Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 2 articles for you...
217
security advisorysecurity issuecritical updateOracle Linux 8: ELSA-2023-4058 Critical Update for .NET 7.0 Security
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2023-4058 https://linux.oracle.com/errata/ELSA-2023-4058.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: aspnetcore-runtime-7.0-7.0.9-1.0.1.el8_8.x86_64.rpm aspnetcore-targeting-pack-7.0-7.0.9-1.0.1.el8_8.x86_64.rpm dotnet-7.0.109-1.0.1.el8_8.x86_64.rpm dotnet-apphost-pack-7.0-7.0.9-1.0.1.el8_8.x86_64.rpm dotnet-host-7.0.9-1.0.1.el8_8.x86_64.rpm dotnet-hostfxr-7.0-7.0.9-1.0.1.el8_8.x86_64.rpm dotnet-runtime-7.0-7.0.9-1.0.1.el8_8.x86_64.rpm dotnet-sdk-7.0-7.0.109-1.0.1.el8_8.x86_64.rpm dotnet-targeting-pack-7.0-7.0.9-1.0.1.el8_8.x86_64.rpm dotnet-templates-7.0-7.0.109-1.0.1.el8_8.x86_64.rpm netstandard-targeting-pack-2.1-7.0.109-1.0.1.el8_8.x86_64.rpm dotnet-sdk-7.0-source-built-artifacts-7.0.109-1.0.1.el8_8.x86_64.rpm aarch64: aspnetcore-runtime-7.0-7.0.9-1.0.1.el8_8.aarch64.rpm aspnetcore-targeting-pack-7.0-7.0.9-1.0.1.el8_8.aarch64.rpm dotnet-7.0.109-1.0.1.el8_8.aarch64.rpm dotnet-apphost-pack-7.0-7.0.9-1.0.1.el8_8.aarch64.rpm dotnet-host-7.0.9-1.0.1.el8_8.aarch64.rpm dotnet-hostfxr-7.0-7.0.9-1.0.1.el8_8.aarch64.rpm dotnet-runtime-7.0-7.0.9-1.0.1.el8_8.aarch64.rpm dotnet-sdk-7.0-7.0.109-1.0.1.el8_8.aarch64.rpm dotnet-targeting-pack-7.0-7.0.9-1.0.1.el8_8.aarch64.rpm dotnet-templates-7.0-7.0.109-1.0.1.el8_8.aarch64.rpm netstandard-targeting-pack-2.1-7.0.109-1.0.1.el8_8.aarch64.rpm dotnet-sdk-7.0-source-built-artifacts-7.0.109-1.0.1.el8_8.aarch64.rpm SRPMS: https://oss.oracle.com:443/ol8/SRPMS-updates//dotnet7.0-7.0.109-1.0.1.el8_8.src.rpm Related CVEs: CVE-2023-33170 Description of changes: [7.0.109-1.0.1] - Set TargetRid based on os release major version, add OL arm64 RuntimeIdentifier [Orabug: 34671152] [7.0.109-1] - Update to .NET SDK 7.0.109 and Runtime 7.0.9 - Resolves: RHBZ#2219632 _______________________________________________ El-errata mailinglist
Aug 10, 2023
•Critical
Oracle
217
security advisorymoderatesecurity issueOracle Linux 8 ELSA-2023-0079 Moderate: .NET 6.0 Update and Bug Fix
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2023-0079 https://linux.oracle.com/errata/ELSA-2023-0079.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: aspnetcore-runtime-6.0-6.0.13-1.0.1.el8_7.x86_64.rpm aspnetcore-targeting-pack-6.0-6.0.13-1.0.1.el8_7.x86_64.rpm dotnet-apphost-pack-6.0-6.0.13-1.0.1.el8_7.x86_64.rpm dotnet-hostfxr-6.0-6.0.13-1.0.1.el8_7.x86_64.rpm dotnet-runtime-6.0-6.0.13-1.0.1.el8_7.x86_64.rpm dotnet-sdk-6.0-6.0.113-1.0.1.el8_7.x86_64.rpm dotnet-targeting-pack-6.0-6.0.13-1.0.1.el8_7.x86_64.rpm dotnet-templates-6.0-6.0.113-1.0.1.el8_7.x86_64.rpm dotnet-sdk-6.0-source-built-artifacts-6.0.113-1.0.1.el8_7.x86_64.rpm aarch64: aspnetcore-runtime-6.0-6.0.13-1.0.1.el8_7.aarch64.rpm aspnetcore-targeting-pack-6.0-6.0.13-1.0.1.el8_7.aarch64.rpm dotnet-apphost-pack-6.0-6.0.13-1.0.1.el8_7.aarch64.rpm dotnet-hostfxr-6.0-6.0.13-1.0.1.el8_7.aarch64.rpm dotnet-runtime-6.0-6.0.13-1.0.1.el8_7.aarch64.rpm dotnet-sdk-6.0-6.0.113-1.0.1.el8_7.aarch64.rpm dotnet-targeting-pack-6.0-6.0.13-1.0.1.el8_7.aarch64.rpm dotnet-templates-6.0-6.0.113-1.0.1.el8_7.aarch64.rpm dotnet-sdk-6.0-source-built-artifacts-6.0.113-1.0.1.el8_7.aarch64.rpm SRPMS: https://oss.oracle.com:443/ol8/SRPMS-updates/dotnet6.0-6.0.113-1.0.1.el8_7.src.rpm Related CVEs: CVE-2023-21538 Description of changes: [6.0.113-1.0.1] - Add missing Oracle Linux Runtime IDs [6.0.113-1] - Update to .NET SDK 6.0.113 and Runtime 6.0.13 - Resolves: RHBZ#2154458 _______________________________________________ El-errata mailing list
Jan 12, 2023
Oracle
98
security advisorysecurity updatebug fixRedHat: RHSA-2022:5612-01 Critical: RHUI 4.1.2 Security Updates
An updated version of Red Hat Update Infrastructure (RHUI) is now available. RHUI 4.1.1 introduces important enhancements and fixes several security bugs. 2. Relevant releases/architectures:. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: RHUI 4.1.1 release - Security Fixes and Enhancement Update Advisory ID: RHSA-2022:5602-01 Product: Red Hat Update Infrastructure Advisory URL: https://access.redhat.com/errata/RHSA-2022:5602 Issue date: 2022-07-19 CVE Names: CVE-2022-28346 CVE-2022-28347 ==================================================================== 1. Summary: An updated version of Red Hat Update Infrastructure (RHUI) is now available. RHUI 4.1.1 introduces important enhancements and fixes several security bugs. 2. Relevant releases/architectures: RHUI 4 for RHEL 8 - noarch, x86_64 3. Description: Red Hat Update Infrastructure (RHUI) offers a highly scalable, highly redundant framework that enables you to manage repositories and content. It also enables cloud providers to deliver content and updates to Red Hat Enterprise Linux (RHEL) instances. Security Fix(es): * Django: SQL injection via QuerySet's annotate, aggregate, and extra functions (CVE-2022-28346) * Django: SQL injection via QuerySet's explain function on PostgreSQL (CVE-2022-28347) This update fixes the following bugs: * Previously, when a path for a non-RHUI repository was used in the entitlement certificate, RHUI Manager logged the following error message in the `/var/log/messages` file: ... Invalid entitlement path %s found ... With this update, the error message has been clarified and reworded to the following message: ... Invalid repository download URL: %s provided ... In addition, this RHUI update introduces the following enhancements: * With this update, containers are now supported on RHUI. You can perform the following operations: ** Addcontainers to RHUI ** Synchronize these containers regularly along with containers from `registry.redhat.io` or any other registry of your choice ** Offer the containers to client virtual machines using a special client configuration RPM. You can create the configuration RPM using the `rhui-manager` text user interface. * With this update, the repository synchronization status, the validity status of the RHUI CA certificate, and the statuses of services running on the RHUA, CDS, and HAProxy nodes are now available. In the case of services running on the nodes, you can view the statuses by running the `rhui-manager status` command on the RHUA node.(BZ#1636435) * With this update, you can specify the following certificates and keys during RHUI installation: ** Custom CA certificates and keys on the RHUA node ** Custom CA certificate and key that will be used to generate client entitlement certificates ** Custom CA certificate and key that will be used to generate client SSL certificates ** Custom SSL certificate and key for the web server when adding a CDS node. Note that this certificate must be usable for all the load balancersand CDS host names that you are using with your RHUI installation(BZ#2010343) * Previously, you could only access repositories by using paths with the `/pulp/content` prefix. With this update, you can now access repositories using paths containing other predefined prefixes. In addition, you can also configure protected and unprotected custom repositories to use custom prefixes.(BZ#2079376) Users of RHUI are advised to upgrade to these updated packages that fix these bugs and add these enhancements. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. For detailed instructions on how to apply this update,see: https://access.redhat.com/documentation/en-us/red_hat_update_infrastructure/4/html/migrating_red_hat_update_infrastructure/assembly_upgrading-red-hat-update-infrastructure_migrating-red-hat-update-infrastructure For other information, consult the product documentation at: https://access.redhat.com/documentation/en-us/red_hat_update_infrastructure/4 5. Bugs fixed (https://bugzilla.redhat.com/): 1636435 - RFE: script to show the status of all RHUI related services 1890389 - /usr/lib/python2.7/site-packages/rhui/tools/cert_manager.py:291 verbage leads to confusion 2010343 - [RFE] Need a command to deploy custom SSL certificate using rhui-installer in RHUI 4 2072447 - CVE-2022-28346 Django: SQL injection in QuerySet.annotate(),aggregate() and extra() 2072459 - CVE-2022-28347 Django: SQL injection via QuerySet.explain(options) on PostgreSQL 2079376 - Request to remove hardcoded repo prefix "/pulp/content" from the Auth service/certificate verification service 6. Package List: RHUI 4 for RHEL8: Source: ansible-collection-community-crypto-1.7.0-4.el8ui.src.rpm createrepo_c-0.20.0-2.el8ui.src.rpm pulpcore-selinux-1.3.0-1.el8ui.src.rpm python-cryptography-3.1.1-2.el8ui.src.rpm python-django-3.2.13-2.el8ui.src.rpm python-ecdsa-0.14.1-2.el8ui.src.rpm python-future-0.18.2-5.el8ui.src.rpm python-pulp-container-2.10.3-2.el8ui.src.rpm python-pulp-container-client-2.7.1-6.el8ui.src.rpm python-pulp-rpm-3.17.5-2.el8ui.src.rpm python-pulpcore-3.17.6-3.el8ui.src.rpm python-pyOpenSSL-19.1.0-3.el8ui.src.rpm python-pycryptodomex-3.14.1-2.el8ui.src.rpm python-pyjwkest-1.4.2-6.el8ui.src.rpm python-pyjwt-1.7.1-8.el8ui.src.rpm python-requests-2.27.1-2.el8ui.src.rpm python-url-normalize-1.4.3-4.el8ui.src.rpm rhui-cds-plugin-authorizer-cert-1.0.5-1.el8ui.src.rpm rhui-cds-plugin-fetcher-1.0.5-1.el8ui.src.rpm rhui-installer-4.1.1.8-1.el8ui.src.rpm rhui-tools-4.1.1.16-1.el8ui.src.rpm noarch: ansible-collection-community-crypto-1.7.0-4.el8ui.noarch.rpm python3-pulp-container-client-2.7.1-6.el8ui.noarch.rpm python38-django-3.2.13-2.el8ui.noarch.rpm python38-ecdsa-0.14.1-2.el8ui.noarch.rpm python38-future-0.18.2-5.el8ui.noarch.rpm python38-pulp-container-2.10.3-2.el8ui.noarch.rpm python38-pulp-rpm-3.17.5-2.el8ui.noarch.rpm python38-pulpcore-3.17.6-3.el8ui.noarch.rpm python38-pyOpenSSL-19.1.0-3.el8ui.noarch.rpm python38-pyjwkest-1.4.2-6.el8ui.noarch.rpm python38-pyjwt-1.7.1-8.el8ui.noarch.rpm python38-requests-2.27.1-2.el8ui.noarch.rpm python38-url-normalize-1.4.3-4.el8ui.noarch.rpm rhui-cds-plugin-authorizer-cert-1.0.5-1.el8ui.noarch.rpm rhui-cds-plugin-fetcher-1.0.5-1.el8ui.noarch.rpm rhui-installer-4.1.1.8-1.el8ui.noarch.rpm rhui-tools-4.1.1.16-1.el8ui.noarch.rpm rhui-tools-libs-4.1.1.16-1.el8ui.noarch.rpm x86_64: createrepo_c-debuginfo-0.20.0-2.el8ui.x86_64.rpm createrepo_c-debugsource-0.20.0-2.el8ui.x86_64.rpm createrepo_c-libs-0.20.0-2.el8ui.x86_64.rpm createrepo_c-libs-debuginfo-0.20.0-2.el8ui.x86_64.rpm pulpcore-selinux-1.3.0-1.el8ui.x86_64.rpm python-cryptography-debugsource-3.1.1-2.el8ui.x86_64.rpm python-pycryptodomex-debugsource-3.14.1-2.el8ui.x86_64.rpm python3-createrepo_c-0.20.0-2.el8ui.x86_64.rpm python3-createrepo_c-debuginfo-0.20.0-2.el8ui.x86_64.rpm python38-createrepo_c-0.20.0-2.el8ui.x86_64.rpm python38-createrepo_c-debuginfo-0.20.0-2.el8ui.x86_64.rpm python38-cryptography-3.1.1-2.el8ui.x86_64.rpm python38-cryptography-debuginfo-3.1.1-2.el8ui.x86_64.rpm python38-pycryptodomex-3.14.1-2.el8ui.x86_64.rpm python38-pycryptodomex-debuginfo-3.14.1-2.el8ui.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2022-28346 https://access.redhat.com/security/cve/CVE-2022-28347 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYuFkLdzjgjWX9erEAQiSwRAAilDh6aiHbyrVrr/A9mc9tDMklle1Xa/e PTVrUfQc8iZgmf6VzdK4cDhSlXpUYGRw3uiN7zELsyp0v/5hNZhELXMCk/SKCxSk IGKj384fQOecWTiOOvED26AKmi9M9FfzDg50V6EF7TT80FQXLxgJhCmLGCrF37jD COvc94slPKXuvVsscLUW794E8DdywZwtam+Od2eM50ywJ4qEmAUgLw9X09Kmc6H3 KSrLPGx4PScwXwa8jBbTvvkq7sXa1XPBDrXj8zSByOZGSrDWb98tEZJq5tfTf4bq btJr19LwnM2LKCDYPJYVlFYAB9ASobYBwrPTKduP057e4U7NwHTpLPnAUwGcN1GT 5zzAkzkmcdG6WTQ4Yq+D9j0fQdu5mwd7sk9g7Ea2CG0bmTWkHpSgcT2j+eGJ+/av VWEGJSVKRYYSiLLmpa8F2d7JP1GBKly9oCS9mQwch0I0463VMjLEmjbTttzDuMCw 2ShbIrNXUe7pBGguSwTz+T1Luwj2GylDAukR3OuUkk1YKLIaSRRTiWvvDeE4DrEg 0DjtFTVwv9rd8k8VL1tVws6aq6NYRqJaUPKkJimICxl52k90Aie0ok7HkD67BqwN ITyoRf36JzArjluJClZACkmm6gb/EV14m6WgvMWgQmq6R8RrFww8PPCLluL93+Zj E8AVT9CzpY4=WX/1 -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Jul 27, 2022
•Critical
Red Hat
89
security advisorysoftware updateFedoraFedora 33: 2021-b2c6765a41 Moderate: Thunderbird Mail Client Update
Update to latest upstream version. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-b2c6765a41 2021-10-31 01:01:18.358834 --------------------------------------------------------------------------------Name : thunderbird Product : Fedora 33 Version : 91.2.0 Release : 1.fc33 URL : https://wiki.mozilla.org/Thunderbird:Home_Page Summary : Mozilla Thunderbird mail/newsgroup client Description : Mozilla Thunderbird is a standalone mail and newsgroup client. --------------------------------------------------------------------------------Update Information: Update to latest upstream version --------------------------------------------------------------------------------ChangeLog: * Fri Oct 15 2021 Jan Horak - 91.2.0-1 - Update to 91.2.0 build1 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-b2c6765a41' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Oct 30, 2021
Fedora
89
security advisoryupdateFedoraFedora 34 Singularity: 2021-08df3bb58a Security Enhancement Upgrade
Upgrade to upstream security release 3.7.4. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-08df3bb58a 2021-06-04 01:12:01.240155 --------------------------------------------------------------------------------Name : singularity Product : Fedora 34 Version : 3.7.4 Release : 1.fc34 URL : / Summary : Application and environment virtualization Description : Singularity provides functionality to make portable containers that can be used across host environments. --------------------------------------------------------------------------------Update Information: Upgrade to upstream security release 3.7.4 --------------------------------------------------------------------------------ChangeLog: * Wed May 26 2021 Dave Dykstra - 3.7.4-1 - Upgrade to upstream security release 3.7.4 --------------------------------------------------------------------------------References: [ 1 ] Bug #1965066 - singularity-3.7.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1965066 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-08df3bb58a' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Jun 03, 2021
•Important
Fedora
89
security advisoryFedoraapplication updateFedora 29: FEDORA-2019-efb92eed7a Critical: IcedTea-Web Enhancements
fixed CVEs 2019-10181, 2019-10182, 2019-10185 ---- Updated to fres upstream release: https://mail.openjdk.org/pipermail/distro-pkg-dev/2019-March/041320.html New in release 1.8 (2019-03-12): * added support for javafx-desc and so allwong run of pure-javafx only applications * --nosecurity enhanced for possibility to skip invalid signatures * enhanced to allow. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2019-efb92eed7a 2019-08-11 01:41:42.943617 --------------------------------------------------------------------------------Name : icedtea-web Product : Fedora 29 Version : 1.8 Release : 3.fc29 URL : Summary : Additional Java components for OpenJDK - Java browser plug-in and Web Start implementation Description : The IcedTea-Web project provides a Java web browser plugin, an implementation of Java Web Start (originally based on the Netx project) and a settings tool to manage deployment settings for the aforementioned plugin and Web Start implementations. --------------------------------------------------------------------------------Update Information: fixed CVEs 2019-10181, 2019-10182, 2019-10185 ---- Updated to fres upstream release: https://mail.openjdk.org/pipermail/distro-pkg-dev/2019-March/041320.html New in release 1.8 (2019-03-12): * added support for javafx-desc and so allwong run of pure-javafx only applications * --nosecurity enhanced for possibility to skip invalid signatures * enhanced to allow resources to be read also from j2se/java element (OmegaT) * PR3644 -java.lang.NoClassDefFoundError: Could not initialize class net.sourceforge.jnlp.runtime.JNLPRuntime$DeploymentConfigurationHolder * deployment.config now support generic url instead just file * Added support for windows desktop shortcuts via https://github.com/DmitriiShamrikov/mslinks * cache can now be operated by groups, list by -Xcacheids (details via -verbose, can filter by regex), Xclearcache now can clearonly selected id. There is also gui to operate cache via id in itweb-settings now. * desktop shortcut name get shortened to title or file if title is missing. * shared native launchers * scripted launchers rework: Windows bat launchers rewritten to be feature complete, Linux shell launchers made portable, build enhanced to produce platform independent image --------------------------------------------------------------------------------ChangeLog: * Wed Jul 31 2019 - Jiri Vanek -1.8.2-3 - added issue1-3 patches to fix CVEs 2019-10181, 2019-10182, 2019-10185 * Tue Feb 26 2019 - Jiri Vanek -1.8pre-0.2 - itw-modularjdk.args marked as config(norepalce) * Thu Feb 21 2019 - Jiri Vanek -1.8pre-0.1 - updated to soon to release itw 1.8 with native launchers * Fri Feb 1 2019 Fedora Release Engineering - 1.7.1-12 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-efb92eed7a' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Aug 10, 2019
•Critical
Fedora
200
security advisorymoderatebug fixScientific Linux: SLSA-2015:2290-1 Moderate: pcs Security and Enhancements
Moderate: pcs security, bug fix, and enhancement update. Date: Mon, 21 Dec 2015 23:15:23 +0000 Reply-To: scientific-linux-users@ Sender: Security Errata for Scientific Linux From: Pat Riehecky Subject: Security ERRATA Moderate: pcs on SL7.x x86_64 MIME-Version: 1.0 Message-ID: Synopsis: Moderate: pcs security, bug fix, and enhancement update Advisory ID: SLSA-2015:2290-1 Issue Date: 2015-11-19 CVE Numbers: CVE-2015-3225 -- A flaw was found in a way Rack processed parameters of incoming requests. An attacker could use this flaw to send a crafted request that would cause an application using Rack to crash. (CVE-2015-3225) The pcs package has been upgraded to upstream version 0.9.143, which provides a number of bug fixes and enhancements over the previous version. * The pcs resource move and pcs resource ban commands now display a warning message to clarify the commands' behavior * New command to move a Pacemaker resource to its preferred node This update also fixes the following bugs: * Before this update, a bug caused location, ordering, and colocation constraints related to a resource group to be removed when removing any resource from that group. This bug has been fixed, and the constraints are now preserved until the group has no resources left, and is removed. * Previously, when a user disabled a resource clone or multi-state resource, and then later enabled a primitive resource within it, the clone or multi-state resource remained disabled. With this update, enabling a resource within a disabled clone or multi-state resource enables it. * When the web UI displayed a list of resource attributes, a bug caused the list to be truncated at the first "=" character. This update fixes the bug and now the web UI displays lists of resource attributes correctly. * The documentation for the "pcs stonith confirm" command was not clear. This could lead to incorrect usage of the command, which could in turn cause data corruption. With this update, the documentation has been improved and the "pcs stonithconfirm" command is now more clearly explained. * Previously, if there were any unauthenticated nodes, creating a new cluster, adding a node to an existing cluster, or adding a cluster to the web UI failed with the message "Node is not authenticated". With this update, when the web UI detects a problem with authentication, the web UI displays a dialog to authenticate nodes as necessary. * Previously, the web UI displayed only primitive resources. Thus there was no way to set attributes, constraints and other properties separately for a parent resource and a child resource. This has now been fixed, and resources are displayed in a tree structure, meaning all resource elements can be viewed and edited independently. In addition, this update adds the following enhancements: * A dashboard has been added which shows the status of clusters in the web UI. Previously, it was not possible to view all important information about clusters in one place. Now, a dashboard showing the status of clusters has been added to the main page of the web UI. * With this update, the pcsd daemon automatically synchronizes pcsd configuration across a cluster. This enables the web UI to be run from any node, allowing management even if any particular node is down. * The web UI can now be used to set permissions for users and groups on a cluster. This allows users and groups to have their access restricted to certain operations on certain clusters. -- SL7 x86_64 pcs-0.9.143-15.el7.x86_64.rpm pcs-debuginfo-0.9.143-15.el7.x86_64.rpm - Scientific Linux Development Team . Explore the latest pcs security patch for Scientific Linux, focusing on resolving moderate vulnerabilities alongside various improvements and bug resolutions.. pcs security, Scientific Linux update, moderate advisory, bug fix. . LinuxSecurity.com Team
Dec 21, 2015
Scientific Linux
89
security advisoryfedoracritical updateFedora 21: Security Advisory for PostGIS 2.1.7 Critical Update
Update to latest release, which includes security fixes. Update to 2.1.6, per changes described at: enable json-c for postigs, but disable it for upgrade part Rebuild for Proj 4.9.1. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-5575 2015-04-05 11:03:00 -------------------------------------------------------------------------------- Name : postgis Product : Fedora 21 Version : 2.1.7 Release : 1.fc21 URL : http://www.refractions.net/products/postgis/ Summary : Geographic Information Systems Extensions to PostgreSQL Description : PostGIS adds support for geographic objects to the PostgreSQL object-relational database. In effect, PostGIS "spatially enables" the PostgreSQL server, allowing it to be used as a backend spatial database for geographic information systems (GIS), much like ESRI's SDE or Oracle's Spatial extension. PostGIS follows the OpenGIS "Simple Features Specification for SQL" and has been certified as compliant with the "Types and Functions" profile. -------------------------------------------------------------------------------- Update Information: Update to latest release, which includes security fixes. Update to 2.1.6, per changes described at: enable json-c for postigs, but disable it for upgrade part Rebuild for Proj 4.9.1 -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 1 2015 Devrim Gündüz - 2.1.7-1 - Update to 2.1.7, per changes described at: * Fri Mar 27 2015 Devrim Gündüz - 2.1.6-1 - Update to 2.1.6, per changes described at: * Thu Jan 8 2015 Jozef Mlich - 2.1.5-2 - disable json-c/geojson just for upgrade part of postgis * Mon Dec 22 2014 Devrim Gündüz - 2.1.5-1 - Update to 2.1.5, per changes described at: and -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update postgis' at thecommand line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list
Apr 18, 2015
•Critical
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!