Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 486
Alerts This Week
Warning Icon 1 486

Scientific Linux 5: Important Xen Security Fix for DoS Issue

Scientific Large Esm H446
Important: xen security update
Date: Tue, 10 Nov 2015 09:31:14 -0600
Reply-To: "Kevin M. Hill" 
Sender: Security Errata for Scientific Linux
 
From: "Kevin M. Hill" 
Subject: FASTBUGS for SL 7x x86_64 now available
MIME-Version: 1.0
Message-ID: <56420DC2.4070203@fnal.gov>

The following FASTBUGS have been uploaded to

x86_64:
 389-ds-base-1.3.3.1-23.el7_1.x86_64.rpm
 389-ds-base-devel-1.3.3.1-23.el7_1.x86_64.rpm
 389-ds-base-libs-1.3.3.1-23.el7_1.x86_64.rpm
 device-mapper-multipath-0.4.9-77.el7_1.2.x86_64.rpm
 device-mapper-multipath-libs-0.4.9-77.el7_1.2.i686.rpm
 device-mapper-multipath-libs-0.4.9-77.el7_1.2.x86_64.rpm
 device-mapper-multipath-sysvinit-0.4.9-77.el7_1.2.x86_64.rpm
 fcoe-utils-1.0.29-9.1.el7_1.x86_64.rpm
 gmp-6.0.0-12.el7_1.i686.rpm
 gmp-6.0.0-12.el7_1.x86_64.rpm
 gmp-devel-6.0.0-12.el7_1.i686.rpm
 gmp-devel-6.0.0-12.el7_1.x86_64.rpm
 gmp-static-6.0.0-12.el7_1.i686.rpm
 gmp-static-6.0.0-12.el7_1.x86_64.rpm
 kpartx-0.4.9-77.el7_1.2.x86_64.rpm
 ksh-20120801-22.el7_1.3.x86_64.rpm
 libipa_hbac-1.12.2-58.el7_1.18.i686.rpm
 libipa_hbac-1.12.2-58.el7_1.18.x86_64.rpm
 libipa_hbac-devel-1.12.2-58.el7_1.18.i686.rpm
 libipa_hbac-devel-1.12.2-58.el7_1.18.x86_64.rpm
 libipa_hbac-python-1.12.2-58.el7_1.18.x86_64.rpm
 libnl3-3.2.21-9.el7_1.i686.rpm
 libnl3-3.2.21-9.el7_1.x86_64.rpm
 libnl3-cli-3.2.21-9.el7_1.i686.rpm
 libnl3-cli-3.2.21-9.el7_1.x86_64.rpm
 libnl3-devel-3.2.21-9.el7_1.i686.rpm
 libnl3-devel-3.2.21-9.el7_1.x86_64.rpm
 libnl3-doc-3.2.21-9.el7_1.x86_64.rpm
 libsmbclient-4.1.12-24.el7_1.i686.rpm
 libsmbclient-4.1.12-24.el7_1.x86_64.rpm
 libsmbclient-devel-4.1.12-24.el7_1.i686.rpm
 libsmbclient-devel-4.1.12-24.el7_1.x86_64.rpm
 libsss_idmap-1.12.2-58.el7_1.18.i686.rpm
 libsss_idmap-1.12.2-58.el7_1.18.x86_64.rpm
 libsss_idmap-devel-1.12.2-58.el7_1.18.i686.rpm
 libsss_idmap-devel-1.12.2-58.el7_1.18.x86_64.rpm
 libsss_nss_idmap-1.12.2-58.el7_1.18.i686.rpm
 libsss_nss_idmap-1.12.2-58.el7_1.18.x86_64.rpm
 libsss_nss_idmap-devel-1.12.2-58.el7_1.18.i686.rpm
 libsss_nss_idmap-devel-1.12.2-58.el7_1.18.x86_64.rpm
 libsss_nss_idmap-python-1.12.2-58.el7_1.18.x86_64.rpm
 libsss_simpleifp-1.12.2-58.el7_1.18.i686.rpm
 libsss_simpleifp-1.12.2-58.el7_1.18.x86_64.rpm
 libsss_simpleifp-devel-1.12.2-58.el7_1.18.i686.rpm
 libsss_simpleifp-devel-1.12.2-58.el7_1.18.x86_64.rpm
 libvirt-1.2.8-16.el7_1.5.x86_64.rpm
 libvirt-client-1.2.8-16.el7_1.5.i686.rpm
 libvirt-client-1.2.8-16.el7_1.5.x86_64.rpm
 libvirt-daemon-1.2.8-16.el7_1.5.x86_64.rpm
 libvirt-daemon-config-network-1.2.8-16.el7_1.5.x86_64.rpm
 libvirt-daemon-config-nwfilter-1.2.8-16.el7_1.5.x86_64.rpm
 libvirt-daemon-driver-interface-1.2.8-16.el7_1.5.x86_64.rpm
 libvirt-daemon-driver-lxc-1.2.8-16.el7_1.5.x86_64.rpm
 libvirt-daemon-driver-network-1.2.8-16.el7_1.5.x86_64.rpm
 libvirt-daemon-driver-nodedev-1.2.8-16.el7_1.5.x86_64.rpm
 libvirt-daemon-driver-nwfilter-1.2.8-16.el7_1.5.x86_64.rpm
 libvirt-daemon-driver-qemu-1.2.8-16.el7_1.5.x86_64.rpm
 libvirt-daemon-driver-secret-1.2.8-16.el7_1.5.x86_64.rpm
 libvirt-daemon-driver-storage-1.2.8-16.el7_1.5.x86_64.rpm
 libvirt-daemon-kvm-1.2.8-16.el7_1.5.x86_64.rpm
 libvirt-daemon-lxc-1.2.8-16.el7_1.5.x86_64.rpm
 libvirt-devel-1.2.8-16.el7_1.5.i686.rpm
 libvirt-devel-1.2.8-16.el7_1.5.x86_64.rpm
 libvirt-docs-1.2.8-16.el7_1.5.x86_64.rpm
 libvirt-lock-sanlock-1.2.8-16.el7_1.5.x86_64.rpm
 libvirt-login-shell-1.2.8-16.el7_1.5.x86_64.rpm
 libwbclient-4.1.12-24.el7_1.i686.rpm
 libwbclient-4.1.12-24.el7_1.x86_64.rpm
 libwbclient-devel-4.1.12-24.el7_1.i686.rpm
 libwbclient-devel-4.1.12-24.el7_1.x86_64.rpm
 python-sssdconfig-1.12.2-58.el7_1.18.noarch.rpm
 rsyslog-7.4.7-7.el7_1.1.x86_64.rpm
 rsyslog-crypto-7.4.7-7.el7_1.1.x86_64.rpm
 rsyslog-doc-7.4.7-7.el7_1.1.x86_64.rpm
 rsyslog-elasticsearch-7.4.7-7.el7_1.1.x86_64.rpm
 rsyslog-gnutls-7.4.7-7.el7_1.1.x86_64.rpm
 rsyslog-gssapi-7.4.7-7.el7_1.1.x86_64.rpm
 rsyslog-libdbi-7.4.7-7.el7_1.1.x86_64.rpm
 rsyslog-mmaudit-7.4.7-7.el7_1.1.x86_64.rpm
 rsyslog-mmjsonparse-7.4.7-7.el7_1.1.x86_64.rpm
 rsyslog-mmnormalize-7.4.7-7.el7_1.1.x86_64.rpm
 rsyslog-mmsnmptrapd-7.4.7-7.el7_1.1.x86_64.rpm
 rsyslog-mysql-7.4.7-7.el7_1.1.x86_64.rpm
 rsyslog-pgsql-7.4.7-7.el7_1.1.x86_64.rpm
 rsyslog-relp-7.4.7-7.el7_1.1.x86_64.rpm
 rsyslog-snmp-7.4.7-7.el7_1.1.x86_64.rpm
 rsyslog-udpspoof-7.4.7-7.el7_1.1.x86_64.rpm
 samba-4.1.12-24.el7_1.x86_64.rpm
 samba-client-4.1.12-24.el7_1.x86_64.rpm
 samba-common-4.1.12-24.el7_1.i686.rpm
 samba-common-4.1.12-24.el7_1.x86_64.rpm
 samba-dc-4.1.12-24.el7_1.x86_64.rpm
 samba-dc-libs-4.1.12-24.el7_1.x86_64.rpm
 samba-devel-4.1.12-24.el7_1.i686.rpm
 samba-devel-4.1.12-24.el7_1.x86_64.rpm
 samba-libs-4.1.12-24.el7_1.i686.rpm
 samba-libs-4.1.12-24.el7_1.x86_64.rpm
 samba-pidl-4.1.12-24.el7_1.noarch.rpm
 samba-python-4.1.12-24.el7_1.x86_64.rpm
 samba-test-4.1.12-24.el7_1.x86_64.rpm
 samba-test-devel-4.1.12-24.el7_1.x86_64.rpm
 samba-test-libs-4.1.12-24.el7_1.i686.rpm
 samba-test-libs-4.1.12-24.el7_1.x86_64.rpm
 samba-vfs-glusterfs-4.1.12-24.el7_1.x86_64.rpm
 samba-winbind-4.1.12-24.el7_1.x86_64.rpm
 samba-winbind-clients-4.1.12-24.el7_1.x86_64.rpm
 samba-winbind-krb5-locator-4.1.12-24.el7_1.x86_64.rpm
 samba-winbind-modules-4.1.12-24.el7_1.i686.rpm
 samba-winbind-modules-4.1.12-24.el7_1.x86_64.rpm
 selinux-policy-3.13.1-23.el7_1.21.noarch.rpm
 selinux-policy-devel-3.13.1-23.el7_1.21.noarch.rpm
 selinux-policy-doc-3.13.1-23.el7_1.21.noarch.rpm
 selinux-policy-minimum-3.13.1-23.el7_1.21.noarch.rpm
 selinux-policy-mls-3.13.1-23.el7_1.21.noarch.rpm
 selinux-policy-sandbox-3.13.1-23.el7_1.21.noarch.rpm
 selinux-policy-targeted-3.13.1-23.el7_1.21.noarch.rpm
 sssd-1.12.2-58.el7_1.18.x86_64.rpm
 sssd-ad-1.12.2-58.el7_1.18.x86_64.rpm
 sssd-client-1.12.2-58.el7_1.18.i686.rpm
 sssd-client-1.12.2-58.el7_1.18.x86_64.rpm
 sssd-common-1.12.2-58.el7_1.18.i686.rpm
 sssd-common-1.12.2-58.el7_1.18.x86_64.rpm
 sssd-common-pac-1.12.2-58.el7_1.18.x86_64.rpm
 sssd-dbus-1.12.2-58.el7_1.18.x86_64.rpm
 sssd-ipa-1.12.2-58.el7_1.18.x86_64.rpm
 sssd-krb5-1.12.2-58.el7_1.18.x86_64.rpm
 sssd-krb5-common-1.12.2-58.el7_1.18.i686.rpm
 sssd-krb5-common-1.12.2-58.el7_1.18.x86_64.rpm
 sssd-ldap-1.12.2-58.el7_1.18.x86_64.rpm
 sssd-libwbclient-1.12.2-58.el7_1.18.i686.rpm
 sssd-libwbclient-1.12.2-58.el7_1.18.x86_64.rpm
 sssd-libwbclient-devel-1.12.2-58.el7_1.18.i686.rpm
 sssd-libwbclient-devel-1.12.2-58.el7_1.18.x86_64.rpm
 sssd-proxy-1.12.2-58.el7_1.18.x86_64.rpm
 sssd-tools-1.12.2-58.el7_1.18.x86_64.rpm
 zsh-5.0.2-7.el7_1.2.x86_64.rpm
 zsh-html-5.0.2-7.el7_1.2.x86_64.rpm
Date: Mon, 16 Nov 2015 20:48:18 +0000
Reply-To: scientific-linux-users@
Sender: Security Errata for Scientific Linux
 
From: Pat Riehecky 
Subject: Security ERRATA Important: xen on SL5.x i386/x86_64
MIME-Version: 1.0
Message-ID: <20151116204818.21327.82668@slpackages.fnal.gov>

Synopsis: Important: xen security update
Advisory ID: SLSA-2015:2065-1
Issue Date: 2015-11-16
CVE Numbers: CVE-2015-5279
--

A heap buffer overflow flaw was found in the way QEMU's NE2000 NIC
emulation implementation handled certain packets received over the
network. A privileged user inside a guest could use this flaw to crash the
QEMU instance (denial of service) or potentially execute arbitrary code on
the host. (CVE-2015-5279)

After installing the updated packages, all running fully-virtualized
guests must be restarted for this update to take effect.
--

SL5
 x86_64
 xen-debuginfo-3.0.3-147.el5_11.i386.rpm
 xen-debuginfo-3.0.3-147.el5_11.x86_64.rpm
 xen-libs-3.0.3-147.el5_11.i386.rpm
 xen-libs-3.0.3-147.el5_11.x86_64.rpm
 xen-3.0.3-147.el5_11.x86_64.rpm
 xen-devel-3.0.3-147.el5_11.i386.rpm
 xen-devel-3.0.3-147.el5_11.x86_64.rpm
 i386
 xen-debuginfo-3.0.3-147.el5_11.i386.rpm
 xen-libs-3.0.3-147.el5_11.i386.rpm
 xen-3.0.3-147.el5_11.i386.rpm
 xen-devel-3.0.3-147.el5_11.i386.rpm

- Scientific Linux Development Team