kernel (SL6)

Synopsis: Important: kernel security and bug fix update Advisory ID: SLSA-2018:1854-1 Issue Date: 2018-06-19 CVE Numbers: CVE-2016-8650 CVE-2017-7308 CVE-2017-6001 CVE-2017-2671 CVE-2017-7616 CVE-2017-7889 CVE-2017-8890 CVE-2017-9076 CVE-2017-9075 CVE-2017-9077 CVE-2017-12190 CVE-2017-15121 CVE-2017-18203 CVE-2018-3639 CVE-2015-8830 CVE-2012-6701 CVE-2018-5803 CVE-2018-1130 — Security Fix(es): * An industry-wide … Read More

sssd and ding-libs (SL6)

Synopsis: Moderate: sssd and ding-libs security and bug fix update Advisory ID: SLSA-2018:1877-1 Issue Date: 2018-06-19 CVE Numbers: CVE-2017-12173 — The ding-libs packages contain a set of libraries used by the System Security Services Daemon (SSSD) as well as other … Read More

zsh (SL6)

Synopsis: Moderate: zsh security update Advisory ID: SLSA-2018:1932-1 Issue Date: 2018-06-19 CVE Numbers: CVE-2014-10072 CVE-2017-18206 CVE-2018-1083 CVE-2018-1100 — Security Fix(es): * zsh: Stack-based buffer overflow in gen_matches_files() at compctl.c (CVE-2018-1083) * zsh: buffer overflow when scanning very long directory paths … Read More

samba4 (SL6)

Synopsis: Low: samba4 security and bug fix update Advisory ID: SLSA-2018:1883-1 Issue Date: 2018-06-19 CVE Numbers: CVE-2018-1050 — Security Fix(es): * samba: Null pointer indirection in printer server process (CVE-2018-1050) — SL6 x86_64 samba4-4.2.10-15.el6.x86_64.rpm samba4-client-4.2.10-15.el6.x86_64.rpm samba4-common-4.2.10-15.el6.x86_64.rpm samba4-dc-4.2.10-15.el6.x86_64.rpm samba4-dc-libs-4.2.10-15.el6.x86_64.rpm samba4-debuginfo-4.2.10-15.el6.x86_64.rpm samba4-devel-4.2.10-15.el6.x86_64.rpm … Read More

pcs (SL6)

Synopsis: Moderate: pcs security update Advisory ID: SLSA-2018:1927-1 Issue Date: 2018-06-19 CVE Numbers: CVE-2018-1086 — Security Fix(es): * pcs: Debug parameter removal bypass, allowing information disclosure (CVE-2018-1086) — SL6 x86_64 pcs-0.9.155-3.el6.x86_64.rpm pcs-debuginfo-0.9.155-3.el6.x86_64.rpm i386 pcs-0.9.155-3.el6.i686.rpm pcs-debuginfo-0.9.155-3.el6.i686.rpm – Scientific Linux Development Team

qemu-kvm (SL7)

Synopsis: Important: qemu-kvm security update Advisory ID: SLSA-2018:2001-1 Issue Date: 2018-06-26 CVE Numbers: CVE-2018-3639 — Security Fix(es): * An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load & Store instructions (a … Read More

kernel (SL7)

Synopsis: Important: kernel security and bug fix update Advisory ID: SLSA-2018:1965-1 Issue Date: 2018-06-26 CVE Numbers: CVE-2018-3639 CVE-2017-11600 — Security Fix(es): * An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load … Read More

pki-core (SL7)

Synopsis: Moderate: pki-core security, bug fix, and enhancement update Advisory ID: SLSA-2018:1979-1 Issue Date: 2018-06-26 CVE Numbers: CVE-2018-1080 — Security Fix(es): * pki-core: Mishandled ACL configuration in AAclAuthz.java reverses rules that allow and deny access (CVE-2018-1080) This issue was discovered … Read More

libvirt (SL7)

Synopsis: Important: libvirt security and bug fix update Advisory ID: SLSA-2018:1997-1 Issue Date: 2018-06-26 CVE Numbers: CVE-2018-3639 — Security Fix(es): * An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load & … Read More

git (SL7)

Synopsis: Important: git security update Advisory ID: SLSA-2018:1957-1 Issue Date: 2018-06-20 CVE Numbers: CVE-2018-11235 — Security Fix(es): * git: arbitrary code execution when recursively cloning a malicious repository (CVE-2018-11235) — SL7 x86_64 git-1.8.3.1-14.el7_5.x86_64.rpm git-daemon-1.8.3.1-14.el7_5.x86_64.rpm git-debuginfo-1.8.3.1-14.el7_5.x86_64.rpm git-svn-1.8.3.1-14.el7_5.x86_64.rpm noarch emacs-git-1.8.3.1-14.el7_5.noarch.rpm emacs-git-el-1.8.3.1-14.el7_5.noarch.rpm git-all-1.8.3.1-14.el7_5.noarch.rpm … Read More