SL Errata | Scientific Linux

libvncserver (SL7)

By SL Errata on January 15, 2019

Synopsis: Important: libvncserver security update Advisory ID: SLSA-2019:0059-1 Issue Date: 2019-01-15 CVE Numbers: CVE-2018-15127 — Security Fix(es): * libvncserver: Heap out-of-bounds write in rfbserver.c in rfbProcessFileTransferReadBuffer() allows for potential code execution (CVE-2018-15127) — SL7 x86_64 libvncserver-0.9.9-13.el7_6.i686.rpm libvncserver-0.9.9-13.el7_6.x86_64.rpm libvncserver-debuginfo-0.9.9-13.el7_6.i686.rpm libvncserver-debuginfo-0.9.9-13.el7_6.x86_64.rpm libvncserver-devel-0.9.9-13.el7_6.i686.rpm … Read More

libvncserver (SL7)

By SL Errata on January 15, 2019

Synopsis: Important: libvncserver security update Advisory ID: SLSA-2019:0059-1 Issue Date: 2019-01-15 CVE Numbers: CVE-2018-15127 — Security Fix(es): * libvncserver: Heap out-of-bounds write in rfbserver.c in rfbProcessFileTransferReadBuffer() allows for potential code execution (CVE-2018-15127) — SL7 x86_64 libvncserver-0.9.9-13.el7_6.i686.rpm libvncserver-0.9.9-13.el7_6.x86_64.rpm libvncserver-debuginfo-0.9.9-13.el7_6.i686.rpm libvncserver-debuginfo-0.9.9-13.el7_6.x86_64.rpm libvncserver-devel-0.9.9-13.el7_6.i686.rpm … Read More

libvncserver (SL7)

By SL Errata on January 15, 2019

Synopsis: Important: libvncserver security update Advisory ID: SLSA-2019:0059-1 Issue Date: 2019-01-15 CVE Numbers: CVE-2018-15127 — Security Fix(es): * libvncserver: Heap out-of-bounds write in rfbserver.c in rfbProcessFileTransferReadBuffer() allows for potential code execution (CVE-2018-15127) — SL7 x86_64 libvncserver-0.9.9-13.el7_6.i686.rpm libvncserver-0.9.9-13.el7_6.x86_64.rpm libvncserver-debuginfo-0.9.9-13.el7_6.i686.rpm libvncserver-debuginfo-0.9.9-13.el7_6.x86_64.rpm libvncserver-devel-0.9.9-13.el7_6.i686.rpm … Read More

libvncserver (SL7)

By SL Errata on January 15, 2019

Synopsis: Important: libvncserver security update Advisory ID: SLSA-2019:0059-1 Issue Date: 2019-01-15 CVE Numbers: CVE-2018-15127 — Security Fix(es): * libvncserver: Heap out-of-bounds write in rfbserver.c in rfbProcessFileTransferReadBuffer() allows for potential code execution (CVE-2018-15127) — SL7 x86_64 libvncserver-0.9.9-13.el7_6.i686.rpm libvncserver-0.9.9-13.el7_6.x86_64.rpm libvncserver-debuginfo-0.9.9-13.el7_6.i686.rpm libvncserver-debuginfo-0.9.9-13.el7_6.x86_64.rpm libvncserver-devel-0.9.9-13.el7_6.i686.rpm … Read More

systemd (SL7)

By SL Errata on January 14, 2019

Synopsis: Important: systemd security update Advisory ID: SLSA-2019:0049-1 Issue Date: 2019-01-14 CVE Numbers: CVE-2018-15688 CVE-2018-16864 CVE-2018-16865 — Security Fix(es): * systemd: Out-of-bounds heap write in systemd-networkd dhcpv6 option handling (CVE-2018-15688) * systemd: stack overflow when calling syslog from a command … Read More

keepalived (SL7)

By SL Errata on January 3, 2019

Synopsis: Important: keepalived security update Advisory ID: SLSA-2019:0022-1 Issue Date: 2019-01-03 CVE Numbers: CVE-2018-19115 — Security Fix(es): * keepalived: Heap-based buffer overflow when parsing HTTP status codes allows for denial of service or possibly arbitrary code execution (CVE-2018-19115) — SL7 … Read More

ntp (SL6)

By SL Errata on December 20, 2018

Synopsis: Low: ntp security update Advisory ID: SLSA-2018:3854-1 Issue Date: 2018-12-20 CVE Numbers: CVE-2018-12327 — Security Fix(es): * ntp: Stack-based buffer overflow in ntpq and ntpdc allows denial of service or code execution (CVE-2018-12327) — SL6 x86_64 ntp-4.2.6p5-15.el6_10.x86_64.rpm ntp-debuginfo-4.2.6p5-15.el6_10.x86_64.rpm ntpdate-4.2.6p5-15.el6_10.x86_64.rpm … Read More

firefox (SL6)

By SL Errata on December 18, 2018

Synopsis: Critical: firefox security update Advisory ID: SLSA-2018:3831-1 Issue Date: 2018-12-17 CVE Numbers: CVE-2018-17466 CVE-2018-12405 CVE-2018-18492 CVE-2018-18493 CVE-2018-18494 CVE-2018-18498 — This update upgrades Firefox to version 60.4.0 ESR. Security Fix(es): * Mozilla: Memory safety bugs fixed in Firefox 64 and … Read More

firefox (SL7)

By SL Errata on December 17, 2018

Synopsis: Critical: firefox security update Advisory ID: SLSA-2018:3833-1 Issue Date: 2018-12-17 CVE Numbers: CVE-2018-17466 CVE-2018-12405 CVE-2018-18492 CVE-2018-18493 CVE-2018-18494 CVE-2018-18498 — This update upgrades Firefox to version 60.4.0 ESR. Security Fix(es): * Mozilla: Memory safety bugs fixed in Firefox 64 and … Read More

ghostscript (SL7)

By SL Errata on December 17, 2018

Synopsis: Important: ghostscript security and bug fix update Advisory ID: SLSA-2018:3834-1 Issue Date: 2018-12-17 CVE Numbers: CVE-2018-15911 CVE-2018-16541 CVE-2018-16802 CVE-2018-17183 CVE-2018-17961 CVE-2018-18073 CVE-2018-18284 CVE-2018-19409 CVE-2018-19134 — Security Fix(es): * ghostscript: Incorrect free logic in pagedevice replacement (699664) (CVE-2018-16541) * ghostscript: … Read More

libvncserver (SL7)

libvncserver (SL7)

libvncserver (SL7)

libvncserver (SL7)

systemd (SL7)

keepalived (SL7)

ntp (SL6)

firefox (SL6)

firefox (SL7)

ghostscript (SL7)

SL Security Errata

ruby (SL7)

qemu-kvm (SL6)

libvirt (SL6)

kernel (SL6)