qemu-kvm (SL7)

Synopsis: Important: qemu-kvm security and bug fix update Advisory ID: SLSA-2017:0396-1 Issue Date: 2017-03-02 CVE Numbers: CVE-2017-2615 CVE-2017-2620 — Security Fix(es): * Quick emulator (QEMU) built with the Cirrus CLGD 54xx VGA emulator support is vulnerable to an out-of-bounds access … Read More

qemu-kvm (SL6)

Synopsis: Important: qemu-kvm security update Advisory ID: SLSA-2017:0352-1 Issue Date: 2017-03-01 CVE Numbers: CVE-2017-2620 — Security Fix(es): * Quick emulator (QEMU) built with the Cirrus CLGD 54xx VGA Emulator support is vulnerable to an out-of-bounds access issue. The issue could … Read More

kernel (SL5)

Synopsis: Important: kernel security update Advisory ID: SLSA-2017:0323-1 Issue Date: 2017-02-24 CVE Numbers: CVE-2017-6074 CVE-2017-2634 — Security Fix(es): * A use-after-free flaw was found in the way the Linux kernel’s Datagram Congestion Control Protocol (DCCP) implementation freed SKB (socket buffer) … Read More

qemu-kvm (SL6)

Synopsis: Important: qemu-kvm security and bug fix update Advisory ID: SLSA-2017:0309-1 Issue Date: 2017-02-23 CVE Numbers: CVE-2016-2857 CVE-2017-2615 — Security Fix(es): * Quick emulator (Qemu) built with the Cirrus CLGD 54xx VGA emulator support is vulnerable to an out-of-bounds access … Read More

kernel (SL6)

Synopsis: Moderate: kernel security and bug fix update Advisory ID: SLSA-2017:0307-1 Issue Date: 2017-02-23 CVE Numbers: CVE-2016-6136 CVE-2016-9555 — Security Fix(es): * When creating audit records for parameters to executed children processes, an attacker can convince the Linux kernel audit … Read More

kernel (SL6)

Synopsis: Important: kernel security update Advisory ID: SLSA-2017:0293-1 Issue Date: 2017-02-22 CVE Numbers: CVE-2017-6074 — Security Fix(es): * A use-after-free flaw was found in the way the Linux kernel’s Datagram Congestion Control Protocol (DCCP) implementation freed SKB (socket buffer) resources … Read More

kernel (SL7)

Synopsis: Important: kernel security update Advisory ID: SLSA-2017:0294-1 Issue Date: 2017-02-22 CVE Numbers: CVE-2017-6074 — Security Fix(es): * A use-after-free flaw was found in the way the Linux kernel’s Datagram Congestion Control Protocol (DCCP) implementation freed SKB (socket buffer) resources … Read More

openssl (SL6, SL7)

Synopsis: Moderate: openssl security update Advisory ID: SLSA-2017:0286-1 Issue Date: 2017-02-20 CVE Numbers: CVE-2016-8610 CVE-2017-3731 — Security Fix(es): * An integer underflow leading to an out of bounds read flaw was found in OpenSSL. A remote attacker could possibly use … Read More

bind (SL7)

Synopsis: Moderate: bind security update Advisory ID: SLSA-2017:0276-1 Issue Date: 2017-02-15 CVE Numbers: CVE-2017-3135 — Security Fix(es): * A denial of service flaw was found in the way BIND handled query responses when both DNS64 and RPZ were used. A … Read More

java-1.7.0-openjdk (SL5, SL6, SL7)

Synopsis: Critical: java-1.7.0-openjdk security update Advisory ID: SLSA-2017:0269-1 Issue Date: 2017-02-13 CVE Numbers: CVE-2016-2183 CVE-2017-3272 CVE-2017-3289 CVE-2017-3253 CVE-2017-3261 CVE-2017-3231 CVE-2016-5547 CVE-2016-5552 CVE-2017-3252 CVE-2016-5546 CVE-2016-5548 CVE-2017-3241 — Security Fix(es): * It was discovered that the RMI registry and DCG implementations in … Read More