java-1.8.0-openjdk (SL6)

Synopsis: Moderate: java-1.8.0-openjdk security update Advisory ID: SLSA-2019:1811-1 Issue Date: 2019-07-22 CVE Numbers: CVE-2019-2769 CVE-2019-2816 CVE-2019-2842 CVE-2019-2786 CVE-2019-2745 CVE-2019-2762 — Security Fix(es): * OpenJDK: Side-channel attack risks in Elliptic Curve (EC) cryptography (Security, 8208698) (CVE-2019-2745) * OpenJDK: Insufficient checks of … Read More

java-1.8.0-openjdk (SL7)

Synopsis: Moderate: java-1.8.0-openjdk security update Advisory ID: SLSA-2019:1815-1 Issue Date: 2019-07-22 CVE Numbers: CVE-2019-2769 CVE-2019-2816 CVE-2019-2842 CVE-2019-2786 CVE-2019-2745 CVE-2019-2762 — Security Fix(es): * OpenJDK: Side-channel attack risks in Elliptic Curve (EC) cryptography (Security, 8208698) (CVE-2019-2745) * OpenJDK: Insufficient checks of … Read More

java-11-openjdk (SL7)

Synopsis: Moderate: java-11-openjdk security update Advisory ID: SLSA-2019:1810-1 Issue Date: 2019-07-22 CVE Numbers: CVE-2019-2769 CVE-2019-2816 CVE-2019-2786 CVE-2019-2745 CVE-2019-2762 CVE-2019-2818 CVE-2019-2821 — Security Fix(es): * OpenJDK: Side-channel attack risks in Elliptic Curve (EC) cryptography (Security, 8208698) (CVE-2019-2745) * OpenJDK: Insufficient checks … Read More

thunderbird (SL6)

Synopsis: Important: thunderbird security update Advisory ID: SLSA-2019:1777-1 Issue Date: 2019-07-15 CVE Numbers: CVE-2019-11709 CVE-2019-11711 CVE-2019-11712 CVE-2019-11713 CVE-2019-11715 CVE-2019-11717 CVE-2019-11730 CVE-2019-9811 — This update upgrades Thunderbird to version 60.8.0. Security Fix(es): * Mozilla: Memory safety bugs fixed in Firefox 68 … Read More

thunderbird (SL7)

Synopsis: Important: thunderbird security update Advisory ID: SLSA-2019:1775-1 Issue Date: 2019-07-15 CVE Numbers: CVE-2019-11709 CVE-2019-11711 CVE-2019-11712 CVE-2019-11713 CVE-2019-11715 CVE-2019-11717 CVE-2019-11730 CVE-2019-9811 — This update upgrades Thunderbird to version 60.8.0. Security Fix(es): * Mozilla: Memory safety bugs fixed in Firefox 68 … Read More

vim (SL6)

Synopsis: Important: vim security update Advisory ID: SLSA-2019:1774-1 Issue Date: 2019-07-15 CVE Numbers: CVE-2019-12735 — Security Fix(es): * vim/neovim: ‘:source!’ command allows arbitrary command execution via modelines (CVE-2019-12735) — SL6 x86_64 vim-X11-7.4.629-5.el6_10.2.x86_64.rpm vim-common-7.4.629-5.el6_10.2.x86_64.rpm vim-debuginfo-7.4.629-5.el6_10.2.x86_64.rpm vim-enhanced-7.4.629-5.el6_10.2.x86_64.rpm vim-filesystem-7.4.629-5.el6_10.2.x86_64.rpm vim-minimal-7.4.629-5.el6_10.2.x86_64.rpm i386 vim-X11-7.4.629-5.el6_10.2.i686.rpm vim-common-7.4.629-5.el6_10.2.i686.rpm … Read More

firefox (SL6)

Synopsis: Critical: firefox security update Advisory ID: SLSA-2019:1765-1 Issue Date: 2019-07-11 CVE Numbers: CVE-2019-11709 CVE-2019-11711 CVE-2019-11712 CVE-2019-11713 CVE-2019-11715 CVE-2019-11717 CVE-2019-11730 CVE-2019-9811 — This update upgrades Firefox to version 60.8.0 ESR. Security Fix(es): * Mozilla: Memory safety bugs fixed in Firefox … Read More

firefox (SL7)

Synopsis: Critical: firefox security update Advisory ID: SLSA-2019:1763-1 Issue Date: 2019-07-11 CVE Numbers: CVE-2019-11709 CVE-2019-11711 CVE-2019-11712 CVE-2019-11713 CVE-2019-11715 CVE-2019-11717 CVE-2019-11730 CVE-2019-9811 — This update upgrades Firefox to version 60.8.0 ESR. Security Fix(es): * Mozilla: Memory safety bugs fixed in Firefox … Read More

dbus (SL6)

Synopsis: Important: dbus security update Advisory ID: SLSA-2019:1726-1 Issue Date: 2019-07-10 CVE Numbers: CVE-2019-12749 — Security Fix(es): * dbus: DBusServer DBUS_COOKIE_SHA1 authentication bypass (CVE-2019-12749) — SL6 x86_64 dbus-1.2.24-11.el6_10.x86_64.rpm dbus-debuginfo-1.2.24-11.el6_10.i686.rpm dbus-debuginfo-1.2.24-11.el6_10.x86_64.rpm dbus-libs-1.2.24-11.el6_10.i686.rpm dbus-libs-1.2.24-11.el6_10.x86_64.rpm dbus-x11-1.2.24-11.el6_10.x86_64.rpm dbus-devel-1.2.24-11.el6_10.i686.rpm dbus-devel-1.2.24-11.el6_10.x86_64.rpm i386 dbus-1.2.24-11.el6_10.i686.rpm dbus-debuginfo-1.2.24-11.el6_10.i686.rpm dbus-libs-1.2.24-11.el6_10.i686.rpm dbus-x11-1.2.24-11.el6_10.i686.rpm … Read More

libssh2 (SL6)

Synopsis: Important: libssh2 security update Advisory ID: SLSA-2019:1652-1 Issue Date: 2019-07-02 CVE Numbers: CVE-2019-3855 CVE-2019-3856 CVE-2019-3857 CVE-2019-3863 — Security Fix(es): * libssh2: Integer overflow in transport read resulting in out of bounds write (CVE-2019-3855) * libssh2: Integer overflow in keyboard … Read More