SECURITY – 페이지 1324 – 지락문화예술공작단

USN-3032-1: eCryptfs vulnerability

2016-07-15 KENNETH 0

USN-3032-1: eCryptfs vulnerability Ubuntu Security Notice USN-3032-1 14th July, 2016 ecryptfs-utils vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.04 LTS Ubuntu 15.10 Summary eCryptfs could be made to expose sensitive information. Software description ecryptfs-utils – eCryptfs cryptographic filesystem utilities Details It was discovered that eCryptfs incorrectly configured the encrypted swappartition for certain drive types. An attacker could use this issue to discoversensitive information. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 16.04 LTS: ecryptfs-utils 111-0ubuntu1.1 Ubuntu 15.10: ecryptfs-utils 108-0ubuntu1.2 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. After a standard system update you need to reboot your computer to makeall the necessary changes. References LP: 1597154 Source: USN-3032-1: eCryptfs vulnerability

RHSA-2016:1425-1: Moderate: rh-nginx18-nginx security update

2016-07-14 KENNETH 0

RHSA-2016:1425-1: Moderate: rh-nginx18-nginx security update Red Hat Enterprise Linux: An update for rh-nginx18-nginx is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2016-0742, CVE-2016-0746, CVE-2016-0747, CVE-2016-4450 Source: RHSA-2016:1425-1: Moderate: rh-nginx18-nginx security update

RHSA-2016:1423-1: Critical: flash-plugin security update

2016-07-14 KENNETH 0

RHSA-2016:1423-1: Critical: flash-plugin security update Red Hat Enterprise Linux: An update for flash-plugin is now available for Red Hat Enterprise Linux 5 Supplementary and Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2016-4172, CVE-2016-4173, CVE-2016-4174, CVE-2016-4175, CVE-2016-4176, CVE-2016-4177, CVE-2016-4178, CVE-2016-4179, CVE-2016-4180, CVE-2016-4181, CVE-2016-4182, CVE-2016-4183, CVE-2016-4184, CVE-2016-4185, CVE-2016-4186, CVE-2016-4187, CVE-2016-4188, CVE-2016-4189, CVE-2016-4190, CVE-2016-4217, CVE-2016-4218, CVE-2016-4219, CVE-2016-4220, CVE-2016-4221, CVE-2016-4222, CVE-2016-4223, CVE-2016-4224, CVE-2016-4225, CVE-2016-4226, CVE-2016-4227, CVE-2016-4228, CVE-2016-4229, CVE-2016-4230, CVE-2016-4231, CVE-2016-4232, CVE-2016-4233, CVE-2016-4234, CVE-2016-4235, CVE-2016-4236, CVE-2016-4237, CVE-2016-4238, CVE-2016-4239, CVE-2016-4240, CVE-2016-4241, CVE-2016-4242, CVE-2016-4243, CVE-2016-4244, CVE-2016-4245, CVE-2016-4246, CVE-2016-4247, CVE-2016-4248, CVE-2016-4249 Source: RHSA-2016:1423-1: Critical: flash-plugin security update

RHBA-2016:1419-1: openstack-neutron bug fix advisory

2016-07-14 KENNETH 0

RHBA-2016:1419-1: openstack-neutron bug fix advisory Red Hat Enterprise Linux: Updated OpenStack Networking packages that resolve various issues are now available for Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7. Source: RHBA-2016:1419-1: openstack-neutron bug fix advisory

RHBA-2016:1416-1: openstack-nova bug fix advisory

2016-07-14 KENNETH 0

RHBA-2016:1416-1: openstack-nova bug fix advisory Red Hat Enterprise Linux: Updated OpenStack Compute packages that resolve various issues are now available for Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7. Source: RHBA-2016:1416-1: openstack-nova bug fix advisory