SECURITY – 페이지 948 – 지락문화예술공작단

RHBA-2017:2570-1: corosync bug fix update

2017-09-05 KENNETH 0

RHBA-2017:2570-1: corosync bug fix update Red Hat Enterprise Linux: Updated corosync packages that fix two bugs are now available for Red Hat Enterprise Linux 7. Source: RHBA-2017:2570-1: corosync bug fix update

RHBA-2017:2571-1: nss-softokn bug fix update

2017-09-05 KENNETH 0

RHBA-2017:2571-1: nss-softokn bug fix update Red Hat Enterprise Linux: Updated nss-softokn packages that fix two bugs are now available for Red Hat Enterprise Linux 7. Source: RHBA-2017:2571-1: nss-softokn bug fix update

RHBA-2017:2597-1: storaged bug fix update

2017-09-05 KENNETH 0

RHBA-2017:2597-1: storaged bug fix update Red Hat Enterprise Linux: Updated storaged packages that fix two bugs are now available for Red Hat Enterprise Linux 7 Extras. Source: RHBA-2017:2597-1: storaged bug fix update

RHSA-2017:2596-1: Important: rh-maven33-groovy security update

2017-09-05 KENNETH 0

RHSA-2017:2596-1: Important: rh-maven33-groovy security update Red Hat Enterprise Linux: An update for rh-maven33-groovy is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2015-3253, CVE-2016-6814 Source: RHSA-2017:2596-1: Important: rh-maven33-groovy security update

USN-3409-1: FontForge vulnerabilities

2017-09-05 KENNETH 0

USN-3409-1: FontForge vulnerabilities Ubuntu Security Notice USN-3409-1 4th September, 2017 fontforge vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 14.04 LTS Summary Several security issues were fixed in FontForge. Software description fontforge – font editor Details It was discovered that FontForge was vulnerable to a heap-based bufferover-read. A remote attacker could use a crafted file to DoS or executearbitrary code. (CVE-2017-11568, CVE-2017-11569, CVE-2017-11572) It was discovered that FontForge was vulnerable to a stack-based bufferoverflow. A remote attacker could use a crafted file to DoS or executearbitrary code. (CVE-2017-11571) It was discovered that FontForge was vulnerable to a heap-based bufferoverflow. A remote attacker could use a crafted file to DoS or executearbitrary code. (CVE-2017-11574) It was discovered that FontForge was vulnerable to a buffer over-read.A remote attacker could use a crafted file to DoS or execute [ more… ]