glibc (SL6)

Synopsis: Moderate: glibc security and bug fix update Advisory ID: SLSA-2018:1879-1 Issue Date: 2018-06-19 CVE Numbers: CVE-2017-15670 CVE-2017-15804 — Security Fix(es): * glibc: Buffer overflow in glob with GLOB_TILDE (CVE-2017-15670) * glibc: Buffer overflow during unescaping of user names with … Read More

samba (SL6)

Synopsis: Low: samba security and bug fix update Advisory ID: SLSA-2018:1860-1 Issue Date: 2018-06-19 CVE Numbers: CVE-2017-2619 CVE-2018-1050 — Security Fix(es): * samba: Null pointer indirection in printer server process (CVE-2018-1050) — SL6 x86_64 libsmbclient-3.6.23-51.el6.i686.rpm libsmbclient-3.6.23-51.el6.x86_64.rpm samba-client-3.6.23-51.el6.x86_64.rpm samba-common-3.6.23-51.el6.i686.rpm samba-common-3.6.23-51.el6.x86_64.rpm samba-debuginfo-3.6.23-51.el6.i686.rpm … Read More

kernel (SL6)

Synopsis: Important: kernel security and bug fix update Advisory ID: SLSA-2018:1854-1 Issue Date: 2018-06-19 CVE Numbers: CVE-2016-8650 CVE-2017-7308 CVE-2017-6001 CVE-2017-2671 CVE-2017-7616 CVE-2017-7889 CVE-2017-8890 CVE-2017-9076 CVE-2017-9075 CVE-2017-9077 CVE-2017-12190 CVE-2017-15121 CVE-2017-18203 CVE-2018-3639 CVE-2015-8830 CVE-2012-6701 CVE-2018-5803 CVE-2018-1130 — Security Fix(es): * An industry-wide … Read More

sssd and ding-libs (SL6)

Synopsis: Moderate: sssd and ding-libs security and bug fix update Advisory ID: SLSA-2018:1877-1 Issue Date: 2018-06-19 CVE Numbers: CVE-2017-12173 — The ding-libs packages contain a set of libraries used by the System Security Services Daemon (SSSD) as well as other … Read More

zsh (SL6)

Synopsis: Moderate: zsh security update Advisory ID: SLSA-2018:1932-1 Issue Date: 2018-06-19 CVE Numbers: CVE-2014-10072 CVE-2017-18206 CVE-2018-1083 CVE-2018-1100 — Security Fix(es): * zsh: Stack-based buffer overflow in gen_matches_files() at compctl.c (CVE-2018-1083) * zsh: buffer overflow when scanning very long directory paths … Read More

samba4 (SL6)

Synopsis: Low: samba4 security and bug fix update Advisory ID: SLSA-2018:1883-1 Issue Date: 2018-06-19 CVE Numbers: CVE-2018-1050 — Security Fix(es): * samba: Null pointer indirection in printer server process (CVE-2018-1050) — SL6 x86_64 samba4-4.2.10-15.el6.x86_64.rpm samba4-client-4.2.10-15.el6.x86_64.rpm samba4-common-4.2.10-15.el6.x86_64.rpm samba4-dc-4.2.10-15.el6.x86_64.rpm samba4-dc-libs-4.2.10-15.el6.x86_64.rpm samba4-debuginfo-4.2.10-15.el6.x86_64.rpm samba4-devel-4.2.10-15.el6.x86_64.rpm … Read More

pcs (SL6)

Synopsis: Moderate: pcs security update Advisory ID: SLSA-2018:1927-1 Issue Date: 2018-06-19 CVE Numbers: CVE-2018-1086 — Security Fix(es): * pcs: Debug parameter removal bypass, allowing information disclosure (CVE-2018-1086) — SL6 x86_64 pcs-0.9.155-3.el6.x86_64.rpm pcs-debuginfo-0.9.155-3.el6.x86_64.rpm i386 pcs-0.9.155-3.el6.i686.rpm pcs-debuginfo-0.9.155-3.el6.i686.rpm – Scientific Linux Development Team

qemu-kvm (SL7)

Synopsis: Important: qemu-kvm security update Advisory ID: SLSA-2018:2001-1 Issue Date: 2018-06-26 CVE Numbers: CVE-2018-3639 — Security Fix(es): * An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load & Store instructions (a … Read More

kernel (SL7)

Synopsis: Important: kernel security and bug fix update Advisory ID: SLSA-2018:1965-1 Issue Date: 2018-06-26 CVE Numbers: CVE-2018-3639 CVE-2017-11600 — Security Fix(es): * An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load … Read More

pki-core (SL7)

Synopsis: Moderate: pki-core security, bug fix, and enhancement update Advisory ID: SLSA-2018:1979-1 Issue Date: 2018-06-26 CVE Numbers: CVE-2018-1080 — Security Fix(es): * pki-core: Mishandled ACL configuration in AAclAuthz.java reverses rules that allow and deny access (CVE-2018-1080) This issue was discovered … Read More