Virtuozzo Linux Errata and Bugfix Advisory 2017:0039

Upstream security update. Follow RHBA-2017-0039 for details...

Virtuozzo Linux Errata and Bugfix Advisory 2017:0033

Upstream security update. Follow RHBA-2017-0033 for details...

Virtuozzo Linux Errata and Bugfix Advisory 2017:0035

Upstream security update. Follow RHBA-2017-0035 for details...

Virtuozzo Linux Errata and Bugfix Advisory 2017:0037

Upstream security update. Follow RHBA-2017-0037 for details...

openSUSE Security Update : php7 (openSUSE-2017-61)

This update for php7 fixes the following issues : - CVE-2016-9933 Possible stack overflow on truecolor images handling bsc1015187 - CVE-2016-9934 Dereference from NULL pointer could lead to crash bsc1015188 - CVE-2016-9935 Invalid read could lead to crash bsc1015189 - CVE-2016-9936 Use After free...

Virtuozzo Linux Errata and Bugfix Advisory 2017:0028

Upstream security update. Follow RHBA-2017-0028 for details...

openSUSE Security Update : the Linux Kernel (openSUSE-2016-1431)

The openSUSE 13.2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : - CVE-2015-8962: Double free vulnerability in the sgcommonwrite function in drivers/scsi/sg.c in the Linux kernel allowed local users to gain privileges or cause a denial of...

DLA-709-1 postgresql-9.1 - bugfix update

Bulletin has no description...

Fedora 25 : php (2016-d6b82fc729)

13 Oct 2016 - PHP version 7.0.12 Core: - Fixed bug php73025 Heap Buffer Overflow in virtualpopen of zendvirtualcwd.c. cmb - Fixed bug php72703 Out of bounds global memory read in BFcrypt triggered by passwordverify. Anatol - Fixed bug php73058 crypt broken when salt is 'too' long. Anatol - Fixed...

kernel security, bug fix, and enhancement update

3.10.0-514.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-514 - mm remove gupflags FOLLWRITE games from getuserpages Larry Woodman 1385124...

SUSE SLED12 / SLES12 Security Update : openslp (SUSE-SU-2016:2661-1)

This update for openslp fixes two security issues and two bugs. The following vulnerabilities were fixed : - CVE-2016-4912: A remote attacker could have crashed the server with a large number of packages bsc980722 - CVE-2016-7567: A remote attacker could cause a memory corruption having unspecifi...

openSUSE Security Update : the Linux Kernel (openSUSE-2016-1227) (Dirty COW)

The openSUSE 13.2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : - CVE-2015-8956: The rfcommsockbind function in net/bluetooth/rfcomm/sock.c in the Linux kernel allowed local users to obtain sensitive information or cause a denial of service...

openSUSE Security Update : chromium (openSUSE-2016-1142)

This update Chromium 53.0.2785.143 fixes the following issues boo1002140 - CVE-2016-5177: Use after free in V8 - CVE-2016-5178: Various fixes from internal audits The following bugfix changes are included : - Export GDKBACKEND=x11 before starting chromium, ensuring that it's started as an Xwaylan...

Fedora 23 : krb5 (2016-4a36663643)

Misc samba and sssd-related bugfixes. ---- Bump version to 1.14.3 for the convenience of those needing the SNI fix. ---- Require krb5 to set the 'Host:' header when speaking KKDCPP. This fixes use of TLS with SNI. ---- Fix low-impact CVE-2016-3120 where S4U2Self may cause KDC crash when anon is...

Fedora 24 : pulp / pulp-docker / pulp-ostree / pulp-puppet / pulp-python / etc (2016-4373f7d32a)

2.8.6 is a security and bugfix release. Included in the list of fixed issues in 2.8.5 are two CVEs : - CVE-2016-3696: Leakage of CA key in pulp-qpid-ssl-cfg - CVE-2016-3704: Unsafe use of bash $RANDOM for NSS DB password and seed Several issues with database migrations are also addressed in this...

Fedora 24 : imlib2 (2016-ad6005ba92)

A new upstream update fixing several vulnerabilities. See the bug list for more information. ---- Rebase to the new upstream bugfix-only version. Add security fixes for the referenced bugs. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora...

Fedora 22 : imlib2 (2016-b4212484d5)

A new upstream update fixing several vulnerabilities. See the bug list for more information. ---- Rebase to the new upstream bugfix-only version. Add security fixes for the referenced bugs. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora...

Debian DLA-491-1 : postgresql-9.1 bugfix update

The PostgreSQL project released a new version of the PostgreSQL 9.1 branch : - Clear the OpenSSL error queue before OpenSSL calls, rather than assuming it's clear already; and make sure we leave it clear afterwards Peter Geoghegan, Dave Vitek, Peter Eisentraut This change prevents problems when...

[SECURITY] [DLA 491-1] postgresql-9.1 bugfix update

Package : postgresql-9.1 Version : 9.1.22-0+deb7u1 The PostgreSQL project released a new version of the PostgreSQL 9.1 branch: Clear the OpenSSL error queue before OpenSSL calls, rather than assuming its clear already; and make sure we leave it clear afterwards Peter Geoghegan, Dave Vitek, Peter...

DLA-491-1 postgresql-9.1 - bugfix update

Bulletin has no description...