libssh2 (SL7)

Synopsis: Important: libssh2 security update Advisory ID: SLSA-2019:0679-1 Issue Date: 2019-03-28 CVE Numbers: CVE-2019-3855 CVE-2019-3856 CVE-2019-3857 CVE-2019-3863 — Security Fix(es): * libssh2: Integer overflow in transport read resulting in out of bounds write (CVE-2019-3855) * libssh2: Integer overflow in keyboard … Read More

firefox (SL6)

Synopsis: Critical: firefox security update Advisory ID: SLSA-2019:0672-1 Issue Date: 2019-03-27 CVE Numbers: CVE-2019-9810 CVE-2019-9813 — This update upgrades Firefox to version 60.6.1 ESR. Security Fix(es): * Mozilla: IonMonkey MArraySlice has incorrect alias information (CVE-2019-9810) * Mozilla: Ionmonkey type confusion … Read More

firefox (SL7)

Synopsis: Critical: firefox security update Advisory ID: SLSA-2019:0671-1 Issue Date: 2019-03-27 CVE Numbers: CVE-2019-9810 CVE-2019-9813 — This update upgrades Firefox to version 60.6.1 ESR. Security Fix(es): * Mozilla: IonMonkey MArraySlice has incorrect alias information (CVE-2019-9810) * Mozilla: Ionmonkey type confusion … Read More

openwsman (SL7)

Synopsis: Important: openwsman security update Advisory ID: SLSA-2019:0638-1 Issue Date: 2019-03-26 CVE Numbers: CVE-2019-3816 — Security Fix(es): * openwsman: Disclosure of arbitrary files outside of the registered URIs (CVE-2019-3816) — SL7 x86_64 libwsman1-2.6.3-6.git4391e5c.el7_6.i686.rpm libwsman1-2.6.3-6.git4391e5c.el7_6.x86_64.rpm openwsman-client-2.6.3-6.git4391e5c.el7_6.i686.rpm openwsman-client-2.6.3-6.git4391e5c.el7_6.x86_64.rpm openwsman-debuginfo-2.6.3-6.git4391e5c.el7_6.i686.rpm openwsman-debuginfo-2.6.3-6.git4391e5c.el7_6.x86_64.rpm openwsman-server-2.6.3-6.git4391e5c.el7_6.i686.rpm openwsman-server-2.6.3-6.git4391e5c.el7_6.x86_64.rpm … Read More

ghostscript (SL7)

Synopsis: Important: ghostscript security and bug fix update Advisory ID: SLSA-2019:0633-1 Issue Date: 2019-03-21 CVE Numbers: CVE-2019-3838 CVE-2019-3835 — Security Fix(es): * ghostscript: superexec operator is available (700585) (CVE-2019-3835) * ghostscript: forceput in DefineResource is still accessible (700576) (CVE-2019-3838) Bug … Read More

firefox (SL6)

Synopsis: Critical: firefox security update Advisory ID: SLSA-2019:0623-1 Issue Date: 2019-03-20 CVE Numbers: CVE-2018-18506 CVE-2019-9788 CVE-2019-9790 CVE-2019-9791 CVE-2019-9792 CVE-2019-9793 CVE-2019-9795 CVE-2019-9796 — This update upgrades Firefox to version 60.6.0 ESR. Security Fix(es): * Mozilla: Memory safety bugs fixed in Firefox … Read More

firefox (SL7)

Synopsis: Critical: firefox security update Advisory ID: SLSA-2019:0622-1 Issue Date: 2019-03-20 CVE Numbers: CVE-2018-18506 CVE-2019-9788 CVE-2019-9790 CVE-2019-9791 CVE-2019-9792 CVE-2019-9793 CVE-2019-9795 CVE-2019-9796 — This update upgrades Firefox to version 60.6.0 ESR. Security Fix(es): * Mozilla: Memory safety bugs fixed in Firefox … Read More

cloud-init (SL7)

Synopsis: Moderate: cloud-init security update Advisory ID: SLSA-2019:0597-1 Issue Date: 2019-03-18 CVE Numbers: CVE-2019-0816 — Security Fix(es): * cloud-init: extra ssh keys added to authorized_keys on the Azure platform (CVE-2019-0816) — SL7 x86_64 cloud-init-18.2-1.el7_6.2.x86_64.rpm – Scientific Linux Development Team

cloud-init (SL7)

Synopsis: Moderate: cloud-init security update Advisory ID: SLSA-2019:0597-1 Issue Date: 2019-03-18 CVE Numbers: CVE-2019-0816 — Security Fix(es): * cloud-init: extra ssh keys added to authorized_keys on the Azure platform (CVE-2019-0816) — SL7 x86_64 cloud-init-18.2-1.el7_6.2.x86_64.rpm – Scientific Linux Development Team

cloud-init (SL7)

Synopsis: Moderate: cloud-init security update Advisory ID: SLSA-2019:0597-1 Issue Date: 2019-03-18 CVE Numbers: CVE-2019-0816 — Security Fix(es): * cloud-init: extra ssh keys added to authorized_keys on the Azure platform (CVE-2019-0816) — SL7 x86_64 cloud-init-18.2-1.el7_6.2.x86_64.rpm – Scientific Linux Development Team