pacemaker (SL7)

Synopsis: Important: pacemaker security update Advisory ID: SLSA-2019:1278-1 Issue Date: 2019-05-28 CVE Numbers: None — Security Fix(es): * pacemaker: Insufficient local IPC client-server authentication on the client’s side can lead to local privesc (CVE-2018-16877) * pacemaker: Insufficient verification inflicted preference … Read More

firefox (SL6)

Synopsis: Critical: firefox security update Advisory ID: SLSA-2019:1267-1 Issue Date: 2019-05-23 CVE Numbers: None — Security Fix(es): * Mozilla: Memory safety bugs fixed in Firefox 67 and Firefox ESR 60.7 (CVE-2019-9800) * Mozilla: Cross-origin theft of images with createImageBitmap (CVE-2019-9797) … Read More

firefox (SL7)

Synopsis: Critical: firefox security update Advisory ID: SLSA-2019:1265-1 Issue Date: 2019-05-24 CVE Numbers: CVE-2019-7317 CVE-2018-18511 CVE-2019-5798 CVE-2019-11691 CVE-2019-11692 CVE-2019-11693 CVE-2019-11698 CVE-2019-9797 CVE-2019-9800 CVE-2019-9816 CVE-2019-9817 CVE-2019-9819 CVE-2019-9820 — This update upgrades Firefox to version 60.7.0 ESR. Security Fix(es): * Mozilla: Memory … Read More

libvirt (SL7)

Synopsis: Important: libvirt security and bug fix update Advisory ID: SLSA-2019:1264-1 Issue Date: 2019-05-23 CVE Numbers: None — Security Fix(es): * libvirt: wrong permissions in systemd admin-sock due to missing SocketMode parameter (CVE-2019-10132) For more details about the security issue(s), … Read More

ruby (SL7)

Synopsis: Important: ruby security update Advisory ID: SLSA-2019:1235-1 Issue Date: 2019-05-15 CVE Numbers: CVE-2019-8322 CVE-2019-8323 CVE-2019-8324 CVE-2019-8325 — Security Fix(es): * rubygems: Installing a malicious gem may lead to arbitrary code execution (CVE-2019-8324) * rubygems: Escape sequence injection vulnerability in … Read More

qemu-kvm (SL6)

Synopsis: Important: qemu-kvm security update Advisory ID: SLSA-2019:1181-1 Issue Date: 2019-05-14 CVE Numbers: CVE-2018-12126 CVE-2018-12130 CVE-2018-12127 CVE-2019-11091 — Security Fix(es): * A flaw was found in the implementation of the “fill buffer”, a mechanism used by modern CPUs when a … Read More

libvirt (SL6)

Synopsis: Important: libvirt security update Advisory ID: SLSA-2019:1180-1 Issue Date: 2019-05-14 CVE Numbers: CVE-2018-12126 CVE-2018-12130 CVE-2018-12127 CVE-2019-11091 — Security Fix(es): * A flaw was found in the implementation of the “fill buffer”, a mechanism used by modern CPUs when a … Read More

kernel (SL6)

Synopsis: Important: kernel security and bug fix update Advisory ID: SLSA-2019:1169-1 Issue Date: 2019-05-14 CVE Numbers: CVE-2018-12126 CVE-2018-12130 CVE-2018-12127 CVE-2019-11091 — Security Fix(es): * A flaw was found in the implementation of the “fill buffer”, a mechanism used by modern … Read More

kernel (SL7)

Synopsis: Important: kernel security update Advisory ID: SLSA-2019:1168-1 Issue Date: 2019-05-14 CVE Numbers: CVE-2018-12126 CVE-2018-12130 CVE-2018-12127 CVE-2019-11091 — Security Fix(es): * A flaw was found in the implementation of the “fill buffer”, a mechanism used by modern CPUs when a … Read More

qemu-kvm (SL7)

Synopsis: Important: qemu-kvm security update Advisory ID: SLSA-2019:1178-1 Issue Date: 2019-05-14 CVE Numbers: CVE-2018-12126 CVE-2018-12130 CVE-2018-12127 CVE-2019-11091 — Security Fix(es): * A flaw was found in the implementation of the “fill buffer”, a mechanism used by modern CPUs when a … Read More