SECURITY

No Image

USN-3236-1: Oxide vulnerabilities

2017-03-30 KENNETH 0

USN-3236-1: Oxide vulnerabilities Ubuntu Security Notice USN-3236-1 29th March, 2017 oxide-qt vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.10 Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary Several security issues were fixed in Oxide. Software description oxide-qt – Web browser engine for Qt (QML plugin) Details Multiple vulnerabilities were discovered in Chromium. If a user weretricked in to opening a specially crafted website, an attacker couldpotentially exploit these to obtain sensitive information, spoofapplication UI by causing the security status API or webview URL toindicate the wrong values, bypass security restrictions, cause a denialof service via application crash, or execute arbitrary code.(CVE-2017-5029, CVE-2017-5030, CVE-2017-5031, CVE-2017-5033,CVE-2017-5035, CVE-2017-5037, CVE-2017-5040, CVE-2017-5041, CVE-2017-5044,CVE-2017-5045, CVE-2017-5046) Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 16.10: liboxideqtcore0 1.21.5-0ubuntu0.16.10.1 Ubuntu 16.04 LTS: liboxideqtcore0 1.21.5-0ubuntu0.16.04.1 Ubuntu [ more… ]

No Image

RHBA-2017:0849-1: kernel bug fix update

2017-03-30 KENNETH 0

RHBA-2017:0849-1: kernel bug fix update Red Hat Enterprise Linux: Updated kernel packages that fix two bugs are now available for Red Hat Enterprise Linux 6.5 Advanced Update Support. Source: RHBA-2017:0849-1: kernel bug fix update

No Image

RHSA-2017:0847-1: Moderate: curl security update

2017-03-29 KENNETH 0

RHSA-2017:0847-1: Moderate: curl security update Red Hat Enterprise Linux: An update for curl is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2017-2628 Source: RHSA-2017:0847-1: Moderate: curl security update

No Image

USN-3247-1: AppArmor vulnerability

2017-03-29 KENNETH 0

USN-3247-1: AppArmor vulnerability Ubuntu Security Notice USN-3247-1 28th March, 2017 apparmor vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.10 Ubuntu 16.04 LTS Ubuntu 14.04 LTS Ubuntu 12.04 LTS Summary AppArmor could remove the confinement from some programs. Software description apparmor – Linux security system Details Stéphane Graber discovered that AppArmor incorrectly unloaded some profileswhen restarted or upgraded, contrary to expected behavior. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 16.10: apparmor 2.10.95-4ubuntu5.3 Ubuntu 16.04 LTS: apparmor 2.10.95-0ubuntu2.6 Ubuntu 14.04 LTS: apparmor 2.10.95-0ubuntu2.6~14.04.1 Ubuntu 12.04 LTS: apparmor 2.7.102-0ubuntu3.11 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. After a standard system update you need to reboot your computer to makeall the necessary changes. A new utility, called aa-remove-unknown, was added to assist with profiles thatwould have [ more… ]

No Image

RHBA-2017:0846-1: grubby bug fix update

2017-03-29 KENNETH 0

RHBA-2017:0846-1: grubby bug fix update Red Hat Enterprise Linux: Updated grubby packages that fix one bug are now available for Red Hat Enterprise Linux 7.1 Extended Update Support. Source: RHBA-2017:0846-1: grubby bug fix update