thunderbird (SL7)

Synopsis:          Important: thunderbird security update Advisory ID:       SLSA-2022:0127-1 Issue Date:        2022-01-13 CVE Numbers:       CVE-2022-22743 CVE-2022-22742 CVE-2022-22741 CVE-2022-22740 CVE-2022-22738 CVE-2022-22737 CVE-2021-4140 CVE-2022-22748 CVE-2022-22745 CVE-2022-22747 CVE-2022-22739 CVE-2022-22751 — This update upgrades Thunderbird to version 91.5.0. Security Fix(es): * Mozilla: Iframe sandbox bypass … Read More

firefox (SL7)

Synopsis: Important: firefox security update Advisory ID: SLSA-2022:0124-1 Issue Date: 2022-01-13 CVE Numbers: CVE-2022-22743 CVE-2022-22742 CVE-2022-22741 CVE-2022-22740 CVE-2022-22738 CVE-2022-22737 CVE-2021-4140 CVE-2022-22748 CVE-2022-22745 CVE-2022-22747 CVE-2022-22739 CVE-2022-22751 — This update upgrades Firefox to version 91.5.0 ESR. Security Fix(es): * Mozilla: Iframe sandbox … Read More

openssl (SL7)

Synopsis: Moderate: openssl security update Advisory ID: SLSA-2022:0064-1 Issue Date: 2022-01-12 CVE Numbers: CVE-2021-3712 — Security Fix(es): * openssl: Read buffer overruns processing ASN.1 strings (CVE-2021-3712) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, … Read More

webkitgtk4 (SL7)

Synopsis: Moderate: webkitgtk4 security update Advisory ID: SLSA-2022:0059-1 Issue Date: 2022-01-12 CVE Numbers: CVE-2021-30858 — Security Fix(es): * webkitgtk: Use-after-free leading to arbitrary code execution (CVE-2021-30858) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, … Read More

xorg-x11-server (SL7)

Synopsis: Important: xorg-x11-server security update Advisory ID: SLSA-2022:0003-1 Issue Date: 2022-01-04 CVE Numbers: CVE-2021-4008 CVE-2021-4009 CVE-2021-4010 CVE-2021-4011 — Security Fix(es): * xorg-x11-server: SProcRenderCompositeGlyphs out-of-bounds access (CVE-2021-4008) * xorg-x11-server: SProcXFixesCreatePointerBarrier out-of-bounds access (CVE-2021-4009) * xorg-x11-server: SProcScreenSaverSuspend out-of-bounds access (CVE-2021-4010) * xorg-x11-server: … Read More

log4j (SL7)

Synopsis: Moderate: log4j security update Advisory ID: SLSA-2021:5206-1 Issue Date: 2021-12-20 CVE Numbers: CVE-2021-4104 — Security Fix(es): * log4j: Remote code execution in Log4j 1.x when application is configured to use JMSAppender (CVE-2021-4104) For more details about the security issue(s), … Read More

samba (SL7)

Synopsis: Important: samba security and bug fix update Advisory ID: SLSA-2021:5192-1 Issue Date: 2021-12-16 CVE Numbers: CVE-2016-2124 CVE-2020-25717 — Security Fix(es): * samba: Active Directory (AD) domain user could become root on domain members (CVE-2020-25717) * samba: SMB1 client connections … Read More

ipa (SL7)

Synopsis: Moderate: ipa security and bug fix update Advisory ID: SLSA-2021:5195-1 Issue Date: 2021-12-16 CVE Numbers: CVE-2020-25719 — Security Fix(es): * samba: Samba AD DC did not always rely on the SID and PAC in Kerberos tickets (CVE-2020-25719) For more … Read More

thunderbird (SL7)

Synopsis: Important: thunderbird security update Advisory ID: SLSA-2021:5046-1 Issue Date: 2021-12-09 CVE Numbers: CVE-2021-43536 CVE-2021-43537 CVE-2021-43538 CVE-2021-43539 CVE-2021-43541 CVE-2021-43542 CVE-2021-43543 CVE-2021-43545 CVE-2021-43546 CVE-2021-43528 — This update upgrades Thunderbird to version 91.4.0. Security Fix(es): * Mozilla: Memory safety bugs fixed in … Read More

firefox (SL7)

Synopsis: Important: firefox security update Advisory ID: SLSA-2021:5014-1 Issue Date: 2021-12-08 CVE Numbers: CVE-2021-43536 CVE-2021-43537 CVE-2021-43538 CVE-2021-43539 CVE-2021-43541 CVE-2021-43542 CVE-2021-43543 CVE-2021-43545 CVE-2021-43546 — This update upgrades Firefox to version 91.4.0 ESR. Security Fix(es): * Mozilla: Memory safety bugs fixed in … Read More