jasper (SL6, SL7)

Synopsis: Important: jasper security update Advisory ID: SLSA-2017:1208-1 Issue Date: 2017-05-09 CVE Numbers: CVE-2015-5203 CVE-2015-5221 CVE-2016-1867 CVE-2016-2089 CVE-2016-1577 CVE-2016-2116 CVE-2016-8690 CVE-2016-8884 CVE-2016-8885 CVE-2016-8691 CVE-2016-8692 CVE-2016-8693 CVE-2016-10249 CVE-2016-8883 CVE-2016-9262 CVE-2016-9387 CVE-2016-9388 CVE-2016-9389 CVE-2016-9390 CVE-2016-9391 CVE-2016-9392 CVE-2016-9393 CVE-2016-9394 CVE-2016-9560 CVE-2016-8654 CVE-2016-9583 CVE-2016-9591 … Read More

qemu-kvm (SL6)

Synopsis: Important: qemu-kvm security update Advisory ID: SLSA-2017:1206-1 Issue Date: 2017-05-09 CVE Numbers: CVE-2016-9603 CVE-2017-2633 CVE-2017-7718 CVE-2017-7980 — Security Fix(es): * A heap buffer overflow flaw was found in QEMU’s Cirrus CLGD 54xx VGA emulator’s VNC display driver support; the … Read More

java-1.7.0-openjdk (SL6, SL7)

Synopsis: Moderate: java-1.7.0-openjdk security update Advisory ID: SLSA-2017:1204-1 Issue Date: 2017-05-09 CVE Numbers: CVE-2017-3511 CVE-2017-3509 CVE-2017-3544 CVE-2017-3533 CVE-2017-3539 CVE-2017-3526 — Security Fix(es): * An untrusted library search path flaw was found in the JCE component of OpenJDK. A local attacker … Read More

bind (SL6)

Synopsis: Important: bind security update Advisory ID: SLSA-2017:1202-1 Issue Date: 2017-05-08 CVE Numbers: CVE-2017-3139 — Security Fix(es): * A denial of service flaw was found in the way BIND handled DNSSEC validation. A remote attacker could use this flaw to … Read More

thunderbird (SL6, SL7)

Synopsis: Important: thunderbird security update Advisory ID: SLSA-2017:1201-1 Issue Date: 2017-05-08 CVE Numbers: CVE-2017-5442 CVE-2017-5443 CVE-2017-5429 CVE-2017-5464 CVE-2017-5465 CVE-2017-5460 CVE-2017-5449 CVE-2017-5446 CVE-2017-5447 CVE-2017-5444 CVE-2017-5445 CVE-2017-5469 CVE-2017-5440 CVE-2017-5441 CVE-2017-5439 CVE-2017-5438 CVE-2017-5436 CVE-2017-5435 CVE-2017-5434 CVE-2017-5433 CVE-2017-5432 CVE-2017-5459 CVE-2017-5466 CVE-2017-5467 CVE-2017-5454 CVE-2017-5451 CVE-2016-10195 … Read More

java-1.8.0-openjdk (SL6)

Synopsis: Moderate: java-1.8.0-openjdk security update Advisory ID: SLSA-2017:1109-1 Issue Date: 2017-04-21 CVE Numbers: CVE-2017-3511 CVE-2017-3509 CVE-2017-3544 CVE-2017-3533 CVE-2017-3539 CVE-2017-3526 — Security Fix(es): * An untrusted library search path flaw was found in the JCE component of OpenJDK. A local attacker … Read More

java-1.8.0-openjdk (SL7)

Synopsis: Moderate: java-1.8.0-openjdk security and bug fix update Advisory ID: SLSA-2017:1108-1 Issue Date: 2017-04-21 CVE Numbers: CVE-2017-3511 CVE-2017-3509 CVE-2017-3544 CVE-2017-3533 CVE-2017-3539 CVE-2017-3526 — Security Fix(es): * An untrusted library search path flaw was found in the JCE component of OpenJDK. … Read More

firefox (SL7)

Synopsis: Critical: firefox security update Advisory ID: SLSA-2017:1106-1 Issue Date: 2017-04-20 CVE Numbers: CVE-2017-5442 CVE-2017-5443 CVE-2017-5429 CVE-2017-5464 CVE-2017-5465 CVE-2017-5460 CVE-2017-5448 CVE-2017-5449 CVE-2017-5446 CVE-2017-5447 CVE-2017-5444 CVE-2017-5445 CVE-2017-5469 CVE-2017-5440 CVE-2017-5441 CVE-2017-5439 CVE-2017-5438 CVE-2017-5437 CVE-2017-5436 CVE-2017-5435 CVE-2017-5434 CVE-2017-5433 CVE-2017-5432 CVE-2017-5459 CVE-2017-5456 CVE-2017-5466 CVE-2017-5467 … Read More

nss and nss-util (SL6, SL7)

Synopsis: Critical: nss and nss-util security update Advisory ID: SLSA-2017:1100-1 Issue Date: 2017-04-20 CVE Numbers: CVE-2017-5461 — The nss-util packages provide utilities for use with the Network Security Services (NSS) libraries. The following packages have been upgraded to a newer … Read More

nss-util (SL6, SL7)

Synopsis: Critical: nss-util security update Advisory ID: SLSA-2017:1102-1 Issue Date: 2017-04-20 CVE Numbers: CVE-2017-5461 — Security Fix(es): * An out-of-bounds write flaw was found in the way NSS performed certain Base64-decoding operations. An attacker could use this flaw to create … Read More