks. Thanks to Lionel Debroux for reporting them.
Address CVE-2019-19204 CVE-2019-19203 CVE-2019-19012. Fixes are backported.
You’ve probably heard that WordPress is open-source software, and may know that it’s created and run by volunteers. WordPress enthusiasts share many examples of how WordPress changed people’s lives for the better. This monthly series shares some of those lesser-known, amazing stories. Meet Jill Binder Jill Binder never meant to become an activist. She insists […]
* RabbitMQ ver. 3.7.22 * CVE-2019-11281 * CVE-2019-11287
**MySQL 8.0.18** Release notes: https://dev.mysql.com/doc/relnotes/mysql/8.0/en/news-8-0-18.html Security Advisory: https://www.oracle.com/security-alerts/cpuoct2019.html
Two vulnerabilities were discovered in NSS, a set of cryptographic libraries, which may result in denial of service and potentially the execution of arbitrary code.
Update to Node.js upstream release 12.13.1 https://nodejs.org/en/blog/release/v12.13.1/ Also fixes an issue where running `npm -g` was risky on RPM-installed systems. Fedora’s packaged NPM will now install global content in /usr/local instead of /usr where it could conflict with RPM-provided versions.
The 5.3.14 update contains a number of important fixes across the tree
An update for firefox is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from
An update for firefox is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from
An update for firefox is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from
RabbitMQ could be made to execute arbitrary code if it received a specially crafted input.
An update for java-1.7.1-ibm is now available for Red Hat Enterprise Linux 7 Supplementary. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
An update for java-1.7.1-ibm is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
FreeIPA 4.8.3 is a security update release that includes fixes for two issues: * CVE-2019-10195: Don’t log passwords embedded in commands in calls using batch A flaw was found in the way that FreeIPA’s batch processing API logged operations. This included passing user passwords in clear text on FreeIPA masters. Batch processing of commands with passwords as arguments or options is
tnef release 1.4.18. [CVE-2019-18849](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18849) in which it may be possible to attack via a crafted email message extracted via tnef.
EasyApache 3 to EasyApache 4 Autoconversion
As you may have noticed on the front page of our website, we’ve added a new section about the “Up Next” initiative, explaining upcoming changes to cPanel & WHM. A significant change coming in early 2020 is the EasyApache 3 to EasyApache 4 autoconversion. When we last made a change in the Up Next initiative, we upgraded users on out of date and unsupported cPanel & WHM version to Version 78. This upgrade did come …
Several security issues were fixed in Squid.
Rank Performance Graph OS Outage
hh:mm:ss Failed
Req% DNS Connect First
byte Total 1 www.choopa.com Linux 0:00:00 0.000 0.215 0.004 0.021 0.021 2 EveryCity SmartOS 0:00:00 0.000 0.198 0.074 0.148 0.148 3 ServerStack Linux 0:00:00 0.000 0.199 0.084 0.167 0.168 4 Pair Networks Linux 0:00:00 0.000 0.304 0.092 0.184 0.184 5 www.hostingplus.cl Linux 0:00:00 0.000 0.310 0.226 0.452 0.452 6 GoDaddy.com Inc Linux 0:00:00 0.
HAProxy could be made to execute arbitrary code if it received a specially crafted HTTP/2 header.
An update for ose-cluster-authentication-operator-container, ose-cluster-config-operator-container, and ose-cluster-kube-apiserver-operator-container is now available for Red Hat OpenShift Container Platform 4.1.
An update for ose-cluster-kube-apiserver-operator-container is now available for Red Hat OpenShift Container Platform 4.1. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
USN-4182-2 introduced a regression in the Intel Microcode for some Skylake processors.
USN-4182-1 introduced a regression in the Intel Microcode for some Skylake processors.