Important: Red Hat Security Advisory: updated RHEL-8 based Middleware Containers container images

Updated RHEL-8 based Middleware Containers container images are now available The RHEL-8 based Middleware Containers container images have been updated to address the following security advisory: RHSA-2025:11534 see References Users of RHEL-8 based Middleware Containers container images are advis...

Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2025-802)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-802 advisory. In the Linux kernel, the following vulnerability has been resolved: nullblk: fix null-ptr-dereference while configuring 'power' and 'submitqueues' CVE-2024-36478 In the Linux kernel, the...

SUSE-SU-2024:1007-1 Security update for shadow

This update for shadow fixes the following issues: - CVE-2023-29383: Fixed apparent /etc/shadow manipulation via chfn bsc1210507. - CVE-2023-4641: Fixed possible password leak during passwd1 change bsc1214806. The following non-security bugs were fixed: - bsc1176006: Fix chage date miscalculation...

SUSE: Security Advisory (SUSE-SU-2023:3865-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2023:2182-1 Security update for SUSE Manager Client Tools

This update fixes the following issues: prometheus-blackboxexporter: - Security issues fixed: CVE-2022-46146: Fix authentication bypass via cache poisoning bsc1208062 - Other non-security bugs fixed and changes: Add minversion parameter of tlsconfig to allow enabling TLS 1.0 and 1.1 bsc1209113 On...

SUSE-SU-2023:1815-1 Security update for amazon-ssm-agent

This update for amazon-ssm-agent fixes the following issue: - rebuilt using go1.19.7 to fix bugs and security issues...

SUSE-SU-2022:3601-1 Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-1504002421 fixes several issues. The following security issues were fixed: - CVE-2022-41674: Fixed buffer overflow that can be triggered by injected WLAN frames bsc1203994. - CVE-2022-42719: Fixed use-after-free in the mac80211 stack when parsing a...

OPENSUSE-SU-2021:1095-1 Security update for opera

This update for opera fixes the following issues: Update to version 77.0.4054.277 - DNA-94291 Video conference popout doesnt remember its size after resizing - DNA-94399 Incorrect icon for wp.pl in address bar dropdown - DNA-94462 Low quality of default wallpaper on windows - The update to chromi...

SUSE: Security Advisory (SUSE-SU-2020:14442-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES12 Security Update : kernel (SUSE-SU-2021:0739-1)

The SUSE Linux Enterprise 12 SP5 kernel Azure was updated to receive various security and bugfixes. The following security bugs was fixed : CVE-2021-3348: Fixed a use-after-free read in nbdqueuerq bsc1181504. The update package also includes non-security fixes. See advisory for details. Note that...

SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2020:2105-1)

The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : CVE-2019-19462: relayopen in kernel/relay.c in the Linux kernel allowed local users to cause a denial of service such as relay blockage by triggering a NULL...

Security fix for the ALT Linux 10 package firefox-esr version 68.1.0-alt1

Sept. 4, 2019 Andrey Cherepanov 68.1.0-alt1 - New ESR version 68.1.0. - Fixed: + CVE-2019-11751 Malicious code execution through command line parameters + CVE-2019-11746 Use-after-free while manipulating video + CVE-2019-11744 XSS by breaking out of title and textarea elements using innerHTML +...

Fedora 29 : chromium (2019-a1af621faf)

Fix itinerant crashes. ---- Update to Chromium 75.0.3770.100. The usual pile of bugs and CVE fixes. vaapi support disabled, just too broken. : Fixes CVE-2019-5805 CVE-2019-5806 CVE-2019-5807 CVE-2019-5808 CVE-2019-5809 CVE-2019-5810 CVE-2019-5811 CVE-2019-5813 CVE-2019-5814 CVE-2019-5815...

SUSE-SU-2019:1596-1 Security update for glib2

This update for glib2 fixes the following issues: Security issues fixed: - CVE-2019-12450: Fixed an improper file permission when copy operation takes place bsc1137001. - CVE-2018-16428: Avoid a NULL pointer dereference bsc1107121. - CVE-2018-16429: Fixed out-of-bounds read vulnerability...

Arbitrary Command Execution

Red Hat CloudForms Management Engine delivers the insight, control, and automation needed to address the challenges of managing virtual environments. CloudForms Management Engine is built on Ruby on Rails, a model-view-controller MVC framework for web application development. Action Pack implemen...

openSUSE: Security Advisory for ntp (openSUSE-SU-2019:1143-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

openSUSE Security Update : python-Django1 (openSUSE-2019-608)

This update for python-Django1 to version 1.11.15 fixes the following issues : The following security vulnerability was fixed : - CVE-2018-14574: Fixed an open redirect possibility in CommonMiddleware boo1102680 The following other bugs were fixed : - Fixed WKBWriter.write and writehex for empty...

Updated imagemagick packages fix security vulnerabilities & bugs

Imagemagick has been updated to fix several bugs and security issues...

Updated samba packages fix security vulnerabilities

Updated samba packages fix security vulnerabilities: A malicious server could return a directory entry that could corrupt libsmbclient memory CVE-2018-10858. Missing access control checks allow discovery of confidential attribute values via authenticated LDAP search expressions CVE-2018-10919. Th...

openSUSE Security Update : exiv2 (openSUSE-2018-1224)

This update for exiv2 fixes the following issues : exiv2 was updated to latest 0.26 branch, fixing bugs and security issues : - CVE-2018-12264, CVE-2018-12265: Integer overflows in the LoaderExifJpeg class could lead to memory corruption bsc1097599 %NASLMINLEVEL 70300 C Tenable Network Security,...