Important: Red Hat Security Advisory: mod_auth_openidc:2.3 security update

An update for the modauthopenidc:2.3 module is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service. Red Hat Product Security has rated this update as having a security impact of Important. A Common...

Important: Red Hat Security Advisory: Red Hat multicluster global hub 1.4.1 bug fixes and container updates

Red Hat multicluster global hub 1.4.1 general availability release, with updates to container images and bug fixes. Red Hat multicluster global hub 1.4.1 images This advisory contains the container images for multicluster global hub. These container images provide enhancements. security fixes:...

Important: Red Hat Security Advisory: OpenShift Container Platform 4.16.37 security update

Red Hat OpenShift Container Platform release 4.16.37 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.16. Red Hat Product Security has rated this update as having a...

RHSA-2017:3200 Red Hat Security Advisory: kernel security and bug fix update

Bulletin has no description...

RHSA-2017:3392 Red Hat Security Advisory: java-1.7.0-openjdk security and bug fix update

Bulletin has no description...

RHSA-2016:0056 Red Hat Security Advisory: java-1.7.0-oracle security update

Bulletin has no description...

RHSA-2015:1674 Red Hat Security Advisory: qemu-kvm-rhev security update

Bulletin has no description...

Moderate: Red Hat Bug Fix Advisory: virtio-win bug fix and enhancement update

An update for virtio-win is now available for Red Hat Enterprise Linux 9. For detailed information on changes in this release, see the Red Hat Enterprise Linux 9.2 Release Notes linked from the References section...

Vulnerability remedied in Keycloak

A vulnerability has been fixed in Keycloak. A malicious party can exploit the vulnerability to gain access via path-traversal to sensitive data. The vulnerability is caused by the fact that URL redirects where the client accepts wildcards are not correctly are processed correctly. -= Red Hat =- R...

Vulnerabilities fixed in Expat

Vulnerabilities have been fixed in Expat. Combining exploiting these vulnerabilities allows a remote malicious person able to execute arbitrary code or cause a Denial-of-Service cause. Expat's developers have made updates available to address the vulnerabilities. For more information, see:...

Vulnerabilities fixed in Red Hat OpenShift

Vulnerabilities have been fixed in OpenShift. The vulnerabilities allow a malicious person to launch attacks that lead to the following categories of damage: Denial-of-Service DoS Circumvention of security measure Access to system data Red Hat categorizes these vulnerabilities according to the...

Vulnerability fixed in Grafana Enterprise

A vulnerability has been fixed in the Snapshot functionality of Grafana. A malicious party could exploit the vulnerability to obtain sensitive information that should not have been shared with them should have been shared. Under certain circumstances, when "publicmode" is configured, an...

Vulnerabilities fixed in Oracle MySQL

Vulnerabilities have been fixed in MySQL. The vulnerabilities allow a malicious person to perform attacks that result in the following categories of damage: Denial-of-Service DoS SQL Injection Access to sensitive data Access to system data Increased user privileges MySQL categorizes these...

Vulnerabilities fixed in Red Hat OpenShift

Red Hat has fixed vulnerabilities in OpenShift. The vulnerabilities allow an unauthenticated remote malicious person to remotely capable of causing a denial-of-service. -= Red Hat =- Red Hat has made updates available for Red Hat Enterprise Linux 7 and 8. You can install these updates using the...

Vulnerabilities fixed in Red Hat OpenShift

Red Hat has fixed vulnerabilities in OpenShift Container Platform. A malicious party could potentially exploit them to obtain elevated privileges on the vulnerable system or to cause a denial-of-service. -= Red Hat =- Red Hat has made updates available for Red Hat Enterprise Linux 8. You can...

Vulnerability fixed in polkit

A vulnerability has been fixed in polkit, an integral part of several Linux distributions. A local malicious person could gain root privileges by exploiting this vulnerability on the vulnerable system. GitHub has published more information about this vulnerability. For more information see:...

Vulnerability fixed in QEMU

A vulnerability has been fixed in QEMU. The vulnerability allows potentially allow a local malicious person from a guest system to execute arbitrary code on the host system under root permissions. Exploiting the vulnerability is no easy task. -= Red Hat =- Red Hat has made updates available for R...

Vulnerability fixed in Keycloak

A vulnerability has been fixed in Keycloak. The vulnerability allows a malicious party to bypass authentication. Red Hat has released updates to fix the vulnerability. More information can be found on the pages below: https://issues.jboss.org/browse/KEYCLOAK-14090...

Vulnerabilities fixed in Ansible

Vulnerabilities have been fixed in Ansible. The vulnerabilities allow a remote malicious party to obtain sensitive to obtain data and system information. RedHat categorizes these vulnerabilities according to the CVSSv3 method with a highest score of 5. -= Red Hat =- Red Hat has made updates...

Vulnerabilities fixed in Node.js

Vulnerabilities have been fixed in Node.js. The vulnerabilities allow a malicious person to perform attacks that lead to the following categories of damage: Denial-of-Service DoS. Circumvention of security measure Remote code execution User rights Access to system data -= Red Hat =- Red Hat has...