Advisory: Scientific Essential and Critical Security Patch Updates

Find the information you need for your favorite open source distribution .

Scientific Large Esm H200

SciLinux: SLSA-2020-1509-1 Important: java-11-openjdk on SL7.x x86_64

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

OpenJDK: Incorrect bounds checks in NIO Buffers (Libraries, 8234841) (CVE-2020-2803) * OpenJDK: Incorrect type checks in MethodType.readObject() (Libraries, 8235274) (CVE-2020-2805) * OpenJDK: Application data accepted before TLS handshake completion (JSSE, 8235691) (CVE-2020-2816) * OpenJDK: Incorrect handling of Certificate messages during TLS handshake (JSSE, 8232581) (CVE-2020-2767) * [More...]

Scientific Large Esm H200

SciLinux: SLSA-2020-1512-1 Important: java-1.8.0-openjdk on SL7.x x86_64

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

OpenJDK: Incorrect bounds checks in NIO Buffers (Libraries, 8234841) (CVE-2020-2803) * OpenJDK: Incorrect type checks in MethodType.readObject() (Libraries, 8235274) (CVE-2020-2805) * OpenJDK: Unexpected exceptions raised by DOMKeyInfoFactory and DOMXMLSignatureFactory (Security, 8231415) (CVE-2020-2773) * OpenJDK: Re-use of single TLS session for new connections (JSSE, 8234408) (CVE-2020-2 [More...]

Scientific Large Esm H200

SciLinux: SLSA-2020-1507-1 Important: java-1.7.0-openjdk on SL7.x x86_64

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

OpenJDK: Incorrect bounds checks in NIO Buffers (Libraries, 8234841) (CVE-2020-2803) * OpenJDK: Incorrect type checks in MethodType.readObject() (Libraries, 8235274) (CVE-2020-2805) * OpenJDK: Unexpected exceptions raised by DOMKeyInfoFactory and DOMXMLSignatureFactory (Security, 8231415) (CVE-2020-2773) * OpenJDK: Re-use of single TLS session for new connections (JSSE, 8234408) (CVE-2020-2 [More...]

Scientific Large Esm H200

SciLinux: SLSA-2020-1511-1 Important: git on SL7.x x86_64

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

git: Crafted URL containing new lines can cause credential leak (CVE-2020-5260) SL7 x86_64 git-1.8.3.1-22.el7_8.x86_64.rpm git-daemon-1.8.3.1-22.el7_8.x86_64.rpm git-debuginfo-1.8.3.1-22.el7_8.x86_64.rpm git-gnome-keyring-1.8.3.1-22.el7_8.x86_64.rpm git-svn-1.8.3.1-22.el7_8.x86_64.rpm noarch emacs-git-1.8.3.1-22.el7_8.noarch.rpm emacs-git-el-1.8.3.1-22.el7_8.no [More...]

Scientific Large Esm H200

SciLinux: SLSA-2020-1508-1 Important: java-1.7.0-openjdk on SL6.x i386/x86_64

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

OpenJDK: Incorrect bounds checks in NIO Buffers (Libraries, 8234841) (CVE-2020-2803) * OpenJDK: Incorrect type checks in MethodType.readObject() (Libraries, 8235274) (CVE-2020-2805) * OpenJDK: Unexpected exceptions raised by DOMKeyInfoFactory and DOMXMLSignatureFactory (Security, 8231415) (CVE-2020-2773) * OpenJDK: Re-use of single TLS session for new connections (JSSE, 8234408) (CVE-2020-2 [More...]

Scientific Large Esm H200

SciLinux: SLSA-2020-1506-1 Important: java-1.8.0-openjdk on SL6.x i386/x86_64

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

OpenJDK: Incorrect bounds checks in NIO Buffers (Libraries, 8234841) (CVE-2020-2803) * OpenJDK: Incorrect type checks in MethodType.readObject() (Libraries, 8235274) (CVE-2020-2805) * OpenJDK: Unexpected exceptions raised by DOMKeyInfoFactory and DOMXMLSignatureFactory (Security, 8231415) (CVE-2020-2773) * OpenJDK: Re-use of single TLS session for new connections (JSSE, 8234408) (CVE-2020-2 [More...]

Scientific Large Esm H200

SciLinux: SLSA-2020-1173-1 Moderate: okular on SL7.x x86_64

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

okular: Directory traversal in function unpackDocumentArchive() in core/document.cpp SL7 x86_64 okular-part-4.10.5-8.el7.x86_64.rpm okular-devel-4.10.5-8.el7.i686.rpm okular-libs-4.10.5-8.el7.x86_64.rpm okular-libs-4.10.5-8.el7.i686.rpm okular-devel-4.10.5-8.el7.x86_64.rpm okular-4.10.5-8.el7.x86_64.rpm okular-debuginfo-4.10.5-8.el7.i686.rpm okular-debugin [More...]

Scientific Large Esm H200

SciLinux: SLSA-2020-1054-1 Moderate: mailman on SL7.x x86_64

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

mailman: Cross-site scripting vulnerability allows malicious listowners to inject scripts into listinfo pages * mailman: Mishandled URLs in Utils.py:GetPathPieces() allows attackers to display arbitrary text on trusted sites SL7 x86_64 mailman-2.1.15-30.el7.x86_64.rpm mailman-debuginfo-2.1.15-30.el7.x86_64.rpm - Scientific Linux Development Team

Scientific Large Esm H200

SciLinux: SLSA-2020-1167-1 Low: nbdkit on SL7.x x86_64

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

nbdkit: denial of service due to premature opening of back-end connection SL7 x86_64 nbdkit-plugin-python-common-1.8.0-3.el7.x86_64.rpm nbdkit-1.8.0-3.el7.x86_64.rpm nbdkit-plugin-vddk-1.8.0-3.el7.x86_64.rpm nbdkit-plugin-python2-1.8.0-3.el7.x86_64.rpm nbdkit-debuginfo-1.8.0-3.el7.x86_64.rpm - Scientific Linux Development Team

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved