An update for rh-dotnet31-dotnet is now available for .NET Core on Red Hat Enterprise Linux. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,
Archive for September, 2020
The 5.8.6 stable kernel update contains a number of important fixes across the tree.
The 5.8.6 stable kernel update contains a number of important fixes across the tree.
Several security issues were fixed in libx11.
Update to upstream bugfix and security release 2.9.13. —- Update to 2.9.12 upstream bugfix and security update
Add patch for CVE-2020-24661: Handling of pinned, invalid TLS certificates.
X.Org X Server could be made to crash or run programs if it received specially crafted input.
An update for jenkins-2-plugins is now available for Red Hat OpenShift Container Platform 4.4. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,
The system could be made to crash or run programs as an administrator.
It was discovered that the default configuration files for running the Lemonldap::NG Web SSO system on the Nginx web server were susceptible to authorisation bypass of URL access rules. The Debian packages do not use Nginx by default.
It was discovered that ZeroMQ, a lightweight messaging kernel library does not properly handle connecting peers before a handshake is completed. A remote, unauthenticated client connecting to an application using the libzmq library, running with a socket listening with CURVE
The 5.8.6 stable kernel update contains a number of important fixes across the tree.
Update to the new upstream 3.6.15 release.
An update is now available for Red Hat JBoss Enterprise Application Platform 7.2. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,
An update is now available for Red Hat JBoss Enterprise Application Platform 7.2 for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,
Rank | Performance Graph | OS | Outage hh:mm:ss |
Failed Req% |
DNS | Connect | First byte |
Total |
---|---|---|---|---|---|---|---|---|
1 | www.choopa.com | Linux | 0:00:00 | 0.000 | 0.285 | 0.005 | 0.022 | 0.022 |
2 | Swishmail | Linux | 0:00:00 | 0.000 | 0.266 | 0.082 | 0.163 | 0.163 |
3 | Rackspace | Linux | 0:00:00 | 0.005 | 0.524 | 0.010 | 0.023 | 0.023 |
4 | Bigstep | Linux | 0:00:00 | 0.005 | 0.245 | 0.077 | 0.154 | 0.154 |
5 | EveryCity | SmartOS | 0:00:00 | 0.005 | 0.254 | 0.086 | 0.174 | 0.174 |
6 | www.flexential.com | Linux | 0:00:00 | 0.010 | 0.312 | 0.087 | 0.173 | 0.173 |
7 | krystal.uk | Linux | 0:00:00 | 0.010 | 0.248 | 0.089 | 0.176 | 0.176 |
8 | CWCS Managed Hosting | Linux | 0:00:00 | 0.014 | 0.324 | 0.078 | 0.159 | 0.159 |
9 | New York Internet (NYI) | FreeBSD | 0:00:00 | 0.019 | 0.577 | 0.056 | 0.112 | 0.112 |
10 | ServerStack | Linux | 0:00:00 | 0.024 | 0.267 | 0.084 | 0.168 | 0.168 |
The most reliable hosting company site in August 2020 belonged to Choopa.com, with no failed requests and the fastest average connection time. Choopa.com has now had the most reliable hosting company site three times in 2020. The company provides a range of services including cloud hosting, dedicated servers, colocation and managed services from four locations across the US, Europe and Asia.
Swishmail appeared in second place, also responding to all of Netcraft’s requests in August. Swishmail provides business email services alongside hosting solutions.
Rackspace, Bigstep and EveryCity appear in third, fourth and fifth places. Rackspace had the second fastest average connection time and has appeared in the top 10 six times in 2020. Bigstep offers “bare metal” cloud hosting to provide the flexibility of cloud hosting but without the associated overhead and performance reductions of virtualization. EveryCity has appeared in the top 10 seven times in 2020 and is the only site that uses SmartOS.
Multiple security issues were discovered in QEMU, a fast processor emulator: CVE-2020-12829
Several vulnerabilities have been discovered in the X.Org X server. Missing input sanitising in X server extensions may result in local privilege escalation if the X server is configured to run with root privileges. In addition an ASLR bypass was fixed.
Fabian Vogt reported that the Ark archive manager did not sanitise extraction paths, which could result in maliciously crafted archives with symlinks writing outside the extraction directory.
Update to Chromium 85.0.4183.83. Bugs fixed, security holes patched, and features added. Hold on to your butts. List of CVEs resolved with this update: CVE-2020-6532 CVE-2020-6537 CVE-2020-6538 CVE-2020-6539 CVE-2020-6540 CVE-2020-6541 CVE-2020-6542 CVE-2020-6543 CVE-2020-6544 CVE-2020-6545 CVE-2020-6546 CVE-2020-6547 CVE-2020-6548 CVE-2020-6549 CVE-2020-6550
When you host your email on your domain with an SMTP server, you are in control. You can choose an email address to suit your business or personal brand. All the data is stored privately on a server or hosting account only you can access. If you want to move to a different hosting provider, there’s nothing to stop you because you aren’t locked-in to a hosted service. So why don’t more people host their …
The post Setting Up and Troubleshooting SMTP in cPanel first appeared on cPanel Blog.
USN-4474-1 caused some minor regressions in Firefox.
Rebased to version 8.0.21
Squid version update to 4.13 and security fixes
Fix CVE-2020-24370 .
This release includes the latest stable version of Apache **httpd**, version **2.4.46**. A security issue is addressed in this update: * **CVE-2020-11984** mod_proxy_uwsgi: Malicious request may result in information disclosure or RCE of existing file on the server running under a malicious process environment. For the full list of changes in this release, see
Squid version update to 4.13 and security fixes
geary 3.36.3.1 release: * Fixed handling of pinned, invalid TLS certificates: CVE-2020-24661 * Build bug fixes
An update for Red Hat Data Grid is now available. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from
CVE-2020-12100: Parsing mails with a large number of MIME parts could have resulted in excessive CPU usage or a crash due to running out of stack memory. CVE-2020-12673: Dovecot’s NTLM implementation does not correctly check message buffer size, which leads to reading past allocation which can lead to crash. CVE-2020-10967: lmtp/submission: