Fedora 29: perl-Email-Address Security Update
Jan18
on January 18, 2019
at 6:49 am
Posted In: Uncategorized
(Jan 18) Update to 1.912, fixes CVE-2015-7686 and CVE-2018-12558.
Comment
Archive for Other
2889 results.
Debian: DSA-4370-1: drupal7 security update
Jan18
on January 18, 2019
at 6:27 am
Posted In: Uncategorized
(Jan 17) Two vulnerabilities were found in Drupal, a fully-featured content management framework, which could result in arbitrary code execution. For additional information, please refer to the upstream advisories
RedHat: RHSA-2019-0095:01 Low: Red Hat Enterprise Linux 6.7 EUS Final
Jan18
on January 18, 2019
at 6:14 am
Posted In: Uncategorized
(Jan 17) This is the final notification for the retirement of Red Hat Enterprise Linux 6.7 Extended Update Support (EUS). This notification applies only to those customers subscribed to the Extended Update Support (EUS) channel for Red Hat Enterprise Linux 6.7.
RedHat: RHSA-2019-0081:01 Moderate: openvswitch security and bug fix update
Jan18
on January 18, 2019
at 6:14 am
Posted In: Uncategorized
(Jan 16) An update for openvswitch is now available for Red Hat OpenStack Platform 13.0 (Queens). Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
(Jan 17) Irssi could be made to crash or execute arbitrary code if it received a specially crafted input.
Ubuntu 3859-1: libarchive vulnerabilities
Jan18
on January 18, 2019
at 6:14 am
Posted In: Uncategorized
(Jan 15) Several security issues were fixed in libarchive.
Fedora 28: php-horde-Horde-Form Security Update
Jan17
on January 17, 2019
at 6:44 am
Posted In: Uncategorized
(Jan 16) **Horde_Form 2.0.19** * [mjr] SECURITY: Prevent RCE vulnerability due to potential directory traversal in Image uploads (An independent security researcher has reported this vulnerability to SecuriTeam Secure Disclosure program).
(Jan 16) Patch for CVE-2016-10091
Ubuntu 3861-2: PolicyKit vulnerability
Jan17
on January 17, 2019
at 6:01 am
Posted In: Uncategorized
(Jan 16) PolicyKit could allow unintended access.
Ubuntu 3861-1: PolicyKit vulnerability
Jan17
on January 17, 2019
at 6:01 am
Posted In: Uncategorized
(Jan 16) PolicyKit could allow unintended access.
RedHat: RHSA-2019-0085:01 Moderate: pyOpenSSL security and bug fix update
Jan17
on January 17, 2019
at 6:01 am
Posted In: Uncategorized
(Jan 16) An update for pyOpenSSL is now available for Red Hat OpenStack Platform 13.0 (Queens). Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
RedHat: RHSA-2019-0082:01 Moderate: python-django security update
Jan17
on January 17, 2019
at 6:01 am
Posted In: Uncategorized
(Jan 16) An update for python-django is now available for Red Hat OpenStack Platform 13.0 (Queens). Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
(Jan 16) This update fixes CVE-2018-20685 (the first “variant”) and backports several fixes to unbreak ECDSA authentication from PKCS#11, certificate authentication and so on.
Debian: DSA-4367-2: systemd regression update
Jan16
on January 16, 2019
at 6:43 am
Posted In: Uncategorized
(Jan 15) The Qualys Research Labs reported that the backported security fixes shipped in DSA 4367-1 contained a memory leak in systemd-journald. This and an unrelated bug in systemd-coredump are corrected in this update.
Fedora 29: php-horde-Horde-Form Security Update
Jan16
on January 16, 2019
at 6:37 am
Posted In: Uncategorized
(Jan 16) **Horde_Form 2.0.19** * [mjr] SECURITY: Prevent RCE vulnerability due to potential directory traversal in Image uploads (An independent security researcher has reported this vulnerability to SecuriTeam Secure Disclosure program).
RedHat: RHSA-2019-0059:01 Important: libvncserver security update
Jan16
on January 16, 2019
at 5:56 am
Posted In: Uncategorized
(Jan 15) An update for libvncserver is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
Ubuntu 3860-2: libcaca vulnerabilities
Jan16
on January 16, 2019
at 5:56 am
Posted In: Uncategorized
(Jan 15) Several security issues were fixed in libcaca.
Ubuntu 3860-1: libcaca vulnerabilities
Jan16
on January 16, 2019
at 5:56 am
Posted In: Uncategorized
(Jan 15) Several security issues were fixed in libcaca.
(Jan 15) New upstream version 1.4.4. Fix low priority security issue with TLS: https://www.redhat.com/archives/libguestfs/2018-December/msg00047.html
Debian: DSA-4368-1: zeromq3 security update
Jan15
on January 15, 2019
at 6:07 am
Posted In: Uncategorized
(Jan 14) Guido Vranken discovered that an incorrect bounds check in ZeroMQ, a lightweight messaging kernel, could result in the execution of arbitrary code.
Debian: DSA-4369-1: xen security update
Jan15
on January 15, 2019
at 5:59 am
Posted In: Uncategorized
(Jan 14) Multiple vulnerabilities have been discovered in the Xen hypervisor: CVE-2018-19961 / CVE-2018-19962
(Jan 14) XXX FILL ME IN: Summary for regular (non-admin) users XXX
Ubuntu 3856-1: GNOME Bluetooth vulnerability
Jan15
on January 15, 2019
at 5:52 am
Posted In: Uncategorized
(Jan 14) GNOME Bluetooth could allow unintended access to devices.
(Jan 15) Added explicit Requires for nettle >= 3.4.1
RedHat: RHSA-2019-0049:01 Important: systemd security update
Jan15
on January 15, 2019
at 5:52 am
Posted In: Uncategorized
(Jan 14) An update for systemd is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
Debian: DSA-4367-1: systemd security update
Jan14
on January 14, 2019
at 6:36 am
Posted In: Uncategorized
(Jan 13) The Qualys Research Labs discovered multiple vulnerabilities in systemd-journald. Two memory corruption flaws, via attacker-controlled alloca()s (CVE-2018-16864, CVE-2018-16865) and an out-of-bounds read flaw leading to an information leak (CVE-2018-16866), could allow an attacker to
Fedora 28: php-horde-Horde-Image Security Update
Jan14
on January 14, 2019
at 6:08 am
Posted In: Uncategorized
(Jan 11) **Horde_Image 2.5.4** * [mjr] SECURITY: Fix potential RCE in the text method when using the Imagemagick backend. * [mjr] SECURITY: Sanitize image type parameter (PR: 2, Fariskhi Vidyan). * [mjr] Fix issues with escaping single and double quote characters in the text method when using the Imagemagick backend.
Debian: DSA-4366-1: vlc security update
Jan13
on January 13, 2019
at 6:29 am
Posted In: Uncategorized
(Jan 12) An integer underflow was discovered in the CAF demuxer of the VLC media player. For the stable distribution (stretch), this problem has been fixed in
(Jan 11) backport anti-phishing fixes
(Jan 13) Due to kernel issue there is a way to reuse start_time of a process. This allows to duplicate process authorized by polkit. This update mitigates polkit issue #75 (slowfork): https://gitlab.freedesktop.org/polkit/polkit/issues/75