gnupg2 (SL7)

Synopsis: Important: gnupg2 security update Advisory ID: SLSA-2018:2181-1 Issue Date: 2018-07-12 CVE Numbers: CVE-2018-12020 — Security Fix(es): * gnupg2: Improper sanitization of filenames allows for the display of fake status messages and the bypass of signature verification (CVE-2018-12020) — SL7 … Read More

gnupg2 (SL6)

Synopsis: Important: gnupg2 security update Advisory ID: SLSA-2018:2180-1 Issue Date: 2018-07-12 CVE Numbers: CVE-2018-12020 — Security Fix(es): * gnupg2: Improper sanitization of filenames allows for the display of fake status messages and the bypass of signature verification (CVE-2018-12020) — SL6 … Read More

qemu-kvm (SL6)

Synopsis: Important: qemu-kvm security update Advisory ID: SLSA-2018:2162-1 Issue Date: 2018-07-10 CVE Numbers: CVE-2017-13672 CVE-2018-5683 CVE-2018-7858 CVE-2018-3639 — Security Fix(es): * An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load & … Read More

kernel (SL6)

Synopsis: Important: kernel security and bug fix update Advisory ID: SLSA-2018:2164-1 Issue Date: 2018-07-10 CVE Numbers: CVE-2018-3639 CVE-2018-3665 CVE-2018-10675 CVE-2018-10872 — Security Fix(es): * An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution … Read More

firefox (SL6)

Synopsis: Critical: firefox security update Advisory ID: SLSA-2018:2112-1 Issue Date: 2018-06-28 CVE Numbers: CVE-2018-6126 CVE-2017-7762 CVE-2018-12359 CVE-2018-12360 CVE-2018-12362 CVE-2018-12363 CVE-2018-12364 CVE-2018-12365 CVE-2018-12366 CVE-2018-5156 CVE-2018-5188 — This update upgrades Firefox to version 60.1.0 ESR. Many older firefox extensions must be updated … Read More

firefox (SL7)

Synopsis: Critical: firefox security update Advisory ID: SLSA-2018:2113-1 Issue Date: 2018-06-28 CVE Numbers: CVE-2018-6126 CVE-2017-7762 CVE-2018-12359 CVE-2018-12360 CVE-2018-12362 CVE-2018-12363 CVE-2018-12364 CVE-2018-12365 CVE-2018-12366 CVE-2018-5156 CVE-2018-5188 — This update upgrades Firefox to version 60.1.0 ESR. Many older firefox extensions must be updated … Read More

python (SL7)

Synopsis: Moderate: python security update Advisory ID: SLSA-2018:2123-1 Issue Date: 2018-07-03 CVE Numbers: CVE-2016-2183 — Security Fix(es): * A flaw was found in the way the DES/3DES cipher was used as part of the TLS/SSL protocol. A man-in-the-middle attacker could … Read More

libvirt (SL6)

Synopsis: Low: libvirt security update Advisory ID: SLSA-2018:1929-1 Issue Date: 2018-06-19 CVE Numbers: CVE-2018-5748 CVE-2018-1064 — Security Fix(es): * libvirt: Resource exhaustion via qemuMonitorIORead() method (CVE-2018-5748) * libvirt: Incomplete fix for CVE-2018-5748 triggered by QEMU guest agent (CVE-2018-1064) — SL6 … Read More

glibc (SL6)

Synopsis: Moderate: glibc security and bug fix update Advisory ID: SLSA-2018:1879-1 Issue Date: 2018-06-19 CVE Numbers: CVE-2017-15670 CVE-2017-15804 — Security Fix(es): * glibc: Buffer overflow in glob with GLOB_TILDE (CVE-2017-15670) * glibc: Buffer overflow during unescaping of user names with … Read More

samba (SL6)

Synopsis: Low: samba security and bug fix update Advisory ID: SLSA-2018:1860-1 Issue Date: 2018-06-19 CVE Numbers: CVE-2017-2619 CVE-2018-1050 — Security Fix(es): * samba: Null pointer indirection in printer server process (CVE-2018-1050) — SL6 x86_64 libsmbclient-3.6.23-51.el6.i686.rpm libsmbclient-3.6.23-51.el6.x86_64.rpm samba-client-3.6.23-51.el6.x86_64.rpm samba-common-3.6.23-51.el6.i686.rpm samba-common-3.6.23-51.el6.x86_64.rpm samba-debuginfo-3.6.23-51.el6.i686.rpm … Read More