SECURITY

No Image

RHSA-2016:2706-1: Moderate: qemu-kvm-rhev security, bug fix, and enhancement update

2016-11-15 KENNETH 0

RHSA-2016:2706-1: Moderate: qemu-kvm-rhev security, bug fix, and enhancement update Red Hat Enterprise Linux: An update for qemu-kvm-rhev is now available for Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2015-8817, CVE-2015-8818 Source: RHSA-2016:2706-1: Moderate: qemu-kvm-rhev security, bug fix, and enhancement update

No Image

RHSA-2016:2718-1: Important: chromium-browser security update

2016-11-15 KENNETH 0

RHSA-2016:2718-1: Important: chromium-browser security update Red Hat Enterprise Linux: An update for chromium-browser is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2016-5199, CVE-2016-5200, CVE-2016-5201, CVE-2016-5202 Source: RHSA-2016:2718-1: Important: chromium-browser security update

No Image

RHSA-2016:2702-1: Important: policycoreutils security update

2016-11-14 KENNETH 0

RHSA-2016:2702-1: Important: policycoreutils security update Red Hat Enterprise Linux: An update for policycoreutils is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2016-7545 Source: RHSA-2016:2702-1: Important: policycoreutils security update

No Image

USN-3128-1: Linux kernel vulnerability

2016-11-11 KENNETH 0

USN-3128-1: Linux kernel vulnerability Ubuntu Security Notice USN-3128-1 11th November, 2016 linux vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.04 LTS Summary The system could be made to crash under certain conditions. Software description linux – Linux kernel Details Ondrej Kozina discovered that the keyring interface in the Linux kernelcontained a buffer overflow when displaying timeout events via the/proc/keys interface. A local attacker could use this to cause a denial ofservice (system crash). Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 16.04 LTS: linux-image-4.4.0-47-powerpc64-emb 4.4.0-47.68 linux-image-powerpc-e500mc 4.4.0.47.50 linux-image-4.4.0-47-lowlatency 4.4.0-47.68 linux-image-4.4.0-47-powerpc64-smp 4.4.0-47.68 linux-image-4.4.0-47-generic 4.4.0-47.68 linux-image-4.4.0-47-powerpc-smp 4.4.0-47.68 linux-image-powerpc-smp 4.4.0.47.50 linux-image-generic-lpae 4.4.0.47.50 linux-image-powerpc64-emb 4.4.0.47.50 linux-image-virtual 4.4.0.47.50 linux-image-4.4.0-47-generic-lpae 4.4.0-47.68 linux-image-generic 4.4.0.47.50 linux-image-lowlatency 4.4.0.47.50 linux-image-4.4.0-47-powerpc-e500mc 4.4.0-47.68 linux-image-powerpc64-smp 4.4.0.47.50 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. After a standard [ more… ]

No Image

USN-3127-2: Linux kernel (Trusty HWE) vulnerabilities

2016-11-11 KENNETH 0

USN-3127-2: Linux kernel (Trusty HWE) vulnerabilities Ubuntu Security Notice USN-3127-2 11th November, 2016 linux-lts-trusty vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 12.04 LTS Summary Several security issues were fixed in the kernel. Software description linux-lts-trusty – Linux hardware enablement kernel from Trusty for Precise Details USN-3127-1 fixed vulnerabilities in the Linux kernel for Ubuntu 14.04LTS. This update provides the corresponding updates for the LinuxHardware Enablement (HWE) kernel from Ubuntu 14.04 LTS for Ubuntu12.04 LTS. It was discovered that the compression handling code in the Advanced LinuxSound Architecture (ALSA) subsystem in the Linux kernel did not properlycheck for an integer overflow. A local attacker could use this to cause adenial of service (system crash). (CVE-2014-9904) Kirill A. Shutemov discovered that memory manager in the Linux kernel didnot properly handle anonymous pages. A local attacker could [ more… ]