[SECURITY] Fedora 26 Update: mingw-c-ares-1.13.0-1.fc26

c-ares is a C library that performs DNS requests and name resolves asynchronously. c-ares is a fork of the library named 'ares', written by Greg Hudson at MIT...

[SECURITY] Fedora 26 Update: c-ares-1.13.0-1.fc26

c-ares is a C library that performs DNS requests and name resolves asynchronously. c-ares is a fork of the library named 'ares', written by Greg Hudson at MIT...

sudo security update

1.8.6p3-28 - Fixes CVE-2017-1000367 Resolves: rhbz1455399...

Security Update for Microsoft SharePoint Enterprise Server 2013 (KB3191887)

A security vulnerability exists in Microsoft SharePoint Enterprise Server 2013 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...

ipa security and bug fix update

4.4.0-14.0.1.el73.6 - Blank out header-logo.png product-name.png Replace login-screen-logo.png 20362818 4.4.0-14.6 - Resolves: 1416488 replication race condition prevents IPA to install - waitforentry: use only DN as parameter - Wait until HTTPS principal entry is replicated to replica - Use prop...

Oracle Linux 6 : qemu-kvm (ELSA-2017-0309)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2017-0309 advisory. - kvm-cirrus-fix-oob-access-issue-CVE-2017-2615.patch bz1418230 bz1419416 - Resolves: bz1418230 CVE-2017-2615 qemu-kvm: Qemu: display: cirrus: oob acce...

CVE-2017-5992

Openpyxl 2.4.1 resolves external entities by default, which allows remote attackers to conduct XXE attacks via a crafted .xlsx document...

CVE-2017-5992

Openpyxl 2.4.1 resolves external entities by default, which allows remote attackers to conduct XXE attacks via a crafted .xlsx document...

sudo security update

1.8.6p3-25 - Update noexec syscall blacklist - Fixes CVE-2016-7032 and CVE-2016-7076 Resolves: rhbz1391937...

USN-3143-1: c-ares vulnerability

Gzob Qq discovered that c-ares incorrectly handled certain hostnames. A remote attacker could use this issue to cause applications using c-ares to crash, resulting in a denial of service, or possibly execute arbitrary code...

[SECURITY] Fedora 23 Update: mingw-c-ares-1.12.0-1.fc23

c-ares is a C library that performs DNS requests and name resolves asynchronously. c-ares is a fork of the library named 'ares', written by Greg Hudson at MIT...

[SECURITY] Fedora 25 Update: mingw-c-ares-1.12.0-1.fc25

c-ares is a C library that performs DNS requests and name resolves asynchronously. c-ares is a fork of the library named 'ares', written by Greg Hudson at MIT...

[SECURITY] Fedora 25 Update: c-ares-1.12.0-1.fc25

c-ares is a C library that performs DNS requests and name resolves asynchronously. c-ares is a fork of the library named 'ares', written by Greg Hudson at MIT...

Oracle Linux 6 : icedtea-web (ELSA-2016-0778)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2016-0778 advisory. 1.6.2-1 - updated to 1.6.2 - fixed also rhbz1303437 - package owns /etc/bashcompletion.d but it should not own it - Resolves: rhbz1275523 1.6.1-4 -...

krb5 security update

1.13.2-12 - Fix CVE-2015-8631, CVE-2015-8630, and CVE-2015-8629 - Remove obsolete trigger to enable building of package - Resolves: 1306969...

java-1.8.0-openjdk security update

1:1.8.0.77-0.b03 - Remove what remains of the SunEC sources in the remove-intree-libraries script. - Resolves: rhbz1320664 1:1.8.0.77-0.b03 - Update to u77b03. - Drop 8146566 which is applied upstream. - Replace s390 Java options patch with general version from IcedTea. - Apply s390 patches...

Fedora 23 : squid-3.5.9-7.fc23 (2015-8d643c4d18)

Resolves: 1266255 ---- squid-3.5.9-6.fc23 - new version: 3.5.9 - Resolves: 1217762, 1230501, 1231992 - Security fix for 1264445, 1264450 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...

java-1.8.0-openjdk security update

1:1.8.0.71-1.b15 - Add patch to turn off strict overflow on IndicRearrangementProcessor,2.cpp - Resolves: rhbz1295751 1:1.8.0.71-0.b15 - January 2016 security update to u71b15. - Improve verbosity and helpfulness of tarball generation script. - Update patch documentation using version originally...

java-1.8.0-openjdk security update

1:1.8.0.71-2.b15 - Add md5sum for previous java.security file so it gets updated. - Resolves: rhbz1295753 1:1.8.0.71-1.b15 - Restore upstream version of system LCMS patch removed by 'sync with Fedora' - Add patch to turn off strict overflow on IndicRearrangementProcessor,2.cpp - Resolves:...

libpng12 security update

1.2.50-7 - Security fix for CVE-2015-7981 and CVE-2015-8126 - Resolves: 1283576...