19 matches found
systemd security update
252-55.0.3.el97.9 - serialize: don't allocate 1M on the stack just like that LINUX-16166 - Route logs from container mapped uids to the system journal Orabug: 38135007 - Drop delay when nspawn fails to reset loginuid Orabug: 37793135 - Improve logging for api bus connection and subscribers Orabug...
Security Bulletin: Vulnerability in IBM Java, Websphere, OpenSSL, libcurl, and Apache Commons may affect IBM Storage Protect Backup-Archive Client, IBM Storage Protect for Virtual Environments and IBM Storage Protect for Space Management
Summary IBM Spectrum Protect Backup-Archive Client, IBM Storage Protect for Virtual Environments and IBM Storage Protect for Space Management can be affected by logging and security vulnerabilities. This update improves reliability of Java object property handling, modern logging frameworks and...
MiracleLinux 4 : sudo-1.7.4p5-7.AXS4 (AXSA:2011-635:01)
The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2011-635:01 advisory. Sudo superuser do allows a system administrator to give certain users or groups of users the ability to run some or all commands as root while logging all...
SUSE-SU-2023:3822-2 Security update for supportutils
This update for supportutils fixes the following issues: Security fixes: - CVE-2022-45154: Removed iSCSI passwords bsc1207598. Other Fixes: - Changes in version 3.1.26 + powerpc plugin to collect the slots and active memory bsc1210950 + A Cleartext Storage of Sensitive Information vulnerability...
OPENSUSE-SU-2022:10170-1 Security update for cacti, cacti-spine
This update for cacti, cacti-spine fixes the following issues: cacti-spine 1.2.22, delivering a number of bug fixes: When polling time is exceed, spine does not always exit as expected Spine logging at -V 5 includes an extra line feed Incorrect SNMP responses can cause spine to crash Properly...
SUSE-SU-2022:3711-1 Security update for multipath-tools
This update for multipath-tools fixes the following issues: - CVE-2022-41973: Fixed a symlink attack in multipathd. bsc1202739 - CVE-2022-41974: Fixed an authorization bypass issue in multipathd. bsc1202739 - Avoid linking to libreadline to avoid licensing issue bsc1202616 - libmultipath: fix...
SUSE-SU-2021:3906-1 Security Beta update for Salt
This update fixes the following issues: salt: - Remove wrong parsecpename from grains.core - Prevent tracebacks if directory for cookie is missing - Fix file.find tracebacks with non utf8 file names bsc1190114 - Fix ip6interface grain to not leak secondary IPv4 aliases bsc1191412 - Do not conside...
OPENSUSE-SU-2021:0926-1 Security update for tor
This update for tor fixes the following issues: tor 0.4.5.9 Don't allow relays to spoof RELAYEND or RELAYRESOLVED cell CVE-2021-34548, boo1187322 Detect more failure conditions from the OpenSSL RNG code boo1187323 Resist a hashtable-based CPU denial-of-service attack against relays CVE-2021-34549...
Citrix VDA Cleanup Utility Tool
Note: Please note: You can download the required file from the Citrix downloads website by visiting the following link:https://www.citrix.com/downloads/citrix-tools All references to VDA in this article are to the Windows version of VDA. Citrix recommends that you use the built-in uninstaller to...
SUSE-SU-2020:0353-1 Security update for systemd
This update for systemd provides the following fixes: - CVE-2020-1712 bscbsc1162108 Fix a heap use-after-free vulnerability, when asynchronous Polkit queries were performed while handling Dbus messages. A local unprivileged attacker could have abused this flaw to crash systemd services or...
SUSE-SU-2020:0335-1 Security update for systemd
This update for systemd fixes the following issues: - CVE-2020-1712 bscbsc1162108 Fix a heap use-after-free vulnerability, when asynchronous Polkit queries were performed while handling Dbus messages. A local unprivileged attacker could have abused this flaw to crash systemd services or potential...
OPENSUSE-SU-2019:2556-1 Security update for haproxy
This update for haproxy to version 2.0.5+git0.d905f49a fixes the following issues: Security issue fixed: - CVE-2019-14241: Fixed a cookie memory corruption problem. bsc1142529 The update to 2.0.5 brings lots of features and bugfixes: - new internal native HTTP representation called HTX, was alrea...
SUSE-SU-2019:3002-1 Security update for haproxy
This update for haproxy to version 2.0.5+git0.d905f49a fixes the following issues: Security issue fixed: - CVE-2019-14241: Fixed a cookie memory corruption problem. bsc1142529 The update to 2.0.5 brings lots of features and bugfixes: - new internal native HTTP representation called HTX, was alrea...
OPENSUSE-SU-2019:0329-1 Security update for obs-service-tar_scm
This update for obs-service-tarscm fixes the following issues: Security vulnerabilities addressed: - CVE-2018-12473: Fixed a path traversal issue, which allowed users to access files outside of the repository using relative paths bsc1105361 - CVE-2018-12474: Fixed an issue whereby crafted service...
SUSE-SU-2016:0540-1 Security update for dhcp
This update for dhcp fixes the following issues: - CVE-2015-8605: A remote attacker could have used badly formed packets with an invalid IPv4 UDP length field to cause a DHCP server, client, or relay program to terminate abnormally bsc961305 The following bugs were fixed: - bsc936923: Improper...
Fedora 21 : fedup-0.9.0-2.fc21 (2014-14347)
This update works around a serious problem in Fedora 21 Beta which makes systems automatically shut down 15 minutes into the upgrade. Other improvements : - Adds --product=PRODUCT flag, required for upgrades to F21 - Uses host's config files in upgrade.img, which should fix various upgrade proble...
Fedora 19 : fedup-0.9.0-2.fc19 (2014-14252)
This update works around a serious problem in Fedora 21 Beta which makes systems automatically shut down 15 minutes into the upgrade. Other improvements : - Adds --product=PRODUCT flag, required for upgrades to F21 - Uses host's config files in upgrade.img, which should fix various upgrade proble...
Fedora 20 : fedup-0.9.0-1.fc20 (2014-14027)
Adds --product=PRODUCT flag, required for upgrades to F21 - Uses host's config files in upgrade.img, which should fix various upgrade problems e.g. incorrect keyboard layout when unlocking disks due to missing vconsole.conf - Logging improvements: complete upgrade log should appear in system...
Fedora 20 : couchdb-1.6.0-9.fc20 / erlang-ibrowse-4.0.1-1.fc20 (2014-7657)
erlang-ibrowse: ver. 4.0.1 - erlang-ibrowse: support only Fedora 18+, EL6+ - erlang-ibrowse: added patch for CouchDB 1.6.0 - CouchDB: ver. 1.6.0 - CouchDB: silence stdout/stderr to prevent redundant flooding of /var/log/messages CouchDB already logs these messages to /var/log/couchdb/couch.log...