Scientific Linux Security Update : shim on SL7.x x86_64 (20141104)

A heap-based buffer overflow flaw was found the way shim parsed certain IPv6 addresses. If IPv6 network booting was enabled, a malicious server could supply a crafted IPv6 address that would cause shim to crash or, potentially, execute arbitrary code. CVE-2014-3676 An out-of-bounds memory write...

shim security update

shim 0.7-8.0.1 - update Oracle Linux certificates Alexey Petrenko - replace securebootca.cer Alexey Petrenko 0.7-8 - out-of-bounds memory read flaw in DHCPv6 packet processing Resolves: CVE-2014-3675 - heap-based buffer overflow flaw in IPv6 address parsing Resolves: CVE-2014-3676 - memory...

Moderate: Red Hat Security Advisory: shim security update

Updated shim packages that fix three security issues are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available for...