xorg-x11-server (SL7)

Synopsis: Important: xorg-x11-server security update Advisory ID: SLSA-2020:4910-1 Issue Date: 2020-11-04 CVE Numbers: CVE-2020-14345 CVE-2020-14346 CVE-2020-14361 CVE-2020-14362 — Security Fix(es): * xorg-x11-server: Out-of-bounds access in XkbSetNames function (CVE-2020-14345) * xorg-x11-server: Integer underflow in the X input extension protocol (CVE-2020-14346) * … Read More

xorg-x11-server (SL7)

Synopsis: Important: xorg-x11-server security update Advisory ID: SLSA-2020:4910-1 Issue Date: 2020-11-04 CVE Numbers: None — Security Fix(es): * xorg-x11-server: Out-of-bounds access in XkbSetNames function (CVE-2020-14345) * xorg-x11-server: Integer underflow in the X input extension protocol (CVE-2020-14346) * xorg-x11-server: XkbSelectEvents integer … Read More

xorg-x11-server (SL7)

Synopsis: Important: xorg-x11-server security update Advisory ID: SLSA-2020:4910-1 Issue Date: 2020-11-04 CVE Numbers: None — Security Fix(es): * xorg-x11-server: Out-of-bounds access in XkbSetNames function (CVE-2020-14345) * xorg-x11-server: Integer underflow in the X input extension protocol (CVE-2020-14346) * xorg-x11-server: XkbSelectEvents integer … Read More

xorg-x11-server (SL7)

Synopsis: Important: xorg-x11-server security update Advisory ID: SLSA-2020:4910-1 Issue Date: 2020-11-04 CVE Numbers: None — Security Fix(es): * xorg-x11-server: Out-of-bounds access in XkbSetNames function (CVE-2020-14345) * xorg-x11-server: Integer underflow in the X input extension protocol (CVE-2020-14346) * xorg-x11-server: XkbSelectEvents integer … Read More

freetype (SL7)

Synopsis: Important: freetype security update Advisory ID: SLSA-2020:4907-1 Issue Date: 2020-11-04 CVE Numbers: None — Security Fix(es): * freetype: Heap-based buffer overflow due to integer truncation in Load_SBit_Png (CVE-2020-15999) — SL7 x86_64 freetype-2.8-14.el7_9.1.i686.rpm freetype-2.8-14.el7_9.1.x86_64.rpm freetype-debuginfo-2.8-14.el7_9.1.i686.rpm freetype-debuginfo-2.8-14.el7_9.1.x86_64.rpm freetype-demos-2.8-14.el7_9.1.x86_64.rpm freetype-devel-2.8-14.el7_9.1.i686.rpm freetype-devel-2.8-14.el7_9.1.x86_64.rpm – … Read More

thunderbird (SL7)

Synopsis: Important: thunderbird security update Advisory ID: SLSA-2020:4909-1 Issue Date: 2020-11-04 CVE Numbers: None — Security Fix(es): * Mozilla: Memory safety bugs fixed in Firefox 82 and Firefox ESR 78.4 (CVE-2020-15683) * chromium-browser: Use after free in WebRTC (CVE-2020-15969) — … Read More

libX11 (SL7)

Synopsis: Important: libX11 security update Advisory ID: SLSA-2020:4908-1 Issue Date: 2020-11-04 CVE Numbers: None — Security Fix(es): * libX11: integer overflow leads to double free in locale handling (CVE-2020-14363) — SL7 x86_64 libX11-1.6.7-3.el7_9.i686.rpm libX11-1.6.7-3.el7_9.x86_64.rpm libX11-debuginfo-1.6.7-3.el7_9.i686.rpm libX11-debuginfo-1.6.7-3.el7_9.x86_64.rpm libX11-devel-1.6.7-3.el7_9.i686.rpm libX11-devel-1.6.7-3.el7_9.x86_64.rpm noarch libX11-common-1.6.7-3.el7_9.noarch.rpm … Read More

java-1.8.0-openjdk (SL6)

Synopsis: Moderate: java-1.8.0-openjdk security update Advisory ID: SLSA-2020:4348-1 Issue Date: 2020-10-27 CVE Numbers: None — Security Fix(es): * OpenJDK: Credentials sent over unencrypted LDAP connection (JNDI, 8237990) (CVE-2020-14781) * OpenJDK: Certificate blacklist bypass via alternate certificate encodings (Libraries, 8237995) (CVE-2020-14782) … Read More

firefox (SL6)

Synopsis: Important: firefox security update Advisory ID: SLSA-2020:4330-1 Issue Date: 2020-10-26 CVE Numbers: None — Security Fix(es): * Mozilla: Memory safety bugs fixed in Firefox 82 and Firefox ESR 78.4 (CVE-2020-15683) * chromium-browser: Use after free in WebRTC (CVE-2020-15969) — … Read More

java-1.8.0-openjdk (SL7)

Synopsis: Moderate: java-1.8.0-openjdk security and bug fix update Advisory ID: SLSA-2020:4350-1 Issue Date: 2020-10-27 CVE Numbers: None — Security Fix(es): * OpenJDK: Credentials sent over unencrypted LDAP connection (JNDI, 8237990) (CVE-2020-14781) * OpenJDK: Certificate blacklist bypass via alternate certificate encodings … Read More