python3 (SL7)

Synopsis: Moderate: python3 security update Advisory ID: SLSA-2020:5010-1 Issue Date: 2020-11-10 CVE Numbers: None — Security Fix(es): * python: infinite loop in the tarfile module via crafted TAR archive (CVE-2019-20907) * python: DoS via inefficiency in IPv{4,6}Interface classes (CVE-2020-14422) — … Read More

qt and qt5-qtbase (SL7)

Synopsis: Moderate: qt and qt5-qtbase security update Advisory ID: SLSA-2020:5021-1 Issue Date: 2020-11-10 CVE Numbers: None — Security Fix(es): * qt: buffer over-read in read_xbm_body in gui/image/qxbmhandler.cpp (CVE-2020-17507) — SL7 x86_64 qt-4.8.7-9.el7_9.i686.rpm qt-4.8.7-9.el7_9.x86_64.rpm qt-debuginfo-4.8.7-9.el7_9.i686.rpm qt-debuginfo-4.8.7-9.el7_9.x86_64.rpm qt-mysql-4.8.7-9.el7_9.i686.rpm qt-mysql-4.8.7-9.el7_9.x86_64.rpm qt-x11-4.8.7-9.el7_9.i686.rpm qt-x11-4.8.7-9.el7_9.x86_64.rpm qt5-qtbase-5.9.7-5.el7_9.i686.rpm … Read More

xorg-x11-server (SL6)

Synopsis: Important: xorg-x11-server security update Advisory ID: SLSA-2020:4953-1 Issue Date: 2020-11-05 CVE Numbers: None — Security Fix(es): * xorg-x11-server: Out-of-bounds access in XkbSetNames function (CVE-2020-14345) * xorg-x11-server: Integer underflow in the X input extension protocol (CVE-2020-14346) * xorg-x11-server: XkbSelectEvents integer … Read More

thunderbird (SL6)

Synopsis: Important: thunderbird security update Advisory ID: SLSA-2020:4947-1 Issue Date: 2020-11-05 CVE Numbers: None — Security Fix(es): * Mozilla: Memory safety bugs fixed in Firefox 82 and Firefox ESR 78.4 (CVE-2020-15683) * chromium-browser: Use after free in WebRTC (CVE-2020-15969) — … Read More

xorg-x11-server (SL7)

Synopsis: Important: xorg-x11-server security update Advisory ID: SLSA-2020:4910-1 Issue Date: 2020-11-04 CVE Numbers: CVE-2020-14345 CVE-2020-14346 CVE-2020-14361 CVE-2020-14362 — Security Fix(es): * xorg-x11-server: Out-of-bounds access in XkbSetNames function (CVE-2020-14345) * xorg-x11-server: Integer underflow in the X input extension protocol (CVE-2020-14346) * … Read More

xorg-x11-server (SL7)

Synopsis: Important: xorg-x11-server security update Advisory ID: SLSA-2020:4910-1 Issue Date: 2020-11-04 CVE Numbers: None — Security Fix(es): * xorg-x11-server: Out-of-bounds access in XkbSetNames function (CVE-2020-14345) * xorg-x11-server: Integer underflow in the X input extension protocol (CVE-2020-14346) * xorg-x11-server: XkbSelectEvents integer … Read More

xorg-x11-server (SL7)

Synopsis: Important: xorg-x11-server security update Advisory ID: SLSA-2020:4910-1 Issue Date: 2020-11-04 CVE Numbers: None — Security Fix(es): * xorg-x11-server: Out-of-bounds access in XkbSetNames function (CVE-2020-14345) * xorg-x11-server: Integer underflow in the X input extension protocol (CVE-2020-14346) * xorg-x11-server: XkbSelectEvents integer … Read More

xorg-x11-server (SL7)

Synopsis: Important: xorg-x11-server security update Advisory ID: SLSA-2020:4910-1 Issue Date: 2020-11-04 CVE Numbers: None — Security Fix(es): * xorg-x11-server: Out-of-bounds access in XkbSetNames function (CVE-2020-14345) * xorg-x11-server: Integer underflow in the X input extension protocol (CVE-2020-14346) * xorg-x11-server: XkbSelectEvents integer … Read More

freetype (SL7)

Synopsis: Important: freetype security update Advisory ID: SLSA-2020:4907-1 Issue Date: 2020-11-04 CVE Numbers: None — Security Fix(es): * freetype: Heap-based buffer overflow due to integer truncation in Load_SBit_Png (CVE-2020-15999) — SL7 x86_64 freetype-2.8-14.el7_9.1.i686.rpm freetype-2.8-14.el7_9.1.x86_64.rpm freetype-debuginfo-2.8-14.el7_9.1.i686.rpm freetype-debuginfo-2.8-14.el7_9.1.x86_64.rpm freetype-demos-2.8-14.el7_9.1.x86_64.rpm freetype-devel-2.8-14.el7_9.1.i686.rpm freetype-devel-2.8-14.el7_9.1.x86_64.rpm – … Read More

thunderbird (SL7)

Synopsis: Important: thunderbird security update Advisory ID: SLSA-2020:4909-1 Issue Date: 2020-11-04 CVE Numbers: None — Security Fix(es): * Mozilla: Memory safety bugs fixed in Firefox 82 and Firefox ESR 78.4 (CVE-2020-15683) * chromium-browser: Use after free in WebRTC (CVE-2020-15969) — … Read More