Fedora 20 : xen-4.3.4-6.fc20 (2015-9965)

Heap overflow in QEMU PCNET controller, allowing guest-host escape XSA-135, CVE-2015-3209 1230537 GNTTABOPswapgrantref operation misbehavior XSA-134, CVE-2015-4163 vulnerability in the iret hypercall handler XSA-136, CVE-2015-4164 Potential unintended writes to host MSI message data field via qem...

[SECURITY] Fedora 20 Update: nss-3.19.1-1.0.fc20

Network Security Services NSS is a set of libraries designed to support cross-platform development of security-enabled client and server applications. Applications built with NSS can support SSL v2 and v3, TLS, PKCS 5, PKCS 7, PKCS 11, PKCS 12, S/MIME, X.509 v3 certificates, and other security...

Fedora Update for pcs FEDORA-2015-8761

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for openslp FEDORA-2015-7561

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for php-ZendFramework2 FEDORA-2015-7887

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for torque FEDORA-2015-8577

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 20 : kernel-3.19.8-100.fc20 (2015-8518)

The 3.19.8 update contains a number of important fixes across the tree The 3.19.7 update contains a number of important updates across the tree The 3.19.6 stable updates contains a number of important fixes across the tree Note that Tenable Network Security has extracted the preceding description...

Fedora 20 : dovecot-2.2.16-2.fc20 (2015-7159)

fixes CVE-2015-3420: SSL/TLS handshake failures leading to a crash of the login process - dovecot updated to 2.2.16 - auth: Don't crash if master user login is attempted without any configured master=yes passdbs - Parsing UTF-8 text for mails could have caused broken results sometimes if bufferin...

Fedora 20 : wpa_supplicant-2.0-13.fc20 (2015-6952)

This update addresses a security vulnerability identified as CVE-2015-1863 . More information on this vulnerability is provided by upstream at https://w1.fi/security/2015-1/wpasupplicant-p2p-ssid-overflow.txt . An extract : Attacker or a system controlled by the attacker needs to be within radio...

Fedora 20 : netcf-0.2.8-1.fc20 (2015-5910)

Security fix for CVE-2014-8119, as well as adding a few other minor bugfixes and enhancements support for multiple IPv4 addresses, simultaneous static & dhcp for IPv4 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenab...

Fedora Update for libreoffice FEDORA-2015-7213

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 20 : xen-4.3.4-3.fc20 (2015-6583)

Information leak through XENDOMCTLgettscinfo XSA-132, CVE-2015-3340 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...

Fedora Update for xen FEDORA-2015-6583

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for curl FEDORA-2015-6712

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 20 : lcms-1.19-13.fc20 (2015-1648)

apply patch for CVE-2013-4276 - apply patch for 'Use of uninitialized values on 64 bit machines.' Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as...

Fedora 20 : ntp-4.2.6p5-22.fc20 (2015-5874)

Security fix for CVE-2015-1799, CVE-2015-1798, 1210324 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

Fedora Update for openstack-neutron FEDORA-2015-5997

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for mingw-libtasn1 FEDORA-2015-5390

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 20 Update: mingw-libtasn1-3.8-2.fc20

libtasn1 is the ASN.1 library used in GNUTLS. This package contains the MinGW Windows cross compiled libtasn1 library...

Fedora 20 : mediawiki-1.23.9-1.fc20 (2015-5569)

Changes since 1.23.8 - bug T85848, bug T71210 SECURITY: Don't parse XMP blocks that contain XML entities, to prevent various DoS attacks. - bug T85848 SECURITY: Don't allow directly calling Xml::isWellFormed, to reduce likelihood of DoS. - bug T88310 SECURITY: Always expand xml entities when...