java-1.6.0-openjdk (SL5, SL6, SL7)

Synopsis: Important: java-1.6.0-openjdk security update Advisory ID: SLSA-2016:1776-1 Issue Date: 2016-08-26 CVE Numbers: CVE-2016-3606 CVE-2016-3500 CVE-2016-3508 CVE-2016-3458 CVE-2016-3550 — Security Fix(es): * An insufficient bytecode verification flaw was discovered in the Hotspot component in OpenJDK. An untrusted Java application or … Read More

kernel (SL6)

Synopsis: Important: kernel security and bug fix update Advisory ID: SLSA-2016:1664-1 Issue Date: 2016-08-23 CVE Numbers: CVE-2016-5696 — Security Fix(es): It was found that the RFC 5961 challenge ACK rate limiting as implemented in the Linux kernel’s networking subsystem allowed … Read More

kernel (SL7)

Synopsis: Important: kernel security and bug fix update Advisory ID: SLSA-2016:1633-1 Issue Date: 2016-08-18 CVE Numbers: CVE-2016-5696 — It was found that the RFC 5961 challenge ACK rate limiting as implemented in the Linux kernel’s networking subsystem allowed an off-path … Read More

python (SL6, SL7)

Synopsis: Moderate: python security update Advisory ID: SLSA-2016:1626-1 Issue Date: 2016-08-18 CVE Numbers: CVE-2016-0772 CVE-2016-5699 CVE-2016-1000110 — Security Fix(es): * It was discovered that the Python CGIHandler class did not properly protect against the HTTP_PROXY variable name clash in a … Read More

mariadb (SL7)

Synopsis: Important: mariadb security update Advisory ID: SLSA-2016:1602-1 Issue Date: 2016-08-11 CVE Numbers: CVE-2016-0640 CVE-2016-0641 CVE-2016-0643 CVE-2016-0644 CVE-2016-0646 CVE-2016-0647 CVE-2016-0648 CVE-2016-0649 CVE-2016-0650 CVE-2016-0666 CVE-2016-3452 CVE-2016-3477 CVE-2016-3521 CVE-2016-3615 CVE-2016-5440 CVE-2016-5444 — The following packages have been upgraded to a newer upstream … Read More

qemu-kvm (SL7)

Synopsis: Moderate: qemu-kvm security update Advisory ID: SLSA-2016:1606-1 Issue Date: 2016-08-11 CVE Numbers: CVE-2016-5403 CVE-2016-5126 — Security Fix(es): * Quick Emulator(Qemu) built with the Block driver for iSCSI images support (virtio-blk) is vulnerable to a heap buffer overflow issue. It … Read More

php (SL7)

Synopsis: Moderate: php security and bug fix update Advisory ID: SLSA-2016:1613-1 Issue Date: 2016-08-11 CVE Numbers: CVE-2016-5385 — Security Fix(es): * It was discovered that PHP did not properly protect against the HTTP_PROXY variable name clash. A remote attacker could … Read More

php (SL6)

Synopsis: Moderate: php security update Advisory ID: SLSA-2016:1609-1 Issue Date: 2016-08-11 CVE Numbers: CVE-2016-5385 — Security Fix(es): * It was discovered that PHP did not properly protect against the HTTP_PROXY variable name clash. A remote attacker could possibly use this … Read More

qemu-kvm (SL6)

Synopsis: Moderate: qemu-kvm security update Advisory ID: SLSA-2016:1585-1 Issue Date: 2016-08-09 CVE Numbers: CVE-2016-5403 — Security Fix(es): * Quick emulator(Qemu) built with the virtio framework is vulnerable to an unbounded memory allocation issue. It was found that a malicious guest … Read More

squid (SL6)

Synopsis: Moderate: squid security update Advisory ID: SLSA-2016:1573-1 Issue Date: 2016-08-04 CVE Numbers: CVE-2016-5408 — Security Fix(es): * It was found that the fix for CVE-2016-4051 released via SLSA-2016:1138 did not properly prevent the stack overflow in the munge_other_line() function. … Read More