Synopsis: Critical: firefox security update Advisory ID: SLSA-2018:1414-1 Issue Date: 2018-05-15 CVE Numbers: CVE-2018-5150 CVE-2018-5154 CVE-2018-5155 CVE-2018-5157 CVE-2018-5158 CVE-2018-5159 CVE-2018-5168 CVE-2018-5178 CVE-2018-5183 — This update upgrades Firefox to version 52.8.0 ESR. Security Fix(es): * Mozilla: Memory safety bugs fixed in … Read More
Synopsis: Critical: dhcp security update Advisory ID: SLSA-2018:1453-1 Issue Date: 2018-05-15 CVE Numbers: CVE-2018-1111 — Security Fix(es): * A command injection flaw was found in the NetworkManager integration script included in the DHCP client packages in Scientific Linux. A malicious … Read More
Synopsis: Low: libvirt security and bug fix update Advisory ID: SLSA-2018:1396-1 Issue Date: 2018-05-15 CVE Numbers: CVE-2018-5748 CVE-2018-1064 — Security Fix(es): * libvirt: Resource exhaustion via qemuMonitorIORead() method (CVE-2018-5748) * libvirt: Incomplete fix for CVE-2018-5748 triggered by QEMU guest agent … Read More
Synopsis: Important: 389-ds-base security and bug fix update Advisory ID: SLSA-2018:1380-1 Issue Date: 2018-05-15 CVE Numbers: CVE-2018-1089 — Security Fix(es): * 389-ds-base: ns-slapd crash via large filter value in ldapsearch (CVE-2018-1089) Bug Fix(es): * Indexing tasks in Directory Server contain … Read More
Synopsis: Critical: firefox security update Advisory ID: SLSA-2018:1415-1 Issue Date: 2018-05-15 CVE Numbers: CVE-2018-5150 CVE-2018-5154 CVE-2018-5155 CVE-2018-5157 CVE-2018-5158 CVE-2018-5159 CVE-2018-5168 CVE-2018-5178 CVE-2018-5183 — This update upgrades Firefox to version 52.8.0 ESR. Security Fix(es): * Mozilla: Memory safety bugs fixed in … Read More
Synopsis: Moderate: qemu-kvm security update Advisory ID: SLSA-2018:1416-1 Issue Date: 2018-05-15 CVE Numbers: CVE-2018-7858 — Security Fix(es): * QEMU: cirrus: OOB access when updating VGA display (CVE-2018-7858) — SL7 x86_64 qemu-img-1.5.3-156.el7_5.1.x86_64.rpm qemu-kvm-1.5.3-156.el7_5.1.x86_64.rpm qemu-kvm-common-1.5.3-156.el7_5.1.x86_64.rpm qemu-kvm-debuginfo-1.5.3-156.el7_5.1.x86_64.rpm qemu-kvm-tools-1.5.3-156.el7_5.1.x86_64.rpm – Scientific Linux Development Team
Synopsis: Important: 389-ds-base security update Advisory ID: SLSA-2018:1364-1 Issue Date: 2018-05-09 CVE Numbers: CVE-2018-1089 — Security Fix(es): * 389-ds-base: ns-slapd crash via large filter value in ldapsearch (CVE-2018-1089) — SL6 x86_64 389-ds-base-1.2.11.15-95.el6_9.x86_64.rpm 389-ds-base-debuginfo-1.2.11.15-95.el6_9.i686.rpm 389-ds-base-debuginfo-1.2.11.15-95.el6_9.x86_64.rpm 389-ds-base-devel-1.2.11.15-95.el6_9.i686.rpm 389-ds-base-devel-1.2.11.15-95.el6_9.x86_64.rpm 389-ds-base-libs-1.2.11.15-95.el6_9.i686.rpm 389-ds-base-libs-1.2.11.15-95.el6_9.x86_64.rpm i386 389-ds-base-1.2.11.15-95.el6_9.i686.rpm … Read More
Synopsis: Important: kernel security, bug fix, and enhancement update Advisory ID: SLSA-2018:1318-1 Issue Date: 2018-05-08 CVE Numbers: CVE-2017-16939 CVE-2018-1068 CVE-2018-1091 CVE-2018-1087 CVE-2018-8897 CVE-2018-1000199 — Security Fix(es): * Kernel: KVM: error in exception handling leads to wrong debug stack value (CVE-2018-1087) … Read More
Synopsis: Important: kernel security and bug fix update Advisory ID: SLSA-2018:1319-1 Issue Date: 2018-05-08 CVE Numbers: CVE-2017-7645 CVE-2017-5754 CVE-2017-8824 CVE-2017-1000410 CVE-2017-18017 CVE-2017-13166 CVE-2018-8897 — Security Fix(es): * hw: cpu: speculative execution permission faults handling (CVE-2017-5754) * Kernel: error in exception … Read More
Synopsis: Important: java-1.7.0-openjdk security update Advisory ID: SLSA-2018:1278-1 Issue Date: 2018-05-02 CVE Numbers: CVE-2018-2814 CVE-2018-2794 CVE-2018-2795 CVE-2018-2815 CVE-2018-2799 CVE-2018-2798 CVE-2018-2797 CVE-2018-2796 CVE-2018-2800 CVE-2018-2790 — Security Fix(es): * OpenJDK: incorrect handling of Reference clones can lead to sandbox bypass (Hotspot, 8192025) … Read More
