xmlrpc (SL7)

Synopsis: Important: xmlrpc security update Advisory ID: SLSA-2018:1780-1 Issue Date: 2018-05-31 CVE Numbers: CVE-2016-5003 — Security Fix(es): * xmlrpc: Deserialization of untrusted Java object through tag (CVE-2016-5003) — SL7 noarch xmlrpc-client-3.1.3-9.el7_5.noarch.rpm xmlrpc-common-3.1.3-9.el7_5.noarch.rpm xmlrpc-javadoc-3.1.3-9.el7_5.noarch.rpm xmlrpc-server-3.1.3-9.el7_5.noarch.rpm – Scientific Linux Development Team

xmlrpc3 (SL6)

Synopsis: Important: xmlrpc3 security update Advisory ID: SLSA-2018:1779-1 Issue Date: 2018-05-31 CVE Numbers: CVE-2016-5003 — Security Fix(es): * xmlrpc: Deserialization of untrusted Java object through tag (CVE-2016-5003) — SL6 noarch xmlrpc3-client-3.0-4.17.el6_9.noarch.rpm xmlrpc3-common-3.0-4.17.el6_9.noarch.rpm xmlrpc3-client-devel-3.0-4.17.el6_9.noarch.rpm xmlrpc3-common-devel-3.0-4.17.el6_9.noarch.rpm xmlrpc3-javadoc-3.0-4.17.el6_9.noarch.rpm xmlrpc3-server-3.0-4.17.el6_9.noarch.rpm xmlrpc3-server-devel-3.0-4.17.el6_9.noarch.rpm – Scientific Linux … Read More

procps (SL6)

Synopsis: Important: procps security update Advisory ID: SLSA-2018:1777-1 Issue Date: 2018-05-31 CVE Numbers: CVE-2018-1124 CVE-2018-1126 — Security Fix(es): * procps-ng, procps: Integer overflows leading to heap overflow in file2strvec (CVE-2018-1124) * procps-ng, procps: incorrect integer size in proc/alloc.* leading to … Read More

thunderbird (SL6)

Synopsis: Important: thunderbird security update Advisory ID: SLSA-2018:1726-1 Issue Date: 2018-05-24 CVE Numbers: CVE-2018-5150 CVE-2018-5154 CVE-2018-5155 CVE-2018-5159 CVE-2018-5168 CVE-2018-5178 CVE-2018-5183 CVE-2018-5184 CVE-2018-5161 CVE-2018-5162 CVE-2018-5170 CVE-2018-5185 — This update upgrades Thunderbird to version 52.8.0. Security Fix(es): * Mozilla: Memory safety bugs … Read More

thunderbird (SL7)

Synopsis: Important: thunderbird security update Advisory ID: SLSA-2018:1725-1 Issue Date: 2018-05-24 CVE Numbers: CVE-2018-5150 CVE-2018-5154 CVE-2018-5155 CVE-2018-5159 CVE-2018-5168 CVE-2018-5178 CVE-2018-5183 CVE-2018-5184 CVE-2018-5161 CVE-2018-5162 CVE-2018-5170 CVE-2018-5185 — This update upgrades Thunderbird to version 52.8.0. Security Fix(es): * Mozilla: Memory safety bugs … Read More

procps-ng (SL7)

Synopsis: Important: procps-ng security update Advisory ID: SLSA-2018:1700-1 Issue Date: 2018-05-23 CVE Numbers: CVE-2018-1124 CVE-2018-1126 — Security Fix(es): * procps-ng, procps: Integer overflows leading to heap overflow in file2strvec (CVE-2018-1124) * procps-ng, procps: incorrect integer size in proc/alloc.* leading to … Read More

libvirt (SL7)

Synopsis: Important: libvirt security update Advisory ID: SLSA-2018:1632-1 Issue Date: 2018-05-22 CVE Numbers: CVE-2018-3639 — Security Fix(es): * An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load & Store instructions (a … Read More

java-1.8.0-openjdk (SL7)

Synopsis: Important: java-1.8.0-openjdk security update Advisory ID: SLSA-2018:1649-1 Issue Date: 2018-05-22 CVE Numbers: CVE-2018-3639 — Security Fix(es): * An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load & Store instructions (a … Read More

kernel (SL7)

Synopsis: Important: kernel security update Advisory ID: SLSA-2018:1629-1 Issue Date: 2018-05-22 CVE Numbers: CVE-2018-3639 — Security Fix(es): * An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load & Store instructions (a … Read More

java-1.7.0-openjdk (SL7)

Synopsis: Important: java-1.7.0-openjdk security update Advisory ID: SLSA-2018:1648-1 Issue Date: 2018-05-22 CVE Numbers: CVE-2018-3639 — Security Fix(es): * An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load & Store instructions (a … Read More