SECURITY

No Image

RHSA-2017:1679-1: Important: bind security and bug fix update

2017-07-05 KENNETH 0

RHSA-2017:1679-1: Important: bind security and bug fix update Red Hat Enterprise Linux: An update for bind is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2017-3142, CVE-2017-3143 Source: RHSA-2017:1679-1: Important: bind security and bug fix update

No Image

RHSA-2017:1680-1: Important: bind security and bug fix update

2017-07-05 KENNETH 0

RHSA-2017:1680-1: Important: bind security and bug fix update Red Hat Enterprise Linux: An update for bind is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2017-3142, CVE-2017-3143 Source: RHSA-2017:1680-1: Important: bind security and bug fix update

No Image

RHBA-2017:1674-1: kernel bug fix update

2017-07-04 KENNETH 0

RHBA-2017:1674-1: kernel bug fix update Red Hat Enterprise Linux: Updated kernel packages that one bug are now available for Red Hat Enterprise Linux 7. Source: RHBA-2017:1674-1: kernel bug fix update

No Image

RHBA-2017:1673-1: cockpit bug fix and enhancement update

2017-07-04 KENNETH 0

RHBA-2017:1673-1: cockpit bug fix and enhancement update Red Hat Enterprise Linux: Updated cockpit packages that fix several bugs and add various enhancements are now available for Red Hat Enterprise Linux 7 Extras. Source: RHBA-2017:1673-1: cockpit bug fix and enhancement update

No Image

USN-3347-1: Libgcrypt vulnerabilities

2017-07-04 KENNETH 0

USN-3347-1: Libgcrypt vulnerabilities Ubuntu Security Notice USN-3347-1 3rd July, 2017 libgcrypt11, libgcrypt20 vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 17.04 Ubuntu 16.10 Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary Several security issues were fixed in Libgcrypt. Software description libgcrypt11 – LGPL Crypto library libgcrypt20 – LGPL Crypto library Details Daniel J. Bernstein, Joachim Breitner, Daniel Genkin, Leon GrootBruinderink, Nadia Heninger, Tanja Lange, Christine van Vredendaal, andYuval Yarom discovered that Libgcrypt was susceptible to an attack viaside channels. A local attacker could use this attack to recover RSAprivate keys. (CVE-2017-7526) It was discovered that Libgcrypt was susceptible to an attack viaside channels. A local attacker could use this attack to possibly recoverEdDSA private keys. This issue only applied to Ubuntu 16.04 LTS, Ubuntu16.10 and Ubuntu 17.04. (CVE-2017-9526) Update instructions The problem can be corrected by [ more… ]