kernel (SL6)

Synopsis: Moderate: kernel security, bug fix, and enhancement update Advisory ID: SLSA-2017:0817-1 Issue Date: 2017-03-21 CVE Numbers: CVE-2016-2069 CVE-2016-2384 CVE-2016-6480 CVE-2016-7097 CVE-2016-7042 CVE-2016-9576 CVE-2016-8399 CVE-2016-10088 CVE-2016-10142 — Security Fix(es): * It was discovered that a remote attacker could leverage the … Read More

wireshark (SL6)

Synopsis: Moderate: wireshark security and bug fix update Advisory ID: SLSA-2017:0631-1 Issue Date: 2017-03-21 CVE Numbers: CVE-2015-3811 CVE-2015-3812 CVE-2015-3813 CVE-2013-4075 — Security Fix(es): * Several denial of service flaws were found in Wireshark. Wireshark could crash or stop responding if … Read More

quagga (SL6)

Synopsis: Moderate: quagga security and bug fix update Advisory ID: SLSA-2017:0794-1 Issue Date: 2017-03-21 CVE Numbers: CVE-2013-2236 CVE-2016-2342 CVE-2016-4049 CVE-2016-1245 CVE-2017-5495 — Security Fix(es): * A stack-based buffer overflow flaw was found in the way Quagga handled IPv6 router advertisement … Read More

openssh (SL6)

Synopsis: Moderate: openssh security and bug fix update Advisory ID: SLSA-2017:0641-1 Issue Date: 2017-03-21 CVE Numbers: CVE-2015-8325 — Security Fix(es): * It was discovered that the OpenSSH sshd daemon fetched PAM environment settings before running the login program. In configurations … Read More

libguestfs (SL6)

Synopsis: Moderate: libguestfs security and bug fix update Advisory ID: SLSA-2017:0564-1 Issue Date: 2017-03-21 CVE Numbers: CVE-2015-8869 — Security Fix(es): * An integer conversion flaw was found in the way OCaml’s String handled its length. Certain operations on an excessively … Read More

qemu-kvm (SL6)

Synopsis: Moderate: qemu-kvm security and bug fix update Advisory ID: SLSA-2017:0621-1 Issue Date: 2017-03-21 CVE Numbers: CVE-2016-3712 — Security Fix(es): * An integer overflow flaw and an out-of-bounds read flaw were found in the way QEMU’s VGA emulator set certain … Read More

ocaml (SL6)

Synopsis: Moderate: ocaml security update Advisory ID: SLSA-2017:0565-1 Issue Date: 2017-03-21 CVE Numbers: CVE-2015-8869 — Security Fix(es): * An integer conversion flaw was found in the way OCaml’s String handled its length. Certain operations on an excessively long String could … Read More

gnutls (SL6)

Synopsis: Moderate: gnutls security, bug fix, and enhancement update Advisory ID: SLSA-2017:0574-1 Issue Date: 2017-03-21 CVE Numbers: CVE-2016-8610 CVE-2017-5337 CVE-2017-5335 CVE-2017-5336 — The following packages have been upgraded to a later upstream version: gnutls (2.12.23). Security Fix(es): * A denial … Read More

curl (SL6)

Synopsis: Moderate: curl security update Advisory ID: SLSA-2017:0847-1 Issue Date: 2017-03-29 CVE Numbers: CVE-2017-2628 — Security Fix(es): * It was found that the fix for CVE-2015-3148 in curl was incomplete. An application using libcurl with HTTP Negotiate authentication could incorrectly … Read More

openjpeg (SL7)

Synopsis: Moderate: openjpeg security update Advisory ID: SLSA-2017:0838-1 Issue Date: 2017-03-22 CVE Numbers: CVE-2016-5139 CVE-2016-5158 CVE-2016-5159 CVE-2016-7163 CVE-2016-9675 CVE-2016-9573 — Security Fix(es): * Multiple integer overflow flaws, leading to heap-based buffer overflows, were found in OpenJPEG. A specially crafted JPEG2000 … Read More