openjpeg (SL7)

Synopsis: Moderate: openjpeg security update Advisory ID: SLSA-2017:0838-1 Issue Date: 2017-03-22 CVE Numbers: CVE-2016-5139 CVE-2016-5158 CVE-2016-5159 CVE-2016-7163 CVE-2016-9675 CVE-2016-9573 — Security Fix(es): * Multiple integer overflow flaws, leading to heap-based buffer overflows, were found in OpenJPEG. A specially crafted JPEG2000 … Read More

icoutils (SL7)

Synopsis: Important: icoutils security update Advisory ID: SLSA-2017:0837-1 Issue Date: 2017-03-22 CVE Numbers: CVE-2017-5208 CVE-2017-5333 CVE-2017-5332 CVE-2017-6009 CVE-2017-6010 CVE-2017-6011 — Security Fix(es): * Multiple vulnerabilities were found in icoutils, in the wrestool program. An attacker could create a crafted executable … Read More

openjpeg (SL6)

Synopsis: Moderate: openjpeg security update Advisory ID: SLSA-2017:0559-1 Issue Date: 2017-03-19 CVE Numbers: CVE-2016-5139 CVE-2016-5158 CVE-2016-5159 CVE-2016-7163 CVE-2016-9675 — Security Fix(es): * Multiple integer overflow flaws, leading to heap-based buffer overflows, were found in OpenJPEG. A specially crafted JPEG2000 image … Read More

firefox (SL7)

Synopsis: Critical: firefox security update Advisory ID: SLSA-2017:0558-1 Issue Date: 2017-03-17 CVE Numbers: CVE-2017-5428 — Security Fix(es): * A flaw was found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash … Read More

tomcat6 (SL6)

Synopsis: Moderate: tomcat6 security update Advisory ID: SLSA-2017:0527-1 Issue Date: 2017-03-15 CVE Numbers: CVE-2016-6816 CVE-2016-8745 — Security Fix(es): * It was discovered that the code that parsed the HTTP request line permitted invalid characters. This could be exploited, in conjunction … Read More

thunderbird (SL5, SL6, SL7)

Synopsis: Important: thunderbird security update Advisory ID: SLSA-2017:0498-1 Issue Date: 2017-03-14 CVE Numbers: CVE-2017-5400 CVE-2017-5401 CVE-2017-5402 CVE-2017-5404 CVE-2017-5407 CVE-2017-5410 CVE-2017-5408 CVE-2017-5405 CVE-2017-5398 — This update upgrades Thunderbird to version 45.8.0. Security Fix(es): * Multiple flaws were found in the processing … Read More

firefox (SL5, SL6)

Synopsis: Critical: firefox security update Advisory ID: SLSA-2017:0459-1 Issue Date: 2017-03-08 CVE Numbers: CVE-2017-5400 CVE-2017-5401 CVE-2017-5402 CVE-2017-5404 CVE-2017-5407 CVE-2017-5410 CVE-2017-5408 CVE-2017-5405 CVE-2017-5398 — This update upgrades Firefox to version 45.8.0 ESR. Security Fix(es): * Multiple flaws were found in the … Read More

firefox (SL7)

Synopsis: Critical: firefox security update Advisory ID: SLSA-2017:0461-1 Issue Date: 2017-03-08 CVE Numbers: CVE-2017-5400 CVE-2017-5401 CVE-2017-5402 CVE-2017-5404 CVE-2017-5407 CVE-2017-5410 CVE-2017-5408 CVE-2017-5405 CVE-2017-5398 — This update upgrades Firefox to version 52.0 ESR. Security Fix(es): * Multiple flaws were found in the … Read More

kvm (SL5)

Synopsis: Important: kvm security update Advisory ID: SLSA-2017:0454-1 Issue Date: 2017-03-07 CVE Numbers: CVE-2017-2615 CVE-2017-2620 — Security Fix(es): * Quick emulator (QEMU) built with the Cirrus CLGD 54xx VGA emulator support is vulnerable to an out-of-bounds access issue. It could … Read More

ipa (SL7)

Synopsis: Moderate: ipa security and bug fix update Advisory ID: SLSA-2017:0388-1 Issue Date: 2017-03-02 CVE Numbers: CVE-2017-2590 — Security Fix(es): * It was found that IdM’s ca-del, ca-disable, and ca-enable commands did not properly check the user’s permissions while modifying … Read More