SECURITY

No Image

USN-3043-1: OpenJDK 8 vulnerabilities

2016-07-27 KENNETH 0

USN-3043-1: OpenJDK 8 vulnerabilities Ubuntu Security Notice USN-3043-1 27th July, 2016 openjdk-8 vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.04 LTS Summary Several security issues were fixed in OpenJDK 8. Software description openjdk-8 – Open Source Java implementation Details Multiple vulnerabilities were discovered in the OpenJDK JRE related toinformation disclosure, data integrity, and availability. An attackercould exploit these to cause a denial of service, expose sensitive dataover the network, or possibly execute arbitrary code. (CVE-2016-3587,CVE-2016-3598, CVE-2016-3606, CVE-2016-3610) A vulnerability was discovered in the OpenJDK JRE related to dataintegrity. An attacker could exploit this to expose sensitive dataover the network or possibly execute arbitrary code. (CVE-2016-3458) Multiple vulnerabilities were discovered in the OpenJDK JRE relatedto availability. An attacker could exploit these to cause a denialof service. (CVE-2016-3500, CVE-2016-3508) A vulnerability was discovered in the OpenJDK [ more… ]

No Image

USN-3042-1: KDE-Libs vulnerability

2016-07-27 KENNETH 0

USN-3042-1: KDE-Libs vulnerability Ubuntu Security Notice USN-3042-1 26th July, 2016 kde4libs vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 15.10 Ubuntu 14.04 LTS Ubuntu 12.04 LTS Summary KDE-Libs could be made to overwrite files. Software description kde4libs – KDE 4 core applications and libraries Details Andreas Cord-Landwehr discovered that KDE-Libs incorrectly handledextracting certain archives. If a user were tricked into extracting aspecially-crafted archive, a remote attacker could use this issue tooverwrite arbitrary files out of the extraction directory. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 15.10: libkdecore5 4:4.14.13-0ubuntu1.1 Ubuntu 14.04 LTS: libkdecore5 4:4.13.3-0ubuntu0.3 Ubuntu 12.04 LTS: libkdecore5 4:4.8.5-0ubuntu0.5 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. After a standard system update you need to reboot your computer to makeall the necessary changes. References CVE-2016-6232 [ more… ]

No Image

RHSA-2016:1494-1: Moderate: samba security update

2016-07-26 KENNETH 0

RHSA-2016:1494-1: Moderate: samba security update Red Hat Enterprise Linux: An update for samba is now available for Red Hat Gluster Storage 3.1 for RHEL 6 and Red Hat Gluster Storage 3.1 for RHEL 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2016-2119 Source: RHSA-2016:1494-1: Moderate: samba security update

No Image

RHSA-2016:1489-1: Important: kernel security, bug fix, and enhancement update

2016-07-26 KENNETH 0

RHSA-2016:1489-1: Important: kernel security, bug fix, and enhancement update Red Hat Enterprise Linux: An update for kernel is now available for Red Hat Enterprise Linux 6.7 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2016-4565 Source: RHSA-2016:1489-1: Important: kernel security, bug fix, and enhancement update

No Image

RHBA-2016:1492-1: squid bug fix update

2016-07-26 KENNETH 0

RHBA-2016:1492-1: squid bug fix update Red Hat Enterprise Linux: Updated squid packages that fix one bug are now available for Red Hat Enterprise Linux 6. Source: RHBA-2016:1492-1: squid bug fix update