SECURITY – 페이지 1399 – 지락문화예술공작단

RHEA-2016:0683-1: tzdata enhancement update

2016-04-23 KENNETH 0

RHEA-2016:0683-1: tzdata enhancement update Red Hat Enterprise Linux: Updated tzdata packages that add various enhancements are now available for Red Hat Enterprise Linux 4 Extended Life Cycle Support, Red Hat Enterprise Linux 5.6 Long Life, Red Hat Enterprise Linux 5.9 Advanced Update Support, Red Hat Enterprise Linux 5.11, Red Hat Enterprise Linux 6.2 Advanced Update Support, Red Hat Enterprise Linux 6.4 Advanced Update Support, Red Hat Enterprise Linux 6.5 Advanced Update Support, Red Hat Enterprise Linux 6.6 Extended Update Support, Red Hat Enterprise Linux 6.7, Red Hat Enterprise Linux 7.1 Extended Update Support, Red Hat Enterprise Linux 7.1 Little Endian Extended Update Support, and Red Hat Enterprise Linux 7.2. Source: RHEA-2016:0683-1: tzdata enhancement update

RHEA-2016:0682-1: new packages: kmod-qla2xxx

2016-04-23 KENNETH 0

RHEA-2016:0682-1: new packages: kmod-qla2xxx Red Hat Enterprise Linux: New kmod-qla2xxx packages are now available for Red Hat Enterprise Linux 6. Source: RHEA-2016:0682-1: new packages: kmod-qla2xxx

RHBA-2016:0681-1: Red Hat Certification bug fix and enhancement update

2016-04-22 KENNETH 0

RHBA-2016:0681-1: Red Hat Certification bug fix and enhancement update Red Hat Enterprise Linux: An updated redhat-certification package that fixes several bugs and adds various enhancements is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Source: RHBA-2016:0681-1: Red Hat Certification bug fix and enhancement update

USN-2953-1: MySQL vulnerabilities

2016-04-22 KENNETH 0

USN-2953-1: MySQL vulnerabilities Ubuntu Security Notice USN-2953-1 21st April, 2016 mysql-5.5, mysql-5.6 vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 15.10 Ubuntu 14.04 LTS Ubuntu 12.04 LTS Summary Several security issues were fixed in MySQL. Software description mysql-5.5 – MySQL database mysql-5.6 – MySQL database Details Multiple security issues were discovered in MySQL and this update includesnew upstream MySQL versions to fix these issues. MySQL has been updated to 5.5.49 in Ubuntu 12.04 LTS and Ubuntu 14.04 LTS.Ubuntu 15.10 has been updated to MySQL 5.6.30. In addition to security fixes, the updated packages contain bug fixes,new features, and possibly incompatible changes. Please see the following for more information:http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-48.htmlhttp://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-49.htmlhttp://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-29.htmlhttp://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-30.htmlhttp://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 15.10: mysql-server-5.6 5.6.30-0ubuntu0.15.10.1 Ubuntu 14.04 LTS: mysql-server-5.5 5.5.49-0ubuntu0.14.04.1 Ubuntu 12.04 [ more… ]

USN-2952-1: PHP vulnerabilities

2016-04-22 KENNETH 0

USN-2952-1: PHP vulnerabilities Ubuntu Security Notice USN-2952-1 21st April, 2016 php5 vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 15.10 Ubuntu 14.04 LTS Ubuntu 12.04 LTS Summary Several security issues were fixed in PHP. Software description php5 – HTML-embedded scripting language interpreter Details It was discovered that the PHP Zip extension incorrectly handleddirectories when processing certain zip files. A remote attacker couldpossibly use this issue to create arbitrary directories. (CVE-2014-9767) It was discovered that the PHP Soap client incorrectly validated datatypes. A remote attacker could use this issue to cause PHP to crash,resulting in a denial of service, or possibly execute arbitrary code.(CVE-2015-8835, CVE-2016-3185) It was discovered that the PHP MySQL native driver incorrectly handled TLSconnections to MySQL databases. A man in the middle attacker could possiblyuse this issue to downgrade and snoop on TLS [ more… ]