No Image

USN-3282-1: FreeType vulnerabilities

2017-05-10 KENNETH 0

USN-3282-1: FreeType vulnerabilities Ubuntu Security Notice USN-3282-1 9th May, 2017 freetype vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 17.04 Ubuntu 16.10 Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary FreeType could be made to crash or run programs if it opened a specially crafted font file. Software description freetype – FreeType 2 is a font engine library Details It was discovered that FreeType did not correctly handle certain malformedfont files. If a user were tricked into using a specially crafted fontfile, a remote attacker could cause FreeType to crash, resulting in adenial of service, or possibly execute arbitrary code. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 17.04: libfreetype6 2.6.3-3ubuntu2.2 Ubuntu 16.10: libfreetype6 2.6.3-3ubuntu1.3 Ubuntu 16.04 LTS: libfreetype6 2.6.1-0.1ubuntu2.3 Ubuntu 14.04 LTS: libfreetype6 2.5.2-1ubuntu2.8 To update [ more… ]

No Image

USN-3283-1: rtmpdump vulnerabilities

2017-05-10 KENNETH 0

USN-3283-1: rtmpdump vulnerabilities Ubuntu Security Notice USN-3283-1 9th May, 2017 rtmpdump vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary rtmpdump could be made to crash or run programs as your login if it processed a specially crafted stream. Software description rtmpdump – small dumper for media content streamed over the RTMP protocol Details Dave McDaniel discovered that rtmpdump incorrectly handled certainmalformed streams. If a user were tricked into processing a speciallycrafted stream, a remote attacker could cause rtmpdump to crash, resultingin a denial of service, or possibly execute arbitrary code. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 16.04 LTS: librtmp1 2.4+20151223.gitfa8646d-1ubuntu0.1 Ubuntu 14.04 LTS: librtmp0 2.4+20121230.gitdf6c518-1ubuntu0.1 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. In general, a standard [ more… ]

No Image

RHSA-2017:1208-1: Important: jasper security update

2017-05-10 KENNETH 0

RHSA-2017:1208-1: Important: jasper security update Red Hat Enterprise Linux: An update for jasper is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2015-5203, CVE-2015-5221, CVE-2016-10248, CVE-2016-10249, CVE-2016-10251, CVE-2016-1577, CVE-2016-1867, CVE-2016-2089, CVE-2016-2116, CVE-2016-8654, CVE-2016-8690, CVE-2016-8691, CVE-2016-8692, CVE-2016-8693, CVE-2016-8883, CVE-2016-8884, CVE-2016-8885, CVE-2016-9262, CVE-2016-9387, CVE-2016-9388, CVE-2016-9389, CVE-2016-9390, CVE-2016-9391, CVE-2016-9392, CVE-2016-9393, CVE-2016-9394, CVE-2016-9560, CVE-2016-9583, CVE-2016-9591, CVE-2016-9600 Source: RHSA-2017:1208-1: Important: jasper security update

No Image

RHSA-2017:1206-1: Important: qemu-kvm security update

2017-05-09 KENNETH 0

RHSA-2017:1206-1: Important: qemu-kvm security update Red Hat Enterprise Linux: An update for qemu-kvm is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2016-9603, CVE-2017-2633, CVE-2017-7718, CVE-2017-7980 Source: RHSA-2017:1206-1: Important: qemu-kvm security update

No Image

RHSA-2017:1205-1: Important: qemu-kvm-rhev security update

2017-05-09 KENNETH 0

RHSA-2017:1205-1: Important: qemu-kvm-rhev security update Red Hat Enterprise Linux: An update for qemu-kvm-rhev is now available for RHEV 3.X Hypervisor and Agents for RHEL-6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2016-9603, CVE-2017-2633, CVE-2017-7718, CVE-2017-7980 Source: RHSA-2017:1205-1: Important: qemu-kvm-rhev security update