(Jun 20) Update to Chromium 67. Security fix for CVE-2018-6123 CVE-2018-6124 CVE-2018-6125 CVE-2018-6126 CVE-2018-6127 CVE-2018-6128 CVE-2018-6129 CVE-2018-6130 CVE-2018-6131 CVE-2018-6132 CVE-2018-6133 CVE-2018-6134 CVE-2018-6135 CVE-2018-6136 CVE-2018-6137 CVE-2018-6148
Archive for Other
Debian: DSA-4233-1: bouncycastle security update
(Jun 22) It was discovered that the low-level interface to the RSA key pair generator of Bouncy Castle (a Java implementation of cryptographic algorithms) could perform less Miller-Rabin primality tests than expected.
Debian: DSA-4234-1: lava-server security update
(Jun 22) Two vulnerabilities were discovered in LAVA, a continuous integration system for deploying operating systems for running tests, which could result in information disclosure of files readable by the lavaserver system user or the execution of arbitrary code via a XMLRPC call.
(Jun 20) Secunia Advisory SA83507, credits Kasper Leigh Haabb, Secunia Research at Flexera parse_qt: possible integer overflow reject broken/crafted NOKIARAW files Backported 0.19-patch to recover read position if TIFF/EXIF tag is too long
RedHat: RHSA-2018-1883:01 Low: samba4 security and bug fix update
(Jun 19) An update for samba4 is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from
RedHat: RHSA-2018-1877:01 Moderate: sssd and ding-libs security and bug fix
(Jun 19) An update for sssd and ding-libs is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
(Jun 20) Update to 2.8.3 – Fix security issue
Ubuntu 3691-1: OpenJDK 7 vulnerabilities
(Jun 21) Several security issues were fixed in OpenJDK 7.
(Jun 20) – Security fix for [CVE-2017-11546, CVE-2017-11547] – Fix the .desktop files so that opening a .mid file from a GUI filemanager works
RedHat: RHSA-2018-1944:01 Moderate: kernel-rt security update
(Jun 19) An update for kernel-rt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from
RedHat: RHSA-2018-1955:01 Important: glusterfs security update
(Jun 20) An update for glusterfs is now available for Native Client for Red Hat Enterprise Linux 6 for Red Hat Storage and Red Hat Gluster Storage 3.3 for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact
(Jun 20) The system could be made to expose sensitive information.
(Jun 20) http://www.simplesystems.org/libtiff/v4.0.9.html
(Jun 20) – Security fix for [CVE-2017-11546, CVE-2017-11547] – Fix the .desktop files so that opening a .mid file from a GUI filemanager works
RedHat: RHSA-2018-1957:01 Important: git security update
(Jun 20) An update for git is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
RedHat: RHSA-2018-1954:01 Important: glusterfs security update
(Jun 20) An update for glusterfs is now available for Native Client for Red Hat Enterprise Linux 7 for Red Hat Storage and Red Hat Gluster Storage 3.3 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact
(Jun 20) Security fix for CVE-2018-11652
(Jun 19) Libgcrypt could be made to expose sensitive information.
(Jun 20) This update provides mitigations for the “lazy FPU” vulnerability affecting a range of Intel CPUs, which could result in leaking CPU register states belonging to another vCPU previously scheduled on the same CPU. For additional information please refer to
RedHat: RHSA-2018-1948:01 Moderate: ansible security and bug fix update
(Jun 19) An update for ansible is now available for Red Hat Ansible Engine 2 for RHEL 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
RedHat: RHSA-2018-1949:01 Moderate: ansible security and bug fix update
(Jun 19) An update for ansible is now available for Red Hat Ansible Engine 2.5 for RHEL 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
(Jun 20) **MariaDB 10.2.15** Release notes: https://mariadb.com/kb/en/library/mariadb-10215-release-notes/ CVEs fixed: CVE-2018-2755 CVE-2018-2761 CVE-2018-2766 CVE-2018-2771 CVE-2018-2781 CVE-2018-2782 CVE-2018-2784 CVE-2018-2787 CVE-2018-2813 CVE-2018-2817 CVE-2018-2819 CVE-2018-2786 CVE-2018-2759 CVE-2018-2777 CVE-2018-2810 New
Python and Bash – Contenders for the most used scripting language
(Jun 19) Packt Publishing, publisher of software learning resources, has revealed the results of its 2018 Skill Up survey in a new report. …
(Jun 18) GnuPG could be made to incorrectly interpret the status of the cryptographic operation if it received specially crafted file.
RedHat: RHSA-2018-1854:01 Important: kernel security and bug fix update
(Jun 19) An update for kernel is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
RedHat: RHSA-2018-1932:01 Moderate: zsh security update
(Jun 19) An update for zsh is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from
Fedora 27: nodejs-uri-js Security Update
(Jun 17) Update to latest nodejs-uri-js for CVE fix
(Jun 17) Update to latest nodejs-uri-js for CVE fix
Debian: DSA-4230-1: redis security update
(Jun 17) Multiple vulnerabilities were discovered in the Lua subsystem of Redis, a persistent key-value database, which could result in denial of service. For the stable distribution (stretch), these problems have been fixed in
Debian: DSA-4231-1: libgcrypt20 security update
(Jun 17) It was discovered that Libgcrypt is prone to a local side-channel attack allowing recovery of ECDSA private keys. For the stable distribution (stretch), this problem has been fixed in