SECURITY

No Image

RHSA-2018:2882-1: Important: rh-haproxy18-haproxy security update

2018-10-08 KENNETH 0

RHSA-2018:2882-1: Important: rh-haproxy18-haproxy security update Red Hat Enterprise Linux: An update for rh-haproxy18-haproxy is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2018-14645 Source: RHSA-2018:2882-1: Important: rh-haproxy18-haproxy security update

No Image

RHSA-2018:2881-1: Critical: firefox security update

2018-10-08 KENNETH 0

RHSA-2018:2881-1: Critical: firefox security update Red Hat Enterprise Linux: An update for firefox is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2018-12386, CVE-2018-12387 Source: RHSA-2018:2881-1: Critical: firefox security update

No Image

RHBA-2018:2865-1: .NET Core Runtime 2.1.5 and SDK 2.1.403 for Red Hat Enterprise Linux 7

2018-10-03 KENNETH 0

RHBA-2018:2865-1: .NET Core Runtime 2.1.5 and SDK 2.1.403 for Red Hat Enterprise Linux 7 Red Hat Enterprise Linux: New rh-dotnet21 packages that correspond to the .NET Core Runtime 2.1.5 and SDK 2.1.403 release are now available. This release fixes several bugs and adds various enhancements. Source: RHBA-2018:2865-1: .NET Core Runtime 2.1.5 and SDK 2.1.403 for Red Hat Enterprise Linux 7

No Image

Standing behind “MSRC Listens”

2018-10-03 KENNETH 0

Standing behind “MSRC Listens” Last week at BlueHat’s “MSRC Listens” session, I took the stage with Mechele Gruhn, manager of the Vulnerability Response PM team, to explain how MSRC is changing our communication, workflows, and tooling to deliver an improved user experience for our partners in the security research community. We promised to communicate more about what’s happening in the MSRC that affects our customers and research partners. We weren’t expecting to get an opportunity to demonstrate this commitment quite so soon. Back in June 2018, Microsoft updated the terms and conditions of our mitigation bypass bounty. As Joe Bialek of MSRC’s Vulnerabilities & Mitigations Team explained in a blog about the scope change, we’ve learned a lot from the great research into CFG bypasses and what we need to do to harden it, so we removed it from the [ more… ]

No Image

RHBA-2018:2854-1: openstack-ironic bug fix advisory

2018-10-03 KENNETH 0

RHBA-2018:2854-1: openstack-ironic bug fix advisory Red Hat Enterprise Linux: Updated OpenStack Bare Metal Provisioning packages that resolve various issues are now available for Red Hat OpenStack Platform 9.0 (Mitaka) for RHEL 7. Source: RHBA-2018:2854-1: openstack-ironic bug fix advisory