bind (SL5, SL6, SL7)

Synopsis: Important: bind security update Advisory ID: SLSA-2016:1944-1 Issue Date: 2016-09-28 CVE Numbers: CVE-2016-2776 — Security Fix(es): * A denial of service flaw was found in the way BIND constructed a response to a query that met certain criteria. A … Read More

bind97 (SL5)

Synopsis: Important: bind97 security update Advisory ID: SLSA-2016:1945-1 Issue Date: 2016-09-28 CVE Numbers: CVE-2016-2776 — Security Fix(es): * A denial of service flaw was found in the way BIND constructed a response to a query that met certain criteria. A … Read More

openssl (SL6, SL7)

Synopsis: Important: openssl security update Advisory ID: SLSA-2016:1940-1 Issue Date: 2016-09-27 CVE Numbers: CVE-2016-2177 CVE-2016-2178 CVE-2016-2180 CVE-2016-2182 CVE-2016-2181 CVE-2016-2183 CVE-2016-2179 CVE-2016-6302 CVE-2016-6306 CVE-2016-6304 — Security Fix(es): * A memory leak flaw was found in the way OpenSSL handled TLS status … Read More

kvm (SL5)

Synopsis: Important: kvm security update Advisory ID: SLSA-2016:1943-1 Issue Date: 2016-09-27 CVE Numbers: CVE-2016-3710 CVE-2016-5403 — Security Fix(es): * An out-of-bounds read/write access flaw was found in the way QEMU’s VGA emulation with VESA BIOS Extensions (VBE) support performed read/write … Read More

firefox (SL5, SL6, SL7)

Synopsis: Critical: firefox security update Advisory ID: SLSA-2016:1912-1 Issue Date: 2016-09-21 CVE Numbers: CVE-2016-5261 CVE-2016-5250 CVE-2016-5257 CVE-2016-5278 CVE-2016-5270 CVE-2016-5272 CVE-2016-5276 CVE-2016-5274 CVE-2016-5277 CVE-2016-5280 CVE-2016-5281 CVE-2016-5284 — This update upgrades Firefox to version 45.4.0 ESR. Security Fix(es): * Multiple flaws were … Read More

kernel (SL7)

Synopsis: Important: kernel security, bug fix, and enhancement update Advisory ID: SLSA-2016:1847-1 Issue Date: 2016-09-15 CVE Numbers: CVE-2016-3134 CVE-2016-4997 CVE-2016-4998 — Security Fix(es): * A security flaw was found in the Linux kernel in the mark_source_chains() function in “net/ipv4/netfilter/ip_tables.c”. It … Read More

libarchive (SL7)

Synopsis: Important: libarchive security update Advisory ID: SLSA-2016:1844-1 Issue Date: 2016-09-12 CVE Numbers: CVE-2016-1541 CVE-2016-4809 CVE-2016-6250 CVE-2016-7166 CVE-2015-8916 CVE-2015-8917 CVE-2015-8919 CVE-2015-8920 CVE-2015-8922 CVE-2015-8924 CVE-2015-8925 CVE-2015-8926 CVE-2015-8928 CVE-2016-4300 CVE-2016-4302 CVE-2015-8921 CVE-2015-8923 CVE-2015-8931 CVE-2015-8932 CVE-2015-8930 CVE-2015-8934 CVE-2016-5844 — Security Fix(es): * A … Read More

libarchive (SL6)

Synopsis: Important: libarchive security update Advisory ID: SLSA-2016:1850-1 Issue Date: 2016-09-12 CVE Numbers: CVE-2016-4809 CVE-2016-7166 CVE-2015-8920 CVE-2015-8921 CVE-2015-8932 CVE-2016-5844 — Security Fix(es): * A flaw was found in the way libarchive handled hardlink archive entries of non-zero size. Combined with … Read More

thunderbird (SL5, SL6, SL7)

Synopsis: Important: thunderbird security update Advisory ID: SLSA-2016:1809-1 Issue Date: 2016-09-05 CVE Numbers: CVE-2016-2836 — This update upgrades Thunderbird to version 45.3.0. Security Fix(es): * Multiple flaws were found in the processing of malformed web content. A web page containing … Read More

ipa (SL6, SL7)

Synopsis: Moderate: ipa security update Advisory ID: SLSA-2016:1797-1 Issue Date: 2016-09-01 CVE Numbers: CVE-2016-5404 — Security Fix(es): * An insufficient permission check issue was found in the way IPA server treats certificate revocation requests. An attacker logged in with the … Read More