SECURITY

No Image

USN-3193-1: Nettle vulnerability

2017-02-07 KENNETH 0

USN-3193-1: Nettle vulnerability Ubuntu Security Notice USN-3193-1 6th February, 2017 nettle vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.10 Ubuntu 16.04 LTS Ubuntu 14.04 LTS Ubuntu 12.04 LTS Summary Nettle could be made to expose sensitive information over the network. Software description nettle – low level cryptographic library (public-key cryptos) Details It was discovered that Nettle incorrectly mitigated certain timingside-channel attacks. A remote attacker could possibly use this flaw torecover private keys. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 16.10: libnettle6 3.2-1ubuntu0.16.10.1 Ubuntu 16.04 LTS: libnettle6 3.2-1ubuntu0.16.04.1 Ubuntu 14.04 LTS: libnettle4 2.7.1-1ubuntu0.2 Ubuntu 12.04 LTS: libnettle4 2.4-1ubuntu0.1 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. In general, a standard system update will make all the necessary changes. References CVE-2016-6489 Source: USN-3193-1: Nettle vulnerability

No Image

RHBA-2017:0255-1: rh-nodejs4 bug fix update

2017-02-06 KENNETH 0

RHBA-2017:0255-1: rh-nodejs4 bug fix update Red Hat Enterprise Linux: Updated rh-nodejs4 packages that fix one bug are now available as a part of Red Hat Software Collections for Red Hat Enterprise Linux 6. Source: RHBA-2017:0255-1: rh-nodejs4 bug fix update

No Image

RHSA-2017:0252-1: Moderate: ntp security update

2017-02-06 KENNETH 0

RHSA-2017:0252-1: Moderate: ntp security update Red Hat Enterprise Linux: An update for ntp is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2016-7426, CVE-2016-7429, CVE-2016-7433, CVE-2016-9310, CVE-2016-9311 Source: RHSA-2017:0252-1: Moderate: ntp security update

No Image

RHSA-2017:0253-1: Moderate: spice-server security update

2017-02-06 KENNETH 0

RHSA-2017:0253-1: Moderate: spice-server security update Red Hat Enterprise Linux: An update for spice-server is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2016-9577, CVE-2016-9578 Source: RHSA-2017:0253-1: Moderate: spice-server security update

No Image

RHSA-2017:0254-1: Moderate: spice security update

2017-02-06 KENNETH 0

RHSA-2017:0254-1: Moderate: spice security update Red Hat Enterprise Linux: An update for spice is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2016-9577, CVE-2016-9578 Source: RHSA-2017:0254-1: Moderate: spice security update