firefox (SL7)

Synopsis: Important: firefox security update Advisory ID: SLSA-2023:5019-1 Issue Date: 2023-09-07 CVE Numbers: CVE-2023-4573 CVE-2023-4574 CVE-2023-4575 CVE-2023-4577 CVE-2023-4051 CVE-2023-4578 CVE-2023-4053 CVE-2023-4580 CVE-2023-4581 CVE-2023-4583 CVE-2023-4584 CVE-2023-4585 — This update upgrades Firefox to version 102.15.0 ESR. Security Fix(es): * Mozilla: Memory corruption … Read More

firefox (SL7)

Synopsis: Important: firefox security update Advisory ID: SLSA-2023:5019-1 Issue Date: 2023-09-07 CVE Numbers: CVE-2023-4573 CVE-2023-4574 CVE-2023-4575 CVE-2023-4577 CVE-2023-4051 CVE-2023-4578 CVE-2023-4053 CVE-2023-4580 CVE-2023-4581 CVE-2023-4583 CVE-2023-4584 CVE-2023-4585 — This update upgrades Firefox to version 102.15.0 ESR. Security Fix(es): * Mozilla: Memory corruption … Read More

thunderbird (SL7)

Synopsis: Important: thunderbird security update Advisory ID: SLSA-2023:4945-1 Issue Date: 2023-09-05 CVE Numbers: CVE-2023-4573 CVE-2023-4574 CVE-2023-4575 CVE-2023-4577 CVE-2023-4051 CVE-2023-4578 CVE-2023-4053 CVE-2023-4580 CVE-2023-4581 CVE-2023-4583 CVE-2023-4584 CVE-2023-4585 — This update upgrades Thunderbird to version 102.15.0. Security Fix(es): * Mozilla: Memory corruption in … Read More

kernel (SL7)

Synopsis: Important: kernel security and bug fix update Advisory ID: SLSA-2023:4819-1 Issue Date: 2023-08-30 CVE Numbers: CVE-2023-35788 CVE-2023-20593 — Security Fix(es): * kernel: cls_flower: out-of-bounds write in fl_set_geneve_opt() (CVE-2023-35788) * hw: amd: Cross-Process Information Leak (CVE-2023-20593) For more details about … Read More

cups (SL7)

Synopsis: Important: cups security update Advisory ID: SLSA-2023:4766-1 Issue Date: 2023-08-28 CVE Numbers: CVE-2023-32360 — Security Fix(es): * cups: Information leak through Cups-Get-Document operation (CVE-2023-32360) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and … Read More

subscription-manager (SL7)

Synopsis: Moderate: subscription-manager security update Advisory ID: SLSA-2023:4701-1 Issue Date: 2023-08-23 CVE Numbers: CVE-2023-3899 — Security Fix(es): * subscription-manager: inadequate authorization of com.redhat.RHSM1 D-Bus interface allows local users to modify configuration (CVE-2023-3899) For more details about the security issue(s), including … Read More

thunderbird (SL7)

Synopsis: Important: thunderbird security update Advisory ID: SLSA-2023:4495-1 Issue Date: 2023-08-07 CVE Numbers: CVE-2023-4045 CVE-2023-4046 CVE-2023-4047 CVE-2023-4048 CVE-2023-4049 CVE-2023-4050 CVE-2023-4055 CVE-2023-4056 CVE-2023-4057 CVE-2023-3417 — This update upgrades Thunderbird to version 102.14.0. Security Fix(es): * Mozilla: Offscreen Canvas could have bypassed … Read More

firefox (SL7)

Synopsis: Important: firefox security update Advisory ID: SLSA-2023:4461-1 Issue Date: 2023-08-03 CVE Numbers: CVE-2023-4045 CVE-2023-4046 CVE-2023-4047 CVE-2023-4048 CVE-2023-4049 CVE-2023-4050 CVE-2023-4055 CVE-2023-4056 CVE-2023-4057 — This update upgrades Firefox to version 102.14.0 ESR. Security Fix(es): * Mozilla: Offscreen Canvas could have bypassed … Read More

openssh (SL7)

Synopsis: Important: openssh security update Advisory ID: SLSA-2023:4382-1 Issue Date: 2023-08-03 CVE Numbers: CVE-2023-38408 — Security Fix(es): * openssh: Remote code execution in ssh-agent PKCS#11 support (CVE-2023-38408) For more details about the security issue(s), including the impact, a CVSS score, … Read More

iperf3 (SL7)

Synopsis: Important: iperf3 security update Advisory ID: SLSA-2023:4326-1 Issue Date: 2023-07-31 CVE Numbers: CVE-2023-38403 — Security Fix(es): * iperf3: memory allocation hazard and crash (CVE-2023-38403) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and … Read More