SECURITY

No Image

RHSA-2016:1201-1: Important: chromium-browser security update

2016-06-03 KENNETH 0

RHSA-2016:1201-1: Important: chromium-browser security update Red Hat Enterprise Linux: An update for chromium-browser is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2016-1696, CVE-2016-1697, CVE-2016-1698, CVE-2016-1699, CVE-2016-1700, CVE-2016-1701, CVE-2016-1702, CVE-2016-1703 Source: RHSA-2016:1201-1: Important: chromium-browser security update

No Image

RHBA-2016:1200-1: Satellite 5.7 bug fix update

2016-06-02 KENNETH 0

RHBA-2016:1200-1: Satellite 5.7 bug fix update RHN Satellite and Proxy: Updated osa-dispatcher, redstone-xmlrpc, spacewalk-backend, spacewalk-java and spacewalk-schema packages that fix several bugs and add various enhancements are now available for Red Hat Satellite 5.7. Source: RHBA-2016:1200-1: Satellite 5.7 bug fix update

No Image

USN-2990-1: ImageMagick vulnerabilities

2016-06-02 KENNETH 0

USN-2990-1: ImageMagick vulnerabilities Ubuntu Security Notice USN-2990-1 2nd June, 2016 imagemagick vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.04 LTS Ubuntu 15.10 Ubuntu 14.04 LTS Ubuntu 12.04 LTS Summary Several security issues were fixed in ImageMagick. Software description imagemagick – Image manipulation programs and library Details Nikolay Ermishkin and Stewie discovered that ImageMagick incorrectlysanitized untrusted input. A remote attacker could use these issues toexecute arbitrary code. These issues are known as "ImageTragick". Thisupdate disables problematic coders via the /etc/ImageMagick-6/policy.xmlconfiguration file. In certain environments the coders may need to bemanually re-enabled after making sure that ImageMagick does not processuntrusted input. (CVE-2016-3714, CVE-2016-3715, CVE-2016-3716,CVE-2016-3717, CVE-2016-3718) Bob Friesenhahn discovered that ImageMagick allowed injecting commands viaan image file or filename. A remote attacker could use this issue toexecute arbitrary code. (CVE-2016-5118) Update instructions The problem can be corrected [ more… ]

No Image

RHSA-2016:1190-1: Important: chromium-browser security update

2016-06-01 KENNETH 0

RHSA-2016:1190-1: Important: chromium-browser security update Red Hat Enterprise Linux: An update for chromium-browser is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2016-1672, CVE-2016-1673, CVE-2016-1674, CVE-2016-1675, CVE-2016-1676, CVE-2016-1677, CVE-2016-1678, CVE-2016-1679, CVE-2016-1680, CVE-2016-1681, CVE-2016-1682, CVE-2016-1683, CVE-2016-1684, CVE-2016-1685, CVE-2016-1686, CVE-2016-1687, CVE-2016-1688, CVE-2016-1689, CVE-2016-1690, CVE-2016-1691, CVE-2016-1692, CVE-2016-1693, CVE-2016-1694, CVE-2016-1695 Source: RHSA-2016:1190-1: Important: chromium-browser security update

No Image

RHBA-2016:1192-1: openstack-cinder bug fix advisory

2016-06-01 KENNETH 0

RHBA-2016:1192-1: openstack-cinder bug fix advisory Red Hat Enterprise Linux: Updated OpenStack Block Storage packages that resolve various issues are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7. Source: RHBA-2016:1192-1: openstack-cinder bug fix advisory