280 matches found
sudo security update
1.8.25p1-8.1 - RHEL 8.1.0.Z ERRATUM - CVE-2019-18634 Resolves: rhbz1798092...
SDL security update
CentOS Errata and Security Advisory CESA-2019:4024 An update for SDL is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
FreeBSD : FreeBSD -- Intel CPU Microcode Update (fbe10a8a-05a1-11ea-9dfa-f8b156ac3ff9) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout) (Spectre)
Starting with version 1.26, the devcpu-data port/package includes updates and mitigations for the following technical and security advisories depending on CPU model. Intel TSX Updates TAA CVE-2019-11135 Voltage Modulation Vulnerability CVE-2019-11139 MDCLEAR Operations CVE-2018-12126 CVE-2018-121...
FreeBSD -- Intel CPU Microcode Update
Starting with version 1.26, the devcpu-data port/package includes updates and mitigations for the following technical and security advisories depending on CPU model. Intel TSX Updates TAA CVE-2019-11135 Voltage Modulation Vulnerability CVE-2019-11139 MDCLEAR Operations CVE-2018-12126 CVE-2018-121...
FreeBSD -- Machine Check Exception on Page Size Change
Intel discovered a previously published erratum on some Intel platforms can be exploited by malicious software to potentially cause a denial of service by triggering a machine check that will crash or hang the system. Malicious guest operating systems may be able to crash the host...
OracleVM 3.3 / 3.4 : sudo (OVMSA-2019-0050)
The remote OracleVM system is missing necessary patches to address critical security updates : - Fixes OraBug: 28747380 sudo does not honor envkeep-='KRB5CCNAME' after 'sudo -k' - RHEL-6.10.z ERRATUM - fixed CVE-2019-14287 Resolves: rhbz1760684 C Tenable Network Security, Inc. The package checks ...
sudo security update
1.8.6p3-29.0.1.el610.2 - Fixes OraBug: 28747380 sudo does not honor envkeep-='KRB5CCNAME' after 'sudo -k' [email protected] 1.8.6p3-29.2 - RHEL-6.10.z ERRATUM - fixed CVE-2019-14287 Resolves: rhbz1760684...
rsyslog security and bug fix update
8.24.0-38.0.2 - Newer gcc complains about implicit declaration of prctl. Added header file to quiesce the compiler 8.24.0-38 RHEL 7.7 ERRATUM - added patch increasing max path size preventing buffer overflow with too long paths resolves: rhbz1656860 8.24.0-37 RHEL 7.7 ERRATUM - edited patch fixin...
Important: Red Hat Security Advisory: kernel security and bug fix update
An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
Information Disclosure
Red Hat Gluster Storage is vulnerable to information disclosure attacks. A remote authenticated user could exploit a flaw in the erratum RHSA-2017:2858 to obtain potentially sensitive information on the target system...
Unbreakable Enterprise kernel security update
4.1.12-124.15.4 - x86/bugs/IBRS: Keep SSBD mitigation in effect if spectrev2=ibrs is selected Mihai Carabas - fs/pstore: update the backend parameter in pstore module Wang Long Orabug: 27994372 - kvm: vmx: Reinstate support for CPUs without virtual NMI Paolo Bonzini Orabug: 28041210 - dm crypt: a...
CVE-2017-15086
It was discovered that the fix for CVE-2017-12151 was not properly shipped in erratum RHSA-2017:2858 for Red Hat Gluster Storage 3.3 for RHEL 6...
Code injection
It was discovered that the fix for CVE-2017-12151 was not properly shipped in erratum RHSA-2017:2858 for Red Hat Gluster Storage 3.3 for RHEL 6...
Code injection
It was discovered that the fix for CVE-2017-12150 was not properly shipped in erratum RHSA-2017:2858 for Red Hat Gluster Storage 3.3 for RHEL 6...
CVE-2017-15085
CVE-2017-15085 notes that the fix for CVE-2017-12150 was not properly shipped in RHSA-2017:3110 for Red Hat Gluster Storage 3.3 on RHEL 6. The connected advisories confirm CVE-2017-12150, CVE-2017-12151, and CVE-2017-12163 relate to Samba security fixes (SMB signing, DFS/SMB2 encryption handling,...
CVE-2017-15086
It was discovered that the fix for CVE-2017-12151 was not properly shipped in erratum RHSA-2017:2858 for Red Hat Gluster Storage 3.3 for RHEL 6...
CVE-2017-15085
It was discovered that the fix for CVE-2017-12150 was not properly shipped in erratum RHSA-2017:2858 for Red Hat Gluster Storage 3.3 for RHEL 6...
PT-2017-13866 · Red Hat · Red Hat Gluster Storage
Name of the Vulnerable Software and Affected Versions: Red Hat Gluster Storage version 3.3 for RHEL 6 Description: A previously fixed issue was not properly included in the erratum RHSA-2017:2858 for Red Hat Gluster Storage 3.3 for RHEL 6. Recommendations: At the moment, there is no information...
PT-2017-13864 · Red Hat · Red Hat Gluster Storage
Name of the Vulnerable Software and Affected Versions: Red Hat Gluster Storage version 3.3 for RHEL 6 Description: A fix for a previous issue was not properly included in an erratum for Red Hat Gluster Storage, potentially leaving it exposed. Recommendations: For Red Hat Gluster Storage version 3...
PT-2017-13865 · Red Hat · Red Hat Gluster Storage +1
Name of the Vulnerable Software and Affected Versions: Red Hat Gluster Storage version 3.3 for RHEL 6 Description: A previously fixed issue was not properly included in an erratum for Red Hat Gluster Storage, indicating an incomplete fix. Recommendations: For Red Hat Gluster Storage version 3.3 f...