subscription-manager (SL6)

Synopsis: Moderate: subscription-manager security, bug fix, and enhancement update Advisory ID: SLSA-2017:0698-1 Issue Date: 2017-03-21 CVE Numbers: CVE-2016-4455 — Security Fix(es): * It was found that subscription-manager set weak permissions on files in /var/lib/rhsm/, causing an information disclosure. A local, … Read More

samba4 (SL6)

Synopsis: Moderate: samba4 security and bug fix update Advisory ID: SLSA-2017:0744-1 Issue Date: 2017-03-21 CVE Numbers: CVE-2016-2125 CVE-2016-2126 — Security Fix(es): * It was found that Samba always requested forwardable tickets when using Kerberos authentication. A service to which Samba … Read More

glibc (SL6)

Synopsis: Moderate: glibc security and bug fix update Advisory ID: SLSA-2017:0680-1 Issue Date: 2017-03-21 CVE Numbers: CVE-2015-8776 CVE-2015-8778 CVE-2014-9761 CVE-2015-8779 — Security Fix(es): * A stack overflow vulnerability was found in nan* functions that could cause applications, which process long … Read More

coreutils (SL6)

Synopsis: Moderate: coreutils security and bug fix update Advisory ID: SLSA-2017:0654-1 Issue Date: 2017-03-21 CVE Numbers: CVE-2017-2616 — Security Fix(es): * A race condition was found in the way su handled the management of child processes. A local authenticated attacker … Read More

kernel (SL6)

Synopsis: Moderate: kernel security, bug fix, and enhancement update Advisory ID: SLSA-2017:0817-1 Issue Date: 2017-03-21 CVE Numbers: CVE-2016-2069 CVE-2016-2384 CVE-2016-6480 CVE-2016-7097 CVE-2016-7042 CVE-2016-9576 CVE-2016-8399 CVE-2016-10088 CVE-2016-10142 — Security Fix(es): * It was discovered that a remote attacker could leverage the … Read More

wireshark (SL6)

Synopsis: Moderate: wireshark security and bug fix update Advisory ID: SLSA-2017:0631-1 Issue Date: 2017-03-21 CVE Numbers: CVE-2015-3811 CVE-2015-3812 CVE-2015-3813 CVE-2013-4075 — Security Fix(es): * Several denial of service flaws were found in Wireshark. Wireshark could crash or stop responding if … Read More

quagga (SL6)

Synopsis: Moderate: quagga security and bug fix update Advisory ID: SLSA-2017:0794-1 Issue Date: 2017-03-21 CVE Numbers: CVE-2013-2236 CVE-2016-2342 CVE-2016-4049 CVE-2016-1245 CVE-2017-5495 — Security Fix(es): * A stack-based buffer overflow flaw was found in the way Quagga handled IPv6 router advertisement … Read More

openssh (SL6)

Synopsis: Moderate: openssh security and bug fix update Advisory ID: SLSA-2017:0641-1 Issue Date: 2017-03-21 CVE Numbers: CVE-2015-8325 — Security Fix(es): * It was discovered that the OpenSSH sshd daemon fetched PAM environment settings before running the login program. In configurations … Read More

libguestfs (SL6)

Synopsis: Moderate: libguestfs security and bug fix update Advisory ID: SLSA-2017:0564-1 Issue Date: 2017-03-21 CVE Numbers: CVE-2015-8869 — Security Fix(es): * An integer conversion flaw was found in the way OCaml’s String handled its length. Certain operations on an excessively … Read More

qemu-kvm (SL6)

Synopsis: Moderate: qemu-kvm security and bug fix update Advisory ID: SLSA-2017:0621-1 Issue Date: 2017-03-21 CVE Numbers: CVE-2016-3712 — Security Fix(es): * An integer overflow flaw and an out-of-bounds read flaw were found in the way QEMU’s VGA emulator set certain … Read More