glibc (SL6)

Synopsis: Important: glibc security update Advisory ID: SLSA-2017:1480-1 Issue Date: 2017-06-19 CVE Numbers: CVE-2017-1000366 — Security Fix(es): * A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different … Read More

glibc (SL7)

Synopsis: Important: glibc security update Advisory ID: SLSA-2017:1481-1 Issue Date: 2017-06-19 CVE Numbers: CVE-2017-1000366 — Security Fix(es): * A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different … Read More

kernel (SL6)

Synopsis: Important: kernel security update Advisory ID: SLSA-2017:1486-1 Issue Date: 2017-06-19 CVE Numbers: CVE-2017-1000364 — Security Fix(es): * A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different … Read More

firefox (SL6, SL7)

Synopsis: Critical: firefox security update Advisory ID: SLSA-2017:1440-1 Issue Date: 2017-06-14 CVE Numbers: CVE-2017-5472 CVE-2017-7749 CVE-2017-7750 CVE-2017-7751 CVE-2017-7752 CVE-2017-7754 CVE-2017-7756 CVE-2017-7757 CVE-2017-7778 CVE-2017-7771 CVE-2017-7772 CVE-2017-7773 CVE-2017-7758 CVE-2017-7764 CVE-2017-5470 — This update upgrades Firefox to version 52.2.0 ESR. Security Fix(es): * … Read More

qemu-kvm (SL7)

Synopsis: Important: qemu-kvm security and bug fix update Advisory ID: SLSA-2017:1430-1 Issue Date: 2017-06-13 CVE Numbers: CVE-2017-7718 CVE-2017-7980 — Security Fix(es): * An out-of-bounds r/w access issue was found in QEMU’s Cirrus CLGD 54xx VGA Emulator support. The vulnerability could … Read More

kernel (SL6)

Synopsis: Moderate: kernel security and bug fix update Advisory ID: SLSA-2017:1372-1 Issue Date: 2017-05-31 CVE Numbers: CVE-2017-6214 — Security Fix(es): * A flaw was found in the Linux kernel’s handling of packets with the URG flag. Applications using the splice() … Read More

sudo (SL6, SL7)

Synopsis: Important: sudo security update Advisory ID: SLSA-2017:1382-1 Issue Date: 2017-05-30 CVE Numbers: CVE-2017-1000367 — Security Fix(es): * A flaw was found in the way sudo parsed tty information from the process status file in the proc filesystem. A local … Read More

nss (SL6)

Synopsis: Important: nss security and bug fix update Advisory ID: SLSA-2017:1364-1 Issue Date: 2017-05-30 CVE Numbers: CVE-2017-7502 — Security Fix(es): * A null pointer dereference flaw was found in the way NSS handled empty SSLv2 messages. An attacker could use … Read More

nss (SL7)

Synopsis: Important: nss security and bug fix update Advisory ID: SLSA-2017:1365-3 Issue Date: 2017-05-30 CVE Numbers: CVE-2017-7502 — Security Fix(es): * A null pointer dereference flaw was found in the way NSS handled empty SSLv2 messages. An attacker could use … Read More

kernel (SL7)

Synopsis: Important: kernel security, bug fix, and enhancement update Advisory ID: SLSA-2017:1308-1 Issue Date: 2017-05-25 CVE Numbers: CVE-2016-8646 CVE-2016-10208 CVE-2016-7910 CVE-2017-5986 CVE-2017-7308 — Security Fix(es): * It was found that the packet_set_ring() function of the Linux kernel’s networking implementation did … Read More