Scientific Linux Linux Distribution - Security Advisories - Page 40

SciLinux: SLSA-2018-1929-1 Low: libvirt on SL6.x i386/x86_64

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

libvirt: Resource exhaustion via qemuMonitorIORead() method (CVE-2018-5748) * libvirt: Incomplete fix for CVE-2018-5748 triggered by QEMU guest agent (CVE-2018-1064) SL6 x86_64 libvirt-0.10.2-64.el6.x86_64.rpm libvirt-client-0.10.2-64.el6.i686.rpm libvirt-client-0.10.2-64.el6.x86_64.rpm libvirt-debuginfo-0.10.2-64.el6.i686.rpm libvirt-debuginfo-0.10.2-64.el6.x86_64.rpm [More...]

LinuxSecurity.com Team
Jul 02, 2018

SciLinux: SLSA-2018-1879-1 Moderate: glibc on SL6.x i386/x86_64

glibc: Buffer overflow in glob with GLOB_TILDE (CVE-2017-15670) * glibc: Buffer overflow during unescaping of user names with the ~ operator (CVE-2017-15804) SL6 x86_64 glibc-2.12-1.212.el6.i686.rpm glibc-2.12-1.212.el6.x86_64.rpm glibc-common-2.12-1.212.el6.x86_64.rpm glibc-debuginfo-2.12-1.212.el6.i686.rpm glibc-debuginfo-2.12-1.212.el6.x86_64.rpm glibc-debuginfo- [More...]

LinuxSecurity.com Team
Jul 02, 2018

SciLinux: SLSA-2018-1860-1 Low: samba on SL6.x i386/x86_64

samba: Null pointer indirection in printer server process (CVE-2018-1050) SL6 x86_64 libsmbclient-3.6.23-51.el6.i686.rpm libsmbclient-3.6.23-51.el6.x86_64.rpm samba-client-3.6.23-51.el6.x86_64.rpm samba-common-3.6.23-51.el6.i686.rpm samba-common-3.6.23-51.el6.x86_64.rpm samba-debuginfo-3.6.23-51.el6.i686.rpm samba-debuginfo-3.6.23-51.el6.x86_64.rpm samba-winb [More...]

LinuxSecurity.com Team
Jul 02, 2018

SciLinux: SLSA-2018-1854-1 Important: kernel on SL6.x i386/x86_64

An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load & Store instructions (a commonly used performance optimization). It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory read from address to which a recent memory write has occurred may see an older v [More...]

LinuxSecurity.com Team
Jul 02, 2018

SciLinux: SLSA-2018-1877-1 Moderate: sssd and ding-libs on SL6.x i386/x86_64

sssd: unsanitized input when searching in local cache database (CVE-2017-12173) SL6 x86_64 ding-libs-debuginfo-0.4.0-13.el6.i686.rpm ding-libs-debuginfo-0.4.0-13.el6.x86_64.rpm libbasicobjects-0.1.1-13.el6.i686.rpm libbasicobjects-0.1.1-13.el6.x86_64.rpm libcollection-0.6.2-13.el6.i686.rpm libcollection-0.6.2-13.el6.x86_64.rpm libdhash-0.4.3-13.el6.i686.rpm l [More...]

LinuxSecurity.com Team
Jul 02, 2018

SciLinux: SLSA-2018-1932-1 Moderate: zsh on SL6.x i386/x86_64

zsh: Stack-based buffer overflow in gen_matches_files() at compctl.c (CVE-2018-1083) * zsh: buffer overflow when scanning very long directory paths for symbolic links (CVE-2014-10072) * zsh: buffer overrun in symlinks (CVE-2017-18206) * zsh: buffer overflow in utils.c:checkmailpath() can lead to local arbitrary code execution (CVE-2018-1100) SL6 x86_64 zsh-4.3.11-8.el6.x86_64.rpm [More...]

LinuxSecurity.com Team
Jul 02, 2018

SciLinux: SLSA-2018-1883-1 Low: samba4 on SL6.x i386/x86_64

samba: Null pointer indirection in printer server process (CVE-2018-1050) SL6 x86_64 samba4-4.2.10-15.el6.x86_64.rpm samba4-client-4.2.10-15.el6.x86_64.rpm samba4-common-4.2.10-15.el6.x86_64.rpm samba4-dc-4.2.10-15.el6.x86_64.rpm samba4-dc-libs-4.2.10-15.el6.x86_64.rpm samba4-debuginfo-4.2.10-15.el6.x86_64.rpm samba4-devel-4.2.10-15.el6.x86_64.rpm samba4-libs [More...]

LinuxSecurity.com Team
Jul 02, 2018

SciLinux: SLSA-2018-1927-1 Moderate: pcs on SL6.x i386/x86_64

pcs: Debug parameter removal bypass, allowing information disclosure (CVE-2018-1086) SL6 x86_64 pcs-0.9.155-3.el6.x86_64.rpm pcs-debuginfo-0.9.155-3.el6.x86_64.rpm i386 pcs-0.9.155-3.el6.i686.rpm pcs-debuginfo-0.9.155-3.el6.i686.rpm - Scientific Linux Development Team

LinuxSecurity.com Team
Jul 02, 2018

SciLinux: SLSA-2018-2001-1 Important: qemu-kvm on SL7.x x86_64

LinuxSecurity.com Team
Jun 26, 2018

SciLinux: SLSA-2018-1965-1 Important: kernel on SL7.x x86_64

LinuxSecurity.com Team
Jun 26, 2018

SciLinux: SLSA-2018-1979-1 Moderate: pki-core on SL7.x x86_64

pki-core: Mishandled ACL configuration in AAclAuthz.java reverses rules that allow and deny access (CVE-2018-1080) Bug Fix(es): * Previously, when ECC keys were enrolled, Certificate Management over CMS (CMC) authentication failed with a "TokenException: Unable to insert certificate into temporary database" error. As a consequence, the enrollment failed. This update fixes the problem. As a r [More...]

LinuxSecurity.com Team
Jun 26, 2018

SciLinux: SLSA-2018-1997-1 Important: libvirt on SL7.x x86_64

LinuxSecurity.com Team
Jun 26, 2018

SciLinux: SLSA-2018-1957-1 Important: git on SL7.x x86_64

git: arbitrary code execution when recursively cloning a malicious repository (CVE-2018-11235) SL7 x86_64 git-1.8.3.1-14.el7_5.x86_64.rpm git-daemon-1.8.3.1-14.el7_5.x86_64.rpm git-debuginfo-1.8.3.1-14.el7_5.x86_64.rpm git-svn-1.8.3.1-14.el7_5.x86_64.rpm noarch emacs-git-1.8.3.1-14.el7_5.noarch.rpm emacs-git-el-1.8.3.1-14.el7_5.noarch.rpm git-all-1.8.3.1-14.el7 [More...]

LinuxSecurity.com Team
Jun 21, 2018

SciLinux: SLSA-2018-1852-1 Moderate: kernel on SL7.x x86_64

Kernel: FPU state information leakage via lazy FPU restore (CVE-2018-3665) SL7 x86_64 kernel-3.10.0-862.3.3.el7.x86_64.rpm kernel-debug-3.10.0-862.3.3.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-862.3.3.el7.x86_64.rpm kernel-debug-devel-3.10.0-862.3.3.el7.x86_64.rpm kernel-debuginfo-3.10.0-862.3.3.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-862.3.3.el7.x86_ [More...]

LinuxSecurity.com Team
Jun 14, 2018

SciLinux: SLSA-2018-1836-1 Important: plexus-archiver on SL7.x (noarch)

plexus-archiver: arbitrary file write vulnerability / arbitrary code execution using a specially crafted zip file (CVE-2018-1002200) SL7 noarch plexus-archiver-2.4.2-5.el7_5.noarch.rpm plexus-archiver-javadoc-2.4.2-5.el7_5.noarch.rpm - Scientific Linux Development Team

LinuxSecurity.com Team
Jun 12, 2018

SciLinux: SLSA-2018-1780-1 Important: xmlrpc on SL7.x (noarch)

xmlrpc: Deserialization of untrusted Java object through tag (CVE-2016-5003) SL7 noarch xmlrpc-client-3.1.3-9.el7_5.noarch.rpm xmlrpc-common-3.1.3-9.el7_5.noarch.rpm xmlrpc-javadoc-3.1.3-9.el7_5.noarch.rpm xmlrpc-server-3.1.3-9.el7_5.noarch.rpm - Scientific Linux Development Team

LinuxSecurity.com Team
Jun 01, 2018

SciLinux: SLSA-2018-1779-1 Important: xmlrpc3 on SL6.x (noarch)

xmlrpc: Deserialization of untrusted Java object through tag (CVE-2016-5003) SL6 noarch xmlrpc3-client-3.0-4.17.el6_9.noarch.rpm xmlrpc3-common-3.0-4.17.el6_9.noarch.rpm xmlrpc3-client-devel-3.0-4.17.el6_9.noarch.rpm xmlrpc3-common-devel-3.0-4.17.el6_9.noarch.rpm xmlrpc3-javadoc-3.0-4.17.el6_9.noarch.rpm xmlrpc3-server-3.0-4.17.el6_9.noarch.rpm [More...]

LinuxSecurity.com Team
May 31, 2018

SciLinux: SLSA-2018-1777-1 Important: procps on SL6.x i386/x86_64

procps-ng, procps: Integer overflows leading to heap overflow in file2strvec (CVE-2018-1124) * procps-ng, procps: incorrect integer size in proc/alloc.* leading to truncation / integer overflow issues (CVE-2018-1126) SL6 x86_64 procps-3.2.8-45.el6_9.3.i686.rpm procps-3.2.8-45.el6_9.3.x86_64.rpm procps-debuginfo-3.2.8-45.el6_9.3.i686.rpm procps-debuginfo-3.2.8-45.el6_9.3.x86 [More...]

LinuxSecurity.com Team
May 31, 2018

SciLinux: SLSA-2018-1726-1 Important: thunderbird on SL6.x i386/x86_64

This update upgrades Thunderbird to version 52.8.0. * Mozilla: Memory safety bugs fixed in Firefox 60 and Firefox ESR 52.8 (CVE-2018-5150) * Mozilla: Backport critical security fixes in Skia (CVE-2018-5183) * Mozilla: Use-after-free with SVG animations and clip paths (CVE-2018-5154) * Mozilla: Use-after-free with SVG animations and text paths (CVE-2018-5155) * Mozilla: Integer overflow and [More...]

LinuxSecurity.com Team
May 24, 2018

SciLinux: SLSA-2018-1725-1 Important: thunderbird on SL7.x x86_64

LinuxSecurity.com Team
May 24, 2018

Scientific Essential and Critical Security Patch Updates

SciLinux: SLSA-2018-1929-1 Low: libvirt on SL6.x i386/x86_64

SciLinux: SLSA-2018-1879-1 Moderate: glibc on SL6.x i386/x86_64

SciLinux: SLSA-2018-1860-1 Low: samba on SL6.x i386/x86_64

SciLinux: SLSA-2018-1854-1 Important: kernel on SL6.x i386/x86_64

SciLinux: SLSA-2018-1877-1 Moderate: sssd and ding-libs on SL6.x i386/x86_64

SciLinux: SLSA-2018-1932-1 Moderate: zsh on SL6.x i386/x86_64

SciLinux: SLSA-2018-1883-1 Low: samba4 on SL6.x i386/x86_64

SciLinux: SLSA-2018-1927-1 Moderate: pcs on SL6.x i386/x86_64

SciLinux: SLSA-2018-2001-1 Important: qemu-kvm on SL7.x x86_64

SciLinux: SLSA-2018-1965-1 Important: kernel on SL7.x x86_64

SciLinux: SLSA-2018-1979-1 Moderate: pki-core on SL7.x x86_64

SciLinux: SLSA-2018-1997-1 Important: libvirt on SL7.x x86_64

SciLinux: SLSA-2018-1957-1 Important: git on SL7.x x86_64

SciLinux: SLSA-2018-1852-1 Moderate: kernel on SL7.x x86_64

SciLinux: SLSA-2018-1836-1 Important: plexus-archiver on SL7.x (noarch)

SciLinux: SLSA-2018-1780-1 Important: xmlrpc on SL7.x (noarch)

SciLinux: SLSA-2018-1779-1 Important: xmlrpc3 on SL6.x (noarch)

SciLinux: SLSA-2018-1777-1 Important: procps on SL6.x i386/x86_64

SciLinux: SLSA-2018-1726-1 Important: thunderbird on SL6.x i386/x86_64

SciLinux: SLSA-2018-1725-1 Important: thunderbird on SL7.x x86_64

LinuxSecurity Poll

Which open source security automation tool do you use to protect against vulnerabilities?

Get the Latest News & Insights

News

Advisories

HOWTOs

Features

About Us

Powered By