SECURITY

No Image

RHBA-2019:0323-1: sbd bug fix update

2019-02-13 KENNETH 0

RHBA-2019:0323-1: sbd bug fix update Red Hat Enterprise Linux: Updated sbd packages that fix a bug are now available for Red Hat Enterprise Linux 7.4 Extended Update Support. Source: RHBA-2019:0323-1: sbd bug fix update

No Image

RHBA-2019:0321-1: binutils bug fix update

2019-02-13 KENNETH 0

RHBA-2019:0321-1: binutils bug fix update Red Hat Enterprise Linux: Updated binutils packages that fix one bug are now available for Red Hat Enterprise Linux 7.4 Extended Update Support. Source: RHBA-2019:0321-1: binutils bug fix update

No Image

USN-3887-1: snapd vulnerability

2019-02-13 KENNETH 0

USN-3887-1: snapd vulnerability snapd vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 18.10 Ubuntu 18.04 LTS Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary snapd could be made to run programs as an administrator. Software Description snapd – Daemon and tooling that enable snap packages Details Chris Moberly discovered that snapd versions 2.28 through 2.37 incorrectly validated and parsed the remote socket address when performing access controls on its UNIX socket. A local attacker could use this to access privileged socket APIs and obtain administrator privileges. On Ubuntu systems with snaps installed, snapd typically will have already automatically refreshed itself to snapd 2.37.1 which is unaffected. Update instructions The problem can be corrected by updating your system to the following package versions: Ubuntu 18.10 snapd – 2.35.5+18.10.1 Ubuntu 18.04 LTS snapd – 2.34.2+18.04.1 Ubuntu 16.04 LTS [ more… ]

No Image

RHSA-2019:0303-1: Important: runc security update

2019-02-12 KENNETH 0

RHSA-2019:0303-1: Important: runc security update Red Hat Enterprise Linux: An update for runc is now available for Red Hat Enterprise Linux 7 Extras. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2019-5736 Source: RHSA-2019:0303-1: Important: runc security update

No Image

RHSA-2019:0304-1: Important: docker security update

2019-02-12 KENNETH 0

RHSA-2019:0304-1: Important: docker security update Red Hat Enterprise Linux: An update for docker is now available for Red Hat Enterprise Linux 7 Extras. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2019-5736 Source: RHSA-2019:0304-1: Important: docker security update