mod_nss (SL7)

Synopsis: Low: mod_nss security, bug fix, and enhancement update Advisory ID: SLSA-2016:2602-2 Issue Date: 2016-11-03 CVE Numbers: CVE-2016-3099 — The following packages have been upgraded to a newer upstream version: mod_nss (1.0.14). Security Fix(es): * A flaw was found in … Read More

dhcp (SL7)

Synopsis: Moderate: dhcp security, bug fix, and enhancement update Advisory ID: SLSA-2016:2590-2 Issue Date: 2016-11-03 CVE Numbers: CVE-2016-2774 — Security Fix(es): * A resource-consumption flaw was discovered in the DHCP server. dhcpd did not restrict the number of open connections … Read More

postgresql (SL7)

Synopsis: Moderate: postgresql security and bug fix update Advisory ID: SLSA-2016:2606-2 Issue Date: 2016-11-03 CVE Numbers: CVE-2016-5423 CVE-2016-5424 — The following packages have been upgraded to a newer upstream version: postgresql (9.2.18). Security Fix(es): * A flaw was found in … Read More

tomcat (SL7)

Synopsis: Moderate: tomcat security, bug fix, and enhancement update Advisory ID: SLSA-2016:2599-2 Issue Date: 2016-11-03 CVE Numbers: CVE-2015-5174 CVE-2016-0714 CVE-2016-0706 CVE-2015-5345 CVE-2015-5351 CVE-2016-0763 CVE-2016-3092 — The following packages have been upgraded to a newer upstream version: tomcat (7.0.69). Security Fix(es): … Read More

util-linux (SL7)

Synopsis: Low: util-linux security, bug fix, and enhancement update Advisory ID: SLSA-2016:2605-2 Issue Date: 2016-11-03 CVE Numbers: CVE-2016-5011 — Security Fix(es): * It was found that util-linux’s libblkid library did not properly handle Extended Boot Record (EBR) partitions when reading … Read More

pcs (SL7)

Synopsis: Moderate: pcs security, bug fix, and enhancement update Advisory ID: SLSA-2016:2596-2 Issue Date: 2016-11-03 CVE Numbers: CVE-2016-0720 CVE-2016-0721 — The following packages have been upgraded to a newer upstream version: pcs (0.9.152). Security Fix(es): * A Cross-Site Request Forgery … Read More

squid (SL7)

Synopsis: Moderate: squid security, bug fix, and enhancement update Advisory ID: SLSA-2016:2600-2 Issue Date: 2016-11-03 CVE Numbers: CVE-2016-2569 CVE-2016-2570 CVE-2016-2571 CVE-2016-2572 CVE-2016-3948 — The following packages have been upgraded to a newer upstream version: squid (3.5.20). Security Fix(es): * Incorrect … Read More

resteasy-base (SL7)

Synopsis: Important: resteasy-base security and bug fix update Advisory ID: SLSA-2016:2604-2 Issue Date: 2016-11-03 CVE Numbers: CVE-2016-7050 — Security Fix(es): * It was discovered that under certain conditions RESTEasy could be forced to parse a request with SerializableProvider, resulting in … Read More

systemd (SL7)

Synopsis: Moderate: systemd security and bug fix update Advisory ID: SLSA-2016:2610-1 Issue Date: 2016-11-03 CVE Numbers: CVE-2016-7795 — Security Fix(es): * A flaw was found in the way systemd handled empty notification messages. A local attacker could use this flaw … Read More

bind (SL7)

Synopsis: Important: bind security update Advisory ID: SLSA-2016:2615-1 Issue Date: 2016-11-03 CVE Numbers: CVE-2016-8864 — Security Fix(es): * A denial of service flaw was found in the way BIND handled responses containing a DNAME answer. A remote attacker could use … Read More