(Sep 18) Several security issues were fixed in PHP.
Archive for Other
Ubuntu 3768-1: Ghostscript vulnerabilities
(Sep 19) Several security issues were fixed in Ghostscript.
Fedora 28: gitolite3 Security Update
(Sep 21) 3.6.9
Fedora 29: ghostscript Security Update
(Sep 21) This is a security update for `CVE-2018-16802`. It also fixes a printing problem discovered in one of the previous CVE fixes. NOTE: *Please, be advised that there’s a separate issue related to printing problems, which is connected to CUPS itself, meaning this update might not completely resolve your printing issues.* —- This is a rebase to latest upstream version of `Ghostscript`,
RedHat: RHSA-2018-2732:01 Important: spice-gtk and spice-server security
(Sep 20) An update for spice-gtk and spice-server is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,
RedHat: RHSA-2018-2729:01 Moderate: Red Hat Enterprise Linux OpenStack
(Sep 20) An update is now available for Red Hat OpenStack Platform 12.0 (Pike). Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from
(Sep 20) Bind could be made to crash if it received specially crafted network traffic.
(Sep 19) Several security issues were fixed in GLib.
(Sep 17) Security fix for CVE-2017-15422
Debian: DSA-4298-1: hylafax security update
(Sep 20) Luis Merino, Markus Vervier and Eric Sesterhenn discovered that missing input sanitising in the Hylafax fax software could potentially result in the execution of arbitrary code via a malformed fax message.
(Sep 18) Updates the nss family of packages to upstream NSPR 4.20 and NSS 3.39. For details about new functionality and a list of bugs fixed in this release please see the upstream release notes https://developer.mozilla.org/en- US/docs/Mozilla/Projects/NSS/NSS_3.39_release_notes
Ubuntu 3770-2: Little CMS vulnerabilities
(Sep 20) Several security issues were fixed in Little CMS.
Ubuntu 3770-1: Little CMS vulnerabilities
(Sep 20) Several security issues were fixed in Little CMS.
RedHat: RHSA-2018-2731:01 Important: spice and spice-gtk security update
(Sep 20) An update for spice and spice-gtk is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,
RedHat: RHSA-2018-2733:01 Critical: rubygem-smart_proxy_dynflow security
(Sep 20) An update for rubygem-smart_proxy_dynflow is now available for Red Hat Satellite 6.3 for RHEL 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which
Debian: DSA-4297-1: chromium-browser security update
(Sep 19) Two vulnerabilities have been discovered in the chromium web browser. Kevin Cheung discovered an error in the WebAssembly implementation and evil1m0 discovered a URL spoofing issue.
Fedora 27: nss-softokn Security Update
(Sep 18) Updates the nss family of packages to upstream NSPR 4.20 and NSS 3.39. For details about new functionality and a list of bugs fixed in this release please see the upstream release notes https://developer.mozilla.org/en- US/docs/Mozilla/Projects/NSS/NSS_3.39_release_notes
(Sep 18) Updates the nss family of packages to upstream NSPR 4.20 and NSS 3.39. For details about new functionality and a list of bugs fixed in this release please see the upstream release notes https://developer.mozilla.org/en- US/docs/Mozilla/Projects/NSS/NSS_3.39_release_notes
Linux and Open Source FAQs: Common Myths and Misconceptions Addressed
(Sep 18) LinuxSecurity debunks some common myths and misconceptions regarding open source and Linux by answering a few Linux-related frequently asked questions. …
RedHat: RHSA-2018-2712:01 Moderate: java-1.7.1-ibm security update
(Sep 17) An update for java-1.7.1-ibm is now available for Red Hat Satellite 5.6 and Red Hat Satellite 5.7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
(Sep 19) Several security issues were fixed in PHP.
(Sep 19) Several security issues were fixed in GLib.
RedHat: RHSA-2018-2713:01 Moderate: java-1.8.0-ibm security update
(Sep 17) An update for java-1.8.0-ibm is now available for Red Hat Satellite 5.8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from
Debian: DSA-4294-1: ghostscript security update
(Sep 16) Tavis Ormandy discovered multiple vulnerabilites in Ghostscript, an interpreter for the PostScript language, which could result in the execution of arbitrary code if a malformed Postscript file is processed (despite the dSAFER sandbox being enabled).
(Sep 18) Updates the nss family of packages to upstream NSPR 4.20 and NSS 3.39. For details about new functionality and a list of bugs fixed in this release please see the upstream release notes https://developer.mozilla.org/en- US/docs/Mozilla/Projects/NSS/NSS_3.39_release_notes
(Sep 18) Security fix for CVE-2018-1000801
Debian: DSA-4273-2: intel-microcode security update
(Sep 16) This update ships updated CPU microcode for additional models of Intel CPUs which were not yet covered by the Intel microcode update released as DSA-4273-1 (and thus provides SSBD support (needed to address “Spectre v4”) and fixes for “Spectre v3a”)).
RedHat: RHSA-2018-2710:01 Moderate: openstack-neutron security update
(Sep 17) An update for openstack-neutron is now available for Red Hat OpenStack Platform 13.0 (Queens). Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
Ubuntu 3722-6: ClamAV vulnerabilities
(Sep 18) USN-3722-1 introduced a regression in ClamAV.
(Sep 18) USN-3722-1 introduced a regression in ClamAV.