No Image

RHSA-2016:0158-1: Moderate: python-django security update

2016-02-10 KENNETH 0

Red Hat Enterprise Linux: Updated python-django packages that fix one security issue are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. CVE-2015-8213 Source: rhn-errata

No Image

RHSA-2016:0157-1: Moderate: python-django security update

2016-02-10 KENNETH 0

Red Hat Enterprise Linux: Updated python-django packages that fix one security issue are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. CVE-2015-8213 Source: rhn-errata

Introducing Dynamic Modules in NGINX 1.9.11

2016-02-10 KENNETH 0

Today we released open source NGINX version 1.9.11, with a new feature that we believe will have a huge impact on how you use NGINX and NGINX Plus: dynamic modules. With dynamic modules, you can optionally load separate shared object files at runtime as modules – both third-party modules and some native NGINX modules. The new implementation maintains backward compatibility with the module API as much as possible. The next NGINX Plus release (NGINX Plus R9) will build on this dynamic modules feature. We plan to establish a managed modules repository with a range of third-party modules that we have tested and certified against NGINX Plus, making it easier for you to add common extensions to NGINX Plus with confidence. If you would like to have your open source or commercial modules included in our repository, please reach out to us through the Contact Sales [ more… ]

No Image

USN-2892-1: nginx vulnerabilities

2016-02-10 KENNETH 0

Ubuntu Security Notice USN-2892-1 9th February, 2016 nginx vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 15.10 Ubuntu 14.04 LTS Summary Several security issues were fixed in nginx. Software description nginx – small, powerful, scalable web/proxy server Details It was discovered that nginx incorrectly handled certain DNS serverresponses when the resolver is enabled. A remote attacker could possiblyuse this issue to cause nginx to crash, resulting in a denial of service.(CVE-2016-0742) It was discovered that nginx incorrectly handled CNAME response processingwhen the resolver is enabled. A remote attacker could use this issue tocause nginx to crash, resulting in a denial of service, or possibly executearbitrary code. (CVE-2016-0746) It was discovered that nginx incorrectly handled CNAME resolution whenthe resolver is enabled. A remote attacker could possibly use this issue tocause nginx to consume resources, resulting in [ more… ]

No Image

February 2016 Security Update Release Summary

2016-02-10 KENNETH 0

Today we released security updates to provide additional protections against malicious attackers. As a best practice, we encourage customers to apply security updates as soon as they are released. More information about this month’s security updates and advisories can be found in the Security TechNet Library.  MSRC Team Source: ms-msrc