Linux at Fermilab July 2016

The quarterly meeting was held July 27, 2016. Meeting Materials: FIFE – Mike Kirby ZFS at GE – GE Healthcare’s HELiOS team ZFS FAQs – GE Healthcare’s HELiOS team

ipa (SL6, SL7)

Synopsis: Moderate: ipa security update Advisory ID: SLSA-2016:1797-1 Issue Date: 2016-09-01 CVE Numbers: CVE-2016-5404 — Security Fix(es): * An insufficient permission check issue was found in the way IPA server treats certificate revocation requests. An attacker logged in with the … Read More

java-1.6.0-openjdk (SL5, SL6, SL7)

Synopsis: Important: java-1.6.0-openjdk security update Advisory ID: SLSA-2016:1776-1 Issue Date: 2016-08-26 CVE Numbers: CVE-2016-3606 CVE-2016-3500 CVE-2016-3508 CVE-2016-3458 CVE-2016-3550 — Security Fix(es): * An insufficient bytecode verification flaw was discovered in the Hotspot component in OpenJDK. An untrusted Java application or … Read More

kernel (SL6)

Synopsis: Important: kernel security and bug fix update Advisory ID: SLSA-2016:1664-1 Issue Date: 2016-08-23 CVE Numbers: CVE-2016-5696 — Security Fix(es): It was found that the RFC 5961 challenge ACK rate limiting as implemented in the Linux kernel’s networking subsystem allowed … Read More

kernel (SL7)

Synopsis: Important: kernel security and bug fix update Advisory ID: SLSA-2016:1633-1 Issue Date: 2016-08-18 CVE Numbers: CVE-2016-5696 — It was found that the RFC 5961 challenge ACK rate limiting as implemented in the Linux kernel’s networking subsystem allowed an off-path … Read More

python (SL6, SL7)

Synopsis: Moderate: python security update Advisory ID: SLSA-2016:1626-1 Issue Date: 2016-08-18 CVE Numbers: CVE-2016-0772 CVE-2016-5699 CVE-2016-1000110 — Security Fix(es): * It was discovered that the Python CGIHandler class did not properly protect against the HTTP_PROXY variable name clash in a … Read More

mariadb (SL7)

Synopsis: Important: mariadb security update Advisory ID: SLSA-2016:1602-1 Issue Date: 2016-08-11 CVE Numbers: CVE-2016-0640 CVE-2016-0641 CVE-2016-0643 CVE-2016-0644 CVE-2016-0646 CVE-2016-0647 CVE-2016-0648 CVE-2016-0649 CVE-2016-0650 CVE-2016-0666 CVE-2016-3452 CVE-2016-3477 CVE-2016-3521 CVE-2016-3615 CVE-2016-5440 CVE-2016-5444 — The following packages have been upgraded to a newer upstream … Read More

qemu-kvm (SL7)

Synopsis: Moderate: qemu-kvm security update Advisory ID: SLSA-2016:1606-1 Issue Date: 2016-08-11 CVE Numbers: CVE-2016-5403 CVE-2016-5126 — Security Fix(es): * Quick Emulator(Qemu) built with the Block driver for iSCSI images support (virtio-blk) is vulnerable to a heap buffer overflow issue. It … Read More

php (SL7)

Synopsis: Moderate: php security and bug fix update Advisory ID: SLSA-2016:1613-1 Issue Date: 2016-08-11 CVE Numbers: CVE-2016-5385 — Security Fix(es): * It was discovered that PHP did not properly protect against the HTTP_PROXY variable name clash. A remote attacker could … Read More

php (SL6)

Synopsis: Moderate: php security update Advisory ID: SLSA-2016:1609-1 Issue Date: 2016-08-11 CVE Numbers: CVE-2016-5385 — Security Fix(es): * It was discovered that PHP did not properly protect against the HTTP_PROXY variable name clash. A remote attacker could possibly use this … Read More