Synopsis: Moderate: okular security update Advisory ID: SLSA-2020:1173-1 Issue Date: 2020-04-07 CVE Numbers: CVE-2018-1000801 — * okular: Directory traversal in function unpackDocumentArchive() in core/document.cpp — SL7 x86_64 okular-part-4.10.5-8.el7.x86_64.rpm okular-devel-4.10.5-8.el7.i686.rpm okular-libs-4.10.5-8.el7.x86_64.rpm okular-libs-4.10.5-8.el7.i686.rpm okular-devel-4.10.5-8.el7.x86_64.rpm okular-4.10.5-8.el7.x86_64.rpm okular-debuginfo-4.10.5-8.el7.i686.rpm okular-debuginfo-4.10.5-8.el7.x86_64.rpm – Scientific Linux Development Team

Synopsis: Moderate: advancecomp security update Advisory ID: SLSA-2020:1037-1 Issue Date: 2020-04-07 CVE Numbers: CVE-2019-9210 — * advancecomp: integer overflow in png_compress in pngex.cc — SL7 x86_64 advancecomp-1.15-22.el7.x86_64.rpm advancecomp-debuginfo-1.15-22.el7.x86_64.rpm – Scientific Linux Development Team

Synopsis: Moderate: mod_auth_mellon security and bug fix update Advisory ID: SLSA-2020:1003-1 Issue Date: 2020-04-07 CVE Numbers: CVE-2019-13038 — * mod_auth_mellon: Open Redirect via the login?ReturnTo= substring which could facilitate information theft — SL7 x86_64 mod_auth_mellon-diagnostics-0.14.0-8.el7.x86_64.rpm mod_auth_mellon-0.14.0-8.el7.x86_64.rpm mod_auth_mellon-debuginfo-0.14.0-8.el7.x86_64.rpm – Scientific Linux … Read More

Synopsis: Moderate: mutt security update Advisory ID: SLSA-2020:1126-1 Issue Date: 2020-04-07 CVE Numbers: CVE-2018-14355 — * mutt: IMAP header caching path traversal vulnerability — SL7 x86_64 mutt-1.5.21-29.el7.x86_64.rpm mutt-debuginfo-1.5.21-29.el7.x86_64.rpm – Scientific Linux Development Team

Synopsis: Moderate: bash security update Advisory ID: SLSA-2020:1113-1 Issue Date: 2020-04-07 CVE Numbers: CVE-2019-9924 — * bash: BASH_CMD is writable in restricted bash shells — SL7 x86_64 bash-4.2.46-34.el7.x86_64.rpm bash-debuginfo-4.2.46-34.el7.x86_64.rpm bash-doc-4.2.46-34.el7.x86_64.rpm – Scientific Linux Development Team