SECURITY – 페이지 910 – 지락문화예술공작단

RHSA-2017:2899-1: Critical: flash-plugin security update

2017-10-17 KENNETH 0

RHSA-2017:2899-1: Critical: flash-plugin security update Red Hat Enterprise Linux: An update for flash-plugin is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2017-11292 Source: RHSA-2017:2899-1: Critical: flash-plugin security update

RHEA-2017:2898-1: rh-mongodb32-mongo-java-driver bug fix and enhancement update

2017-10-17 KENNETH 0

RHEA-2017:2898-1: rh-mongodb32-mongo-java-driver bug fix and enhancement update Red Hat Enterprise Linux: Updated rh-mongodb32-mongo-java-driver packages that fix several bugs and add various enhancements are now available for Red Hat Software Collections. Source: RHEA-2017:2898-1: rh-mongodb32-mongo-java-driver bug fix and enhancement update

RHBA-2017:2896-1: openstack-neutron bug fix advisory

2017-10-17 KENNETH 0

RHBA-2017:2896-1: openstack-neutron bug fix advisory Red Hat Enterprise Linux: Updated OpenStack Networking packages that resolve various issues are now available for Red Hat OpenStack Platform 10.0 (Newton) for RHEL 7. Source: RHBA-2017:2896-1: openstack-neutron bug fix advisory

RHBA-2017:2897-1: openstack-neutron bug fix advisory

2017-10-17 KENNETH 0

RHBA-2017:2897-1: openstack-neutron bug fix advisory Red Hat Enterprise Linux: Updated OpenStack Networking packages that resolve various issues are now available for Red Hat OpenStack Platform 9.0 (Mitaka) for RHEL 7. Source: RHBA-2017:2897-1: openstack-neutron bug fix advisory

USN-3455-1: wpa_supplicant and hostapd vulnerabilities

2017-10-17 KENNETH 0

USN-3455-1: wpa_supplicant and hostapd vulnerabilities Ubuntu Security Notice USN-3455-1 16th October, 2017 wpa vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 17.04 Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary Several security issues were fixed in wpa_supplicant. Software description wpa – client support for WPA and WPA2 Details Mathy Vanhoef discovered that wpa_supplicant and hostapd incorrectlyhandled WPA2. A remote attacker could use this issue with keyreinstallation attacks to obtain sensitive information. (CVE-2017-13077,CVE-2017-13078, CVE-2017-13079, CVE-2017-13080, CVE-2017-13081,CVE-2017-13082, CVE-2017-13086, CVE-2017-13087, CVE-2017-13088) Imre Rad discovered that wpa_supplicant and hostapd incorrectly handledinvalid characters in passphrase parameters. A remote attacker could usethis issue to cause a denial of service. (CVE-2016-4476) Imre Rad discovered that wpa_supplicant and hostapd incorrectly handledinvalid characters in passphrase parameters. A local attacker could usethis issue to cause a denial of service, or possibly execute arbitrarycode. (CVE-2016-4477) Update instructions [ more… ]