thunderbird (SL5)

Red Hat Security Advisory: thunderbird security update Advisory ID: SLSA-2023:6193 Issue Date: 2023-10-30 CVE Numbers: None — Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 115.4.1. Security Fix(es): — This content is derived … Read More

java-1.8.0-openjdk (SL5)

Red Hat Security Advisory: java-1.8.0-openjdk security update Advisory ID: SLSA-2023:5761 Issue Date: 2023-10-18 CVE Numbers: CVE-2023-22067 CVE-2023-22081 — The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fix(es): * OpenJDK: … Read More

java-11-openjdk (SL5)

Red Hat Security Advisory: java-11-openjdk security and bug fix update Advisory ID: SLSA-2023:5736 Issue Date: 2023-10-18 CVE Numbers: CVE-2023-22081 — The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fix(es): … Read More

kernel (SL5)

Red Hat Security Advisory: kernel security and bug fix update Advisory ID: SLSA-2023:5622 Issue Date: 2023-10-10 CVE Numbers: CVE-2023-3609 CVE-2023-32233 CVE-2023-35001 — The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: … Read More

firefox (SL7)

Synopsis: Important: firefox security update Advisory ID: SLSA-2023:5477-1 Issue Date: 2023-10-05 CVE Numbers: CVE-2023-3600 CVE-2023-5169 CVE-2023-5171 CVE-2023-5176 CVE-2023-5217 — This update upgrades Firefox to version 115.3.1 ESR. Security Fix(es): * firefox: use-after-free in workers (CVE-2023-3600) * Mozilla: Out-of-bounds write in … Read More

thunderbird (SL7)

Synopsis: Important: thunderbird security update Advisory ID: SLSA-2023:5475-1 Issue Date: 2023-10-05 CVE Numbers: CVE-2023-3600 CVE-2023-5169 CVE-2023-5171 CVE-2023-5176 CVE-2023-5217 — This update upgrades Thunderbird to version 115.3.1. Security Fix(es): * firefox: use-after-free in workers (CVE-2023-3600) * Mozilla: Out-of-bounds write in PathOps … Read More

ImageMagick (SL7)

Synopsis: Important: ImageMagick security update Advisory ID: SLSA-2023:5461-1 Issue Date: 2023-10-05 CVE Numbers: CVE-2021-40211 — Security Fix(es): * ImageMagick: Division by zero in ReadEnhMetaFile lead to DoS (CVE-2021-40211) For more details about the security issue(s), including the impact, a CVSS … Read More

firefox (SL7)

Synopsis: Important: firefox security update Advisory ID: SLSA-2023:5197-1 Issue Date: 2023-09-19 CVE Numbers: CVE-2023-4863 — This update upgrades Firefox to version 102.15.1 ESR. Security Fix(es): * libwebp: Heap buffer overflow in WebP Codec (CVE-2023-4863) For more details about the security … Read More

open-vm-tools (SL7)

Synopsis: Important: open-vm-tools security update Advisory ID: SLSA-2023:5217-1 Issue Date: 2023-09-19 CVE Numbers: CVE-2023-20900 — Security Fix(es): * open-vm-tools: SAML token signature bypass (CVE-2023-20900) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other … Read More

thunderbird (SL7)

Synopsis: Important: thunderbird security update Advisory ID: SLSA-2023:5191-1 Issue Date: 2023-09-19 CVE Numbers: CVE-2023-4863 — This update upgrades Thunderbird to version 102.15.1. Security Fix(es): * libwebp: Heap buffer overflow in WebP Codec (CVE-2023-4863) For more details about the security issue(s), … Read More