kernel (SL7)

Synopsis: Important: kernel security update Advisory ID: SLSA-2019:3872-1 Issue Date: 2019-11-14 CVE Numbers: None — Security Fix(es): * hw: Intel GPU blitter manipulation can allow for arbitrary kernel memory write (CVE-2019-0155) — SL7 x86_64 bpftool-3.10.0-1062.4.3.el7.x86_64.rpm bpftool-debuginfo-3.10.0-1062.4.3.el7.x86_64.rpm kernel-3.10.0-1062.4.3.el7.x86_64.rpm kernel-debug-3.10.0-1062.4.3.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-1062.4.3.el7.x86_64.rpm kernel-debug-devel-3.10.0-1062.4.3.el7.x86_64.rpm … Read More

ghostscript (SL7)

Synopsis: Important: ghostscript security update Advisory ID: SLSA-2019:3888-1 Issue Date: 2019-11-14 CVE Numbers: CVE-2019-14869 — Security Fix(es): * ghostscript: -dSAFER escape in .charkeys (701841) (CVE-2019-14869) — SL7 x86_64 ghostscript-9.25-2.el7_7.3.i686.rpm ghostscript-9.25-2.el7_7.3.x86_64.rpm ghostscript-cups-9.25-2.el7_7.3.x86_64.rpm ghostscript-debuginfo-9.25-2.el7_7.3.i686.rpm ghostscript-debuginfo-9.25-2.el7_7.3.x86_64.rpm libgs-9.25-2.el7_7.3.i686.rpm libgs-9.25-2.el7_7.3.x86_64.rpm ghostscript-gtk-9.25-2.el7_7.3.x86_64.rpm libgs-devel-9.25-2.el7_7.3.i686.rpm libgs-devel-9.25-2.el7_7.3.x86_64.rpm noarch ghostscript-doc-9.25-2.el7_7.3.noarch.rpm … Read More

kernel (SL6)

Synopsis: Important: kernel security update Advisory ID: SLSA-2019:3878-1 Issue Date: 2019-11-14 CVE Numbers: CVE-2019-0155 — Security Fix(es): * hw: Intel GPU blitter manipulation can allow for arbitrary kernel memory write (CVE-2019-0155) For more details about the security issue(s), including the … Read More

kernel (SL6)

Synopsis: Important: kernel security and bug fix update Advisory ID: SLSA-2019:3836-1 Issue Date: 2019-11-13 CVE Numbers: None — Security Fix(es): * hw: Machine Check Error on Page Size Change (IFU) (CVE-2018-12207) * hw: TSX Transaction Asynchronous Abort (TAA) (CVE-2019-11135) * … Read More

kernel (SL7)

Synopsis: Important: kernel security update Advisory ID: SLSA-2019:3834-1 Issue Date: 2019-11-13 CVE Numbers: None — Security Fix(es): * hw: Machine Check Error on Page Size Change (IFU) (CVE-2018-12207) * hw: TSX Transaction Asynchronous Abort (TAA) (CVE-2019-11135) * hw: Intel GPU … Read More

thunderbird (SL6)

Synopsis: Important: thunderbird security update Advisory ID: SLSA-2019:3756-1 Issue Date: 2019-11-06 CVE Numbers: CVE-2019-11757 CVE-2019-11758 CVE-2019-11759 CVE-2019-11760 CVE-2019-11761 CVE-2019-11762 CVE-2019-11763 CVE-2019-11764 CVE-2019-15903 — This update upgrades Thunderbird to version 68.2.0. Security Fix(es): * Mozilla: Memory safety bugs fixed in Firefox … Read More

sudo (SL6)

Synopsis: Important: sudo security update Advisory ID: SLSA-2019:3755-1 Issue Date: 2019-11-06 CVE Numbers: CVE-2019-14287 — Security Fix(es): * sudo: Privilege escalation via ‘Runas’ specification with ‘ALL’ keyword (CVE-2019-14287) — SL6 x86_64 sudo-1.8.6p3-29.el6_10.2.x86_64.rpm sudo-debuginfo-1.8.6p3-29.el6_10.2.x86_64.rpm sudo-debuginfo-1.8.6p3-29.el6_10.2.i686.rpm sudo-devel-1.8.6p3-29.el6_10.2.i686.rpm sudo-devel-1.8.6p3-29.el6_10.2.x86_64.rpm i386 sudo-1.8.6p3-29.el6_10.2.i686.rpm sudo-debuginfo-1.8.6p3-29.el6_10.2.i686.rpm sudo-devel-1.8.6p3-29.el6_10.2.i686.rpm … Read More

firefox (SL6)

Synopsis: Critical: firefox security update Advisory ID: SLSA-2019:3281-1 Issue Date: 2019-10-31 CVE Numbers: CVE-2019-11757 CVE-2019-11758 CVE-2019-11759 CVE-2019-11760 CVE-2019-11761 CVE-2019-11762 CVE-2019-11763 CVE-2019-11764 — Security Fix(es): * Mozilla: Memory safety bugs fixed in Firefox 70 and Firefox ESR 68.2 (CVE-2019-11764) * Mozilla: … Read More

php (SL6)

Synopsis: Critical: php security update Advisory ID: SLSA-2019:3287-1 Issue Date: 2019-10-31 CVE Numbers: CVE-2019-11043 — Security Fix(es): * php: underflow in env_path_info in fpm_main.c (CVE-2019-11043) — SL6 x86_64 php-5.3.3-50.el6_10.x86_64.rpm php-bcmath-5.3.3-50.el6_10.x86_64.rpm php-cli-5.3.3-50.el6_10.x86_64.rpm php-common-5.3.3-50.el6_10.x86_64.rpm php-dba-5.3.3-50.el6_10.x86_64.rpm php-debuginfo-5.3.3-50.el6_10.x86_64.rpm php-devel-5.3.3-50.el6_10.x86_64.rpm php-embedded-5.3.3-50.el6_10.x86_64.rpm php-enchant-5.3.3-50.el6_10.x86_64.rpm php-fpm-5.3.3-50.el6_10.x86_64.rpm php-gd-5.3.3-50.el6_10.x86_64.rpm php-imap-5.3.3-50.el6_10.x86_64.rpm … Read More

php (SL7)

Synopsis: Critical: php security update Advisory ID: SLSA-2019:3286-1 Issue Date: 2019-10-31 CVE Numbers: CVE-2019-11043 — Security Fix(es): * php: underflow in env_path_info in fpm_main.c (CVE-2019-11043) — SL7 x86_64 php-5.4.16-46.1.el7_7.x86_64.rpm php-bcmath-5.4.16-46.1.el7_7.x86_64.rpm php-cli-5.4.16-46.1.el7_7.x86_64.rpm php-common-5.4.16-46.1.el7_7.x86_64.rpm php-dba-5.4.16-46.1.el7_7.x86_64.rpm php-debuginfo-5.4.16-46.1.el7_7.x86_64.rpm php-devel-5.4.16-46.1.el7_7.x86_64.rpm php-embedded-5.4.16-46.1.el7_7.x86_64.rpm php-enchant-5.4.16-46.1.el7_7.x86_64.rpm php-fpm-5.4.16-46.1.el7_7.x86_64.rpm php-gd-5.4.16-46.1.el7_7.x86_64.rpm php-intl-5.4.16-46.1.el7_7.x86_64.rpm … Read More