SECURITY

No Image

RHSA-2017:1495-1: Important: chromium-browser security update

2017-06-19 KENNETH 0

RHSA-2017:1495-1: Important: chromium-browser security update Red Hat Enterprise Linux: An update for chromium-browser is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2017-5087, CVE-2017-5088, CVE-2017-5089 Source: RHSA-2017:1495-1: Important: chromium-browser security update

No Image

RHSA-2017:1262-2: Important: rpcbind security update

2017-06-17 KENNETH 0

RHSA-2017:1262-2: Important: rpcbind security update Red Hat Enterprise Linux: An update for rpcbind is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. [Updated 16 June 2017] The packages distributed with this errata have a bug that can cause the rpcbind utility to terminate unexpectedly at start. RHBA-2017:1436 was released on 13 June 2017 to address this issue. CVE-2017-8779 Source: RHSA-2017:1262-2: Important: rpcbind security update

No Image

RHSA-2017:1267-2: Important: rpcbind security update

2017-06-17 KENNETH 0

RHSA-2017:1267-2: Important: rpcbind security update Red Hat Enterprise Linux: An update for rpcbind is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. [Updated 16 June 2017] The packages distributed with this errata have a bug that can cause the rpcbind utility to terminate unexpectedly at start. RHBA-2017:1435 was released on 13 June 2017 to address this issue. CVE-2017-8779 Source: RHSA-2017:1267-2: Important: rpcbind security update

No Image

USN-3320-1: zziplib vulnerabilities

2017-06-16 KENNETH 0

USN-3320-1: zziplib vulnerabilities Ubuntu Security Notice USN-3320-1 15th June, 2017 zziplib vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 17.04 Ubuntu 16.10 Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary zziplib could be made to crash or run programs as your login if it opened a specially crafted file. Software description zziplib – library providing read access on ZIP-archives Details Agostino Sarubbo discovered that zziplib incorrectly handled certainmalformed ZIP files. If a user or automated system were tricked intoopening a specially crafted ZIP file, a remote attacker could cause zziplibto crash, resulting in a denial of service, or possibly execute arbitrarycode. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 17.04: libzzip-0-13 0.13.62-3ubuntu0.17.04.1 Ubuntu 16.10: libzzip-0-13 0.13.62-3ubuntu0.16.10.1 Ubuntu 16.04 LTS: libzzip-0-13 0.13.62-3ubuntu0.16.04.1 Ubuntu 14.04 LTS: libzzip-0-13 0.13.62-2ubuntu0.1 To [ more… ]

No Image

USN-3319-1: libmwaw vulnerability

2017-06-16 KENNETH 0

USN-3319-1: libmwaw vulnerability Ubuntu Security Notice USN-3319-1 15th June, 2017 libmwaw vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 17.04 Ubuntu 16.10 Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary libmwaw could be made to crash or run programs as your login if it opened a specially crafted file. Software description libmwaw – import library for some old mac text document Details It was discovered that libmwaw incorrectly handled certain malformeddocument files. If a user or automated system were tricked into opening aspecially crafted file, a remote attacker could cause libmwaw to crash,resulting in a denial of service, or possibly execute arbitrary code. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 17.04: libmwaw-0.3-3 0.3.9-1ubuntu0.1 Ubuntu 16.10: libmwaw-0.3-3 0.3.8-2ubuntu0.1 Ubuntu 16.04 LTS: libmwaw-0.3-3 0.3.7-1ubuntu2.1 Ubuntu 14.04 LTS: libmwaw-0.1-1 [ more… ]