No Image

USN-3504-2: libxml2 vulnerability

2017-12-06 KENNETH 0

USN-3504-2: libxml2 vulnerability Ubuntu Security Notice USN-3504-2 5th December, 2017 libxml2 vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 12.04 LTS Summary curl could be made to crash if it received specially crafted input. Software description libxml2 – GNOME XML library Details USN-3504-1 fixed a vulnerability in libxml2. This update providesthe corresponding update for Ubuntu 12.04 ESM. Original advisory details: Wei Lei discovered that libxml2 incorrecty handled certain parameter entities. An attacker could use this issue with specially constructed XML data to cause libxml2 to consume resources, leading to a denial of service. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 12.04 LTS: libxml2 2.7.8.dfsg-5.1ubuntu4.19 libxml2-utils 2.7.8.dfsg-5.1ubuntu4.19 python-libxml2 2.7.8.dfsg-5.1ubuntu4.19 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. In general, a standard system update will make [ more… ]

No Image

USN-3504-1: libxml2 vulnerability

2017-12-05 KENNETH 0

USN-3504-1: libxml2 vulnerability Ubuntu Security Notice USN-3504-1 5th December, 2017 libxml2 vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 17.10 Ubuntu 17.04 Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary libxml2 could be made to crash if it opened a specially crafted file. Software description libxml2 – GNOME XML library Details Wei Lei discovered that libxml2 incorrecty handled certain parameterentities. An attacker could use this issue with specially constructed XMLdata to cause libxml2 to consume resources, leading to a denial of service. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 17.10: libxml2 2.9.4+dfsg1-4ubuntu1.1 libxml2-utils 2.9.4+dfsg1-4ubuntu1.1 python-libxml2 2.9.4+dfsg1-4ubuntu1.1 python3-libxml2 2.9.4+dfsg1-4ubuntu1.1 Ubuntu 17.04: libxml2 2.9.4+dfsg1-2.2ubuntu0.2 libxml2-utils 2.9.4+dfsg1-2.2ubuntu0.2 python-libxml2 2.9.4+dfsg1-2.2ubuntu0.2 python3-libxml2 2.9.4+dfsg1-2.2ubuntu0.2 Ubuntu 16.04 LTS: libxml2 2.9.3+dfsg1-1ubuntu0.4 libxml2-utils 2.9.3+dfsg1-1ubuntu0.4 python-libxml2 2.9.3+dfsg1-1ubuntu0.4 Ubuntu 14.04 LTS: libxml2 2.9.1+dfsg1-3ubuntu4.11 libxml2-utils 2.9.1+dfsg1-3ubuntu4.11 python-libxml2 2.9.1+dfsg1-3ubuntu4.11 [ more… ]

No Image

RHSA-2017:3384-1: Moderate: liblouis security update

2017-12-05 KENNETH 0

RHSA-2017:3384-1: Moderate: liblouis security update Red Hat Enterprise Linux: An update for liblouis is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2017-15101 Source: RHSA-2017:3384-1: Moderate: liblouis security update

No Image

RHEA-2017:3383-1: cc-config-rhel71 enhancement update

2017-12-05 KENNETH 0

RHEA-2017:3383-1: cc-config-rhel71 enhancement update Red Hat Enterprise Linux: An updated cc-config-rhel71 package that add one enhancement is now available for Red Hat Enterprise Linux 7.1 Extended Update Support. Source: RHEA-2017:3383-1: cc-config-rhel71 enhancement update

No Image

RHSA-2017:3382-1: Important: firefox security update

2017-12-05 KENNETH 0

RHSA-2017:3382-1: Important: firefox security update Red Hat Enterprise Linux: An update for firefox is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2017-7843 Source: RHSA-2017:3382-1: Important: firefox security update