SECURITY

No Image

USN-3870-1: Spice vulnerability

2019-01-29 KENNETH 0

USN-3870-1: Spice vulnerability spice vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 18.10 Ubuntu 18.04 LTS Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary Spice could be made to crash or run programs if it received specially crafted network traffic. Software Description spice – SPICE protocol client and server library Details Christophe Fergeau discovered that Spice incorrectly handled memory. A remote attacker could use this to cause Spice to crash, resulting in a denial of service, or possibly execute arbitrary code. Update instructions The problem can be corrected by updating your system to the following package versions: Ubuntu 18.10 libspice-server1 – 0.14.0-1ubuntu4.2 Ubuntu 18.04 LTS libspice-server1 – 0.14.0-1ubuntu2.4 Ubuntu 16.04 LTS libspice-server1 – 0.12.6-4ubuntu0.4 Ubuntu 14.04 LTS libspice-server1 – 0.12.4-0nocelt2ubuntu1.8 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. After a standard system update you need [ more… ]

No Image

RHSA-2019:0160-1: Important: thunderbird security update

2019-01-25 KENNETH 0

RHSA-2019:0160-1: Important: thunderbird security update Red Hat Enterprise Linux: An update for thunderbird is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2018-12405, CVE-2018-17466, CVE-2018-18492, CVE-2018-18493, CVE-2018-18494, CVE-2018-18498 Source: RHSA-2019:0160-1: Important: thunderbird security update

No Image

RHSA-2019:0159-1: Important: thunderbird security update

2019-01-25 KENNETH 0

RHSA-2019:0159-1: Important: thunderbird security update Red Hat Enterprise Linux: An update for thunderbird is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2018-12405, CVE-2018-17466, CVE-2018-18492, CVE-2018-18493, CVE-2018-18494, CVE-2018-18498 Source: RHSA-2019:0159-1: Important: thunderbird security update

No Image

USN-3868-1: Thunderbird vulnerabilities

2019-01-25 KENNETH 0

USN-3868-1: Thunderbird vulnerabilities thunderbird vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 18.10 Ubuntu 18.04 LTS Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary Several security issues were fixed in Thunderbird. Software Description thunderbird – Mozilla Open Source mail and newsgroup client Details Multiple security issues were discovered in Thunderbird. If a user were tricked in to opening a specially crafted website in a browsing context, an attacker could potentially exploit these to cause a denial of service, bypass same-origin restrictions, or execute arbitrary code. Update instructions The problem can be corrected by updating your system to the following package versions: Ubuntu 18.10 thunderbird – 1:60.4.0+build2-0ubuntu0.18.10.1 Ubuntu 18.04 LTS thunderbird – 1:60.4.0+build2-0ubuntu0.18.04.1 Ubuntu 16.04 LTS thunderbird – 1:60.4.0+build2-0ubuntu0.16.04.1 Ubuntu 14.04 LTS thunderbird – 1:60.4.0+build2-0ubuntu0.14.04.1 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. After a standard [ more… ]