SECURITY

No Image

RHBA-2016:0345-1: kernel bug fix update

2016-03-03 KENNETH 0

RHBA-2016:0345-1: kernel bug fix update Red Hat Enterprise Linux: Updated kernel packages that fix several bugs are now available for Red Hat Enterprise Linux 6.6 Extended Update Support. Source: RHBA-2016:0345-1: kernel bug fix update

No Image

RHEA-2016:0344-1: bash Shift_JIS enhancement update

2016-03-03 KENNETH 0

RHEA-2016:0344-1: bash Shift_JIS enhancement update Red Hat Enterprise Linux: Updated bash Shift_JIS packages that add one enhancement are now available for Red Hat Enterprise Linux 6. Source: RHEA-2016:0344-1: bash Shift_JIS enhancement update

No Image

RHSA-2016:0346-1: Important: postgresql security update

2016-03-03 KENNETH 0

RHSA-2016:0346-1: Important: postgresql security update Red Hat Enterprise Linux: Updated postgresql packages that fix one security issue are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. CVE-2016-0773 Source: RHSA-2016:0346-1: Important: postgresql security update

No Image

USN-2916-1: Perl vulnerabilities

2016-03-02 KENNETH 0

USN-2916-1: Perl vulnerabilities Ubuntu Security Notice USN-2916-1 2nd March, 2016 perl vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 15.10 Ubuntu 14.04 LTS Ubuntu 12.04 LTS Summary Several security issues were fixed in Perl. Software description perl – Practical Extraction and Report Language Details It was discovered that Perl incorrectly handled certain regular expressionswith an invalid backreference. An attacker could use this issue to causePerl to crash, resulting in a denial of service, or possibly executearbitrary code. (CVE-2013-7422) Markus Vervier discovered that Perl incorrectly handled nesting in theData::Dumper module. An attacker could use this issue to cause Perl toconsume memory and crash, resulting in a denial of service. (CVE-2014-4330) Stephane Chazelas discovered that Perl incorrectly handled duplicateenvironment variables. An attacker could possibly use this issue to bypassthe taint protection mechanism. (CVE-2016-2381) Update instructions The problem [ more… ]