Synopsis: Moderate: poppler security update Advisory ID: SLSA-2017:2550-1 Issue Date: 2017-08-30 CVE Numbers: CVE-2017-9776 — Security Fix(es): * An integer overflow leading to heap-based buffer overflow was found in the poppler library. An attacker could create a malicious PDF file … Read More
Synopsis: Moderate: poppler security update Advisory ID: SLSA-2017:2551-1 Issue Date: 2017-08-30 CVE Numbers: CVE-2017-9775 CVE-2017-9776 — Security Fix(es): * A stack-based buffer overflow was found in the poppler library. An attacker could create a malicious PDF file that would cause … Read More
Synopsis: Important: thunderbird security update Advisory ID: SLSA-2017:2534-1 Issue Date: 2017-08-24 CVE Numbers: CVE-2017-7753 CVE-2017-7779 CVE-2017-7784 CVE-2017-7785 CVE-2017-7786 CVE-2017-7787 CVE-2017-7791 CVE-2017-7792 CVE-2017-7800 CVE-2017-7801 CVE-2017-7802 CVE-2017-7803 CVE-2017-7807 CVE-2017-7809 — This update upgrades Thunderbird to version 52.3.0. Security Fix(es): * Multiple flaws … Read More
Synopsis: Moderate: git security and bug fix update Advisory ID: SLSA-2017:2004-1 Issue Date: 2017-08-01 CVE Numbers: CVE-2014-9938 CVE-2017-8386 — Security Fix(es): * It was found that the git-prompt.sh script shipped with git failed to correctly handle branch names containing special … Read More
Synopsis: Moderate: postgresql security and enhancement update Advisory ID: SLSA-2017:1983-1 Issue Date: 2017-08-01 CVE Numbers: CVE-2017-7484 CVE-2017-7486 — The following packages have been upgraded to a later upstream version: postgresql (9.2.21). Security Fix(es): * It was found that some selectivity … Read More
Synopsis: Moderate: tigervnc and fltk security, bug fix, and Advisory ID: SLSA-2017:2000-1 Issue Date: 2017-08-01 CVE Numbers: CVE-2017-5581 CVE-2016-10207 CVE-2017-7392 CVE-2017-7393 CVE-2017-7394 CVE-2017-7395 CVE-2017-7396 — FLTK (pronounced “fulltick”) is a cross-platform C++ GUI toolkit. It provides modern GUI functionality without … Read More
Synopsis: Moderate: bash security and bug fix update Advisory ID: SLSA-2017:1931-1 Issue Date: 2017-08-01 CVE Numbers: CVE-2016-0634 CVE-2016-7543 CVE-2016-9401 — Security Fix(es): * An arbitrary command injection flaw was found in the way bash processed the hostname value. A malicious … Read More
Synopsis: Moderate: pidgin security, bug fix, and enhancement Advisory ID: SLSA-2017:1854-1 Issue Date: 2017-08-01 CVE Numbers: CVE-2014-3694 CVE-2014-3695 CVE-2014-3696 CVE-2014-3698 CVE-2017-2640 — The following packages have been upgraded to a later upstream version: pidgin (2.10.11). Security Fix(es): * A denial … Read More
Synopsis: Moderate: openldap security, bug fix, and enhancement Advisory ID: SLSA-2017:1852-1 Issue Date: 2017-08-01 CVE Numbers: CVE-2017-9287 — The following packages have been upgraded to a later upstream version: openldap (2.4.44). Security Fix(es): * A double-free flaw was found in … Read More
Synopsis: Moderate: golang security, bug fix, and enhancement Advisory ID: SLSA-2017:1859-1 Issue Date: 2017-08-01 CVE Numbers: CVE-2017-8932 — The following packages have been upgraded to a later upstream version: golang (1.8.3). Security Fix(es): * A carry propagation flaw was found … Read More
