Fedora 29: mingw-nettle Security Update
Jan12
on January 12, 2019
at 5:51 am
Posted In: Uncategorized
(Jan 12) Resolves CVE-2018-16869
Comment
Archive for Other
2889 results.
Fedora 28: mingw-nettle Security Update
Jan12
on January 12, 2019
at 5:37 am
Posted In: Uncategorized
(Jan 12) Resolves CVE-2018-16869
Ubuntu 3855-1: systemd vulnerabilities
Jan12
on January 12, 2019
at 5:27 am
Posted In: Uncategorized
(Jan 11) Several security issues were fixed in systemd.
(Jan 10) Several security issues were fixed in Exiv2.
Fedora 29: python-django Security Update
Jan11
on January 11, 2019
at 6:09 am
Posted In: Uncategorized
(Jan 11) fix CVE-2019-3498 python-django: Content spoofing via URL path in
Fedora 29: php-horde-Horde-Image Security Update
Jan11
on January 11, 2019
at 5:55 am
Posted In: Uncategorized
(Jan 11) **Horde_Image 2.5.4** * [mjr] SECURITY: Fix potential RCE in the text method when using the Imagemagick backend. * [mjr] SECURITY: Sanitize image type parameter (PR: 2, Fariskhi Vidyan). * [mjr] Fix issues with escaping single and double quote characters in the text method when using the Imagemagick backend.
Debian: DSA-4365-1: tmpreaper security update
Jan11
on January 11, 2019
at 5:49 am
Posted In: Uncategorized
(Jan 10) Stephen Roettger discovered a race condition in tmpreaper, a program that cleans up files in directories based on their age, which could result in local privilege escalation.
Ubuntu 3854-1: WebKitGTK+ vulnerabilities
Jan11
on January 11, 2019
at 5:26 am
Posted In: Uncategorized
(Jan 10) Several security issues were fixed in WebKitGTK+.
(Jan 10) GnuPG could allow unintended access to network services.
(Jan 9) Several security issues were fixed in NSS.
(Jan 9) Django could be made to expose spoofed information over the network.
RedHat: RHSA-2019-0040:01 Moderate: .NET Core on Red Hat Enterprise Linux
Jan10
on January 10, 2019
at 5:16 am
Posted In: Uncategorized
(Jan 9) Updates for rh-dotnet21-dotnet and rh-dotnet22-dotnet are now available for .NET Core on Red Hat Enterprise Linux. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
Debian: DSA-4363-1: python-django security update
Jan09
on January 9, 2019
at 5:32 am
Posted In: Uncategorized
(Jan 8) It was discovered that malformed URLs could spoof the content of the default 404 page of Django, a Python web development framework. For the stable distribution (stretch), this problem has been fixed in
Debian: DSA-4364-1: ruby-loofah security update
Jan09
on January 9, 2019
at 5:19 am
Posted In: Uncategorized
(Jan 8) It was discovered that ruby-loofah, a general library for manipulating and transforming HTML/XML documents and fragments, performed insufficient sanitising of SVG elements.
RedHat: RHSA-2019-0036:01 Important: source-to-image security, bug fix,
Jan09
on January 9, 2019
at 5:13 am
Posted In: Uncategorized
(Jan 8) An update for source-to-image is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,
(Jan 8) Improve memset hygiene in one location.
RedHat: RHSA-2019-0031:01 Low: Red Hat Enterprise Linux 6.6 Telco Update
Jan08
on January 8, 2019
at 5:10 am
Posted In: Uncategorized
(Jan 7) This is the final notification for the retirement of Red Hat Enterprise Linux 6.6 Telco Update Service (TUS). This notification applies only to those customers subscribed to the Telco Update Service (TUS) channel for Red Hat Enterprise Linux 6.6.
(Jan 6) This release (4.3.1) contains bug fixes only: – Fix checkspell detected typos (#531) – Heap overflow packet2tree and get_l2len (#530) This is Tcpreplay suite 4.3.0 This release contains several bug fixes and enhancements: – Fix maxOS TOS checksum failure (#524) – TCP sequence edits seeding (#514) – Fix issues identifed by Codacy (#493) – CVE-2018-18408 use-after-free in post_args (#489) –
(Jan 6) This release (4.3.1) contains bug fixes only: – Fix checkspell detected typos (#531) – Heap overflow packet2tree and get_l2len (#530) This is Tcpreplay suite 4.3.0 This release contains several bug fixes and enhancements: – Fix maxOS TOS checksum failure (#524) – TCP sequence edits seeding (#514) – Fix issues identifed by Codacy (#493) – CVE-2018-18408 use-after-free in post_args (#489) –
(Dec 30) **Archive_Tar version 1.4.4** * Fix Bug #21058: Long symlinks are not supported [mrook] * Fix Bug #23782: Prevent phar:// files from being extracted [mrook] — **PEAR version 1.10.7** * PR #79: Prevent Unable to find the wrapper “channel” Warning * PR #80: fix Warning: “continue” targeting switch is equivalent to “break”. Did you mean to use “continue 2” * PR #81: Add flags to
(Dec 30) – Update to latest upstream release 0.1.16
(Jan 4) Update to upstream release 1.20.1 to fix CVE-2018-20483.
(Dec 30) Update to leptonica-1.77.0, see http://www.leptonica.com/source/version- notes.html for details.
RedHat: RHSA-2019-0022:01 Important: keepalived security update
Jan04
on January 4, 2019
at 4:56 am
Posted In: Uncategorized
(Jan 3) An update for keepalived is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
RedHat: RHSA-2019-0019:01 Moderate: grafana security and bug fix update
Jan04
on January 4, 2019
at 4:56 am
Posted In: Uncategorized
(Jan 3) The updated grafana package is now available for Red Hat Ceph Storage 3.2. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from
Fedora 29: mingw-poppler Security Update
Jan03
on January 3, 2019
at 5:52 am
Posted In: Uncategorized
(Dec 30) This update fixes CVE-2018-16646, CVE-2018-19058, CVE-2018-19059, CVE-2018-19060, CVE-2018-19149.
Fedora 29: mingw-leptonica Security Update
Jan03
on January 3, 2019
at 5:23 am
Posted In: Uncategorized
(Dec 30) Update to leptonica-1.77.0, see http://www.leptonica.com/source/version- notes.html for details.
Debian: DSA-4360-1: libarchive security update
Jan03
on January 3, 2019
at 5:06 am
Posted In: Uncategorized
(Dec 27) Multiple security issues were found in libarchive, a multi-format archive and compression library: Processing malformed RAR archives could result in denial of service or the execution of arbitrary code and malformed WARC, LHarc, ISO, Xar or CAB archives could result in denial of service.
Debian: DSA-4359-1: wireshark security update
Jan03
on January 3, 2019
at 5:05 am
Posted In: Uncategorized
(Dec 27) Multiple vulnerabilities have been discovered in Wireshark, a network protocol analyzer, which could result in denial of service or the execution of arbitrary code.
RedHat: RHSA-2019-0001:01 Important: rh-perl526-perl security and
Jan03
on January 3, 2019
at 4:56 am
Posted In: Uncategorized
(Jan 2) An update for rh-perl526-perl and rh-perl526-perl-Module-CoreList is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,