Alerts This Week
Warning Icon 1 664
Alerts This Week
Warning Icon 1 664

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -3 articles for you...
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorymoderateupdate

Fedora 38: FEDORA-2023-56760afca8 Moderate: Auth Flaw in Matrix-Synapse

Update to v1.85.2 ---- Update to v1.85.1 ---- Update to v1.85.0 Fixes CVE-2023-32682, CVE-2023-32683 ---- Update to v1.84.1. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2023-56760afca8 2023-06-17 01:21:56.476578 --------------------------------------------------------------------------------Name : matrix-synapse Product : Fedora 38 Version : 1.85.2 Release : 1.fc38 URL : https://github.com/matrix-org/synapse Summary : A Matrix reference homeserver written in Python using Twisted Description : Matrix is an ambitious new ecosystem for open federated Instant Messaging and VoIP. Synapse is a reference "homeserver" implementation of Matrix from the core development team at matrix.org, written in Python/Twisted. It is intended to showcase the concept of Matrix and let folks see the spec in the context of a coded base and let you run your own homeserver and generally help bootstrap the ecosystem. --------------------------------------------------------------------------------Update Information: Update to v1.85.2 ---- Update to v1.85.1 ---- Update to v1.85.0 Fixes CVE-2023-32682, CVE-2023-32683 ---- Update to v1.84.1 --------------------------------------------------------------------------------ChangeLog: * Thu Jun 8 2023 Kai A. Hiller - 1.85.2-1 - Update to v1.85.2 * Wed Jun 7 2023 Kai A. Hiller - 1.85.1-1 - Update to v1.85.1 * Tue Jun 6 2023 Kai A. Hiller - 1.85.0-1 - Update to v1.85.0 * Sat Jun 3 2023 Kai A. Hiller - 1.84.1-1 - Update to v1.84.1 --------------------------------------------------------------------------------References: [ 1 ] Bug #2213002 - CVE-2023-32683 matrix-synapse: URL deny list bypass via oEmbed and image URLs when generating previews [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2213002 [ 2 ] Bug #2213003 - CVE-2023-32682 matrix-synapse: Improper checks for deactivated users during login [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2213003 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-56760afca8' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . Fedora 38's Matrix-synapse enhancements target security vulnerabilities and service limitations to bolster overall safety.. matrix-synapse updates,Fedora package advisory,security fixes,software security tasks. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jun 17, 2023 Important Fedora
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryred hatsamba

Red Hat: RHSA-2023-2136-01 Urgent: Samba Authentication Vulnerability

An update for samba is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: samba security update Advisory ID: RHSA-2023:2136-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2023:2136 Issue date: 2023-05-04 CVE Names: CVE-2022-38023 ==================================================================== 1. Summary: An update for samba is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat CodeReady Linux Builder EUS (v.8.6) - aarch64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux AppStream EUS (v.8.6) - aarch64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux BaseOS EUS (v.8.6) - aarch64, noarch, ppc64le, s390x, x86_64 3. Description: Samba is an open-source implementation of the Server Message Block (SMB) protocol and the related Common Internet File System (CIFS) protocol, which allow PC-compatible machines to share files, printers, and various information. Security Fix(es): * samba: RC4/HMAC-MD5 NetLogon Secure Channel is weak and should be avoided (CVE-2022-38023) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes describedin this advisory, refer to: https://access.redhat.com/articles/11258 After installing this update, the smb service will be restarted automatically. 5. Bugs fixed (https://bugzilla.redhat.com/): 2154362 - CVE-2022-38023 samba: RC4/HMAC-MD5 NetLogon Secure Channel is weak and should be avoided 6. Package List: Red Hat Enterprise Linux AppStream EUS(v.8.6): aarch64: ctdb-debuginfo-4.15.5-12.el8_6.aarch64.rpm libsmbclient-debuginfo-4.15.5-12.el8_6.aarch64.rpm libwbclient-debuginfo-4.15.5-12.el8_6.aarch64.rpm python3-samba-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-client-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-client-libs-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-common-libs-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-common-tools-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-debugsource-4.15.5-12.el8_6.aarch64.rpm samba-krb5-printing-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-libs-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-test-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-test-libs-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-vfs-iouring-4.15.5-12.el8_6.aarch64.rpm samba-vfs-iouring-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-winbind-clients-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-winbind-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-winbind-krb5-locator-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-winbind-modules-debuginfo-4.15.5-12.el8_6.aarch64.rpm ppc64le: ctdb-debuginfo-4.15.5-12.el8_6.ppc64le.rpm libsmbclient-debuginfo-4.15.5-12.el8_6.ppc64le.rpm libwbclient-debuginfo-4.15.5-12.el8_6.ppc64le.rpm python3-samba-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-client-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-client-libs-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-common-libs-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-common-tools-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-debugsource-4.15.5-12.el8_6.ppc64le.rpm samba-krb5-printing-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-libs-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-test-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-test-libs-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-vfs-iouring-4.15.5-12.el8_6.ppc64le.rpm samba-vfs-iouring-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-winbind-clients-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-winbind-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-winbind-krb5-locator-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-winbind-modules-debuginfo-4.15.5-12.el8_6.ppc64le.rpm s390x: ctdb-debuginfo-4.15.5-12.el8_6.s390x.rpm libsmbclient-debuginfo-4.15.5-12.el8_6.s390x.rpm libwbclient-debuginfo-4.15.5-12.el8_6.s390x.rpm python3-samba-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-client-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-client-libs-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-common-libs-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-common-tools-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-debugsource-4.15.5-12.el8_6.s390x.rpm samba-krb5-printing-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-libs-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-test-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-test-libs-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-vfs-iouring-4.15.5-12.el8_6.s390x.rpm samba-vfs-iouring-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-winbind-clients-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-winbind-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-winbind-krb5-locator-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-winbind-modules-debuginfo-4.15.5-12.el8_6.s390x.rpm x86_64: ctdb-debuginfo-4.15.5-12.el8_6.x86_64.rpm libsmbclient-debuginfo-4.15.5-12.el8_6.x86_64.rpm libwbclient-debuginfo-4.15.5-12.el8_6.x86_64.rpm python3-samba-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-client-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-client-libs-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-common-libs-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-common-tools-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-debugsource-4.15.5-12.el8_6.x86_64.rpm samba-krb5-printing-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-libs-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-test-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-test-libs-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-vfs-iouring-4.15.5-12.el8_6.x86_64.rpm samba-vfs-iouring-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-winbind-clients-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-winbind-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-winbind-krb5-locator-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-winbind-modules-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-winexe-debuginfo-4.15.5-12.el8_6.x86_64.rpm Red Hat Enterprise Linux BaseOS EUS(v.8.6): Source: samba-4.15.5-12.el8_6.src.rpm aarch64: ctdb-4.15.5-12.el8_6.aarch64.rpm ctdb-debuginfo-4.15.5-12.el8_6.aarch64.rpm libsmbclient-4.15.5-12.el8_6.aarch64.rpm libsmbclient-debuginfo-4.15.5-12.el8_6.aarch64.rpm libwbclient-4.15.5-12.el8_6.aarch64.rpm libwbclient-debuginfo-4.15.5-12.el8_6.aarch64.rpm python3-samba-4.15.5-12.el8_6.aarch64.rpm python3-samba-debuginfo-4.15.5-12.el8_6.aarch64.rpm python3-samba-test-4.15.5-12.el8_6.aarch64.rpm samba-4.15.5-12.el8_6.aarch64.rpm samba-client-4.15.5-12.el8_6.aarch64.rpm samba-client-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-client-libs-4.15.5-12.el8_6.aarch64.rpm samba-client-libs-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-common-libs-4.15.5-12.el8_6.aarch64.rpm samba-common-libs-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-common-tools-4.15.5-12.el8_6.aarch64.rpm samba-common-tools-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-debugsource-4.15.5-12.el8_6.aarch64.rpm samba-krb5-printing-4.15.5-12.el8_6.aarch64.rpm samba-krb5-printing-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-libs-4.15.5-12.el8_6.aarch64.rpm samba-libs-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-test-4.15.5-12.el8_6.aarch64.rpm samba-test-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-test-libs-4.15.5-12.el8_6.aarch64.rpm samba-test-libs-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-vfs-iouring-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-winbind-4.15.5-12.el8_6.aarch64.rpm samba-winbind-clients-4.15.5-12.el8_6.aarch64.rpm samba-winbind-clients-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-winbind-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-winbind-krb5-locator-4.15.5-12.el8_6.aarch64.rpm samba-winbind-krb5-locator-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-winbind-modules-4.15.5-12.el8_6.aarch64.rpm samba-winbind-modules-debuginfo-4.15.5-12.el8_6.aarch64.rpm noarch: samba-common-4.15.5-12.el8_6.noarch.rpm samba-pidl-4.15.5-12.el8_6.noarch.rpm ppc64le: ctdb-4.15.5-12.el8_6.ppc64le.rpm ctdb-debuginfo-4.15.5-12.el8_6.ppc64le.rpm libsmbclient-4.15.5-12.el8_6.ppc64le.rpm libsmbclient-debuginfo-4.15.5-12.el8_6.ppc64le.rpm libwbclient-4.15.5-12.el8_6.ppc64le.rpm libwbclient-debuginfo-4.15.5-12.el8_6.ppc64le.rpm python3-samba-4.15.5-12.el8_6.ppc64le.rpm python3-samba-debuginfo-4.15.5-12.el8_6.ppc64le.rpm python3-samba-test-4.15.5-12.el8_6.ppc64le.rpm samba-4.15.5-12.el8_6.ppc64le.rpm samba-client-4.15.5-12.el8_6.ppc64le.rpm samba-client-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-client-libs-4.15.5-12.el8_6.ppc64le.rpm samba-client-libs-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-common-libs-4.15.5-12.el8_6.ppc64le.rpm samba-common-libs-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-common-tools-4.15.5-12.el8_6.ppc64le.rpm samba-common-tools-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-debugsource-4.15.5-12.el8_6.ppc64le.rpm samba-krb5-printing-4.15.5-12.el8_6.ppc64le.rpm samba-krb5-printing-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-libs-4.15.5-12.el8_6.ppc64le.rpm samba-libs-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-test-4.15.5-12.el8_6.ppc64le.rpm samba-test-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-test-libs-4.15.5-12.el8_6.ppc64le.rpm samba-test-libs-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-vfs-iouring-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-winbind-4.15.5-12.el8_6.ppc64le.rpm samba-winbind-clients-4.15.5-12.el8_6.ppc64le.rpm samba-winbind-clients-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-winbind-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-winbind-krb5-locator-4.15.5-12.el8_6.ppc64le.rpm samba-winbind-krb5-locator-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-winbind-modules-4.15.5-12.el8_6.ppc64le.rpm samba-winbind-modules-debuginfo-4.15.5-12.el8_6.ppc64le.rpm s390x: ctdb-4.15.5-12.el8_6.s390x.rpm ctdb-debuginfo-4.15.5-12.el8_6.s390x.rpm libsmbclient-4.15.5-12.el8_6.s390x.rpm libsmbclient-debuginfo-4.15.5-12.el8_6.s390x.rpm libwbclient-4.15.5-12.el8_6.s390x.rpm libwbclient-debuginfo-4.15.5-12.el8_6.s390x.rpm python3-samba-4.15.5-12.el8_6.s390x.rpm python3-samba-debuginfo-4.15.5-12.el8_6.s390x.rpm python3-samba-test-4.15.5-12.el8_6.s390x.rpm samba-4.15.5-12.el8_6.s390x.rpm samba-client-4.15.5-12.el8_6.s390x.rpm samba-client-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-client-libs-4.15.5-12.el8_6.s390x.rpm samba-client-libs-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-common-libs-4.15.5-12.el8_6.s390x.rpm samba-common-libs-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-common-tools-4.15.5-12.el8_6.s390x.rpm samba-common-tools-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-debugsource-4.15.5-12.el8_6.s390x.rpm samba-krb5-printing-4.15.5-12.el8_6.s390x.rpm samba-krb5-printing-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-libs-4.15.5-12.el8_6.s390x.rpm samba-libs-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-test-4.15.5-12.el8_6.s390x.rpm samba-test-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-test-libs-4.15.5-12.el8_6.s390x.rpm samba-test-libs-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-vfs-iouring-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-winbind-4.15.5-12.el8_6.s390x.rpm samba-winbind-clients-4.15.5-12.el8_6.s390x.rpm samba-winbind-clients-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-winbind-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-winbind-krb5-locator-4.15.5-12.el8_6.s390x.rpm samba-winbind-krb5-locator-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-winbind-modules-4.15.5-12.el8_6.s390x.rpm samba-winbind-modules-debuginfo-4.15.5-12.el8_6.s390x.rpm x86_64: ctdb-4.15.5-12.el8_6.x86_64.rpm ctdb-debuginfo-4.15.5-12.el8_6.i686.rpm ctdb-debuginfo-4.15.5-12.el8_6.x86_64.rpm libsmbclient-4.15.5-12.el8_6.i686.rpm libsmbclient-4.15.5-12.el8_6.x86_64.rpm libsmbclient-debuginfo-4.15.5-12.el8_6.i686.rpm libsmbclient-debuginfo-4.15.5-12.el8_6.x86_64.rpm libwbclient-4.15.5-12.el8_6.i686.rpm libwbclient-4.15.5-12.el8_6.x86_64.rpm libwbclient-debuginfo-4.15.5-12.el8_6.i686.rpm libwbclient-debuginfo-4.15.5-12.el8_6.x86_64.rpm python3-samba-4.15.5-12.el8_6.i686.rpm python3-samba-4.15.5-12.el8_6.x86_64.rpm python3-samba-debuginfo-4.15.5-12.el8_6.i686.rpm python3-samba-debuginfo-4.15.5-12.el8_6.x86_64.rpm python3-samba-test-4.15.5-12.el8_6.x86_64.rpm samba-4.15.5-12.el8_6.x86_64.rpm samba-client-4.15.5-12.el8_6.x86_64.rpm samba-client-debuginfo-4.15.5-12.el8_6.i686.rpm samba-client-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-client-libs-4.15.5-12.el8_6.i686.rpm samba-client-libs-4.15.5-12.el8_6.x86_64.rpm samba-client-libs-debuginfo-4.15.5-12.el8_6.i686.rpm samba-client-libs-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-common-libs-4.15.5-12.el8_6.x86_64.rpm samba-common-libs-debuginfo-4.15.5-12.el8_6.i686.rpm samba-common-libs-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-common-tools-4.15.5-12.el8_6.x86_64.rpm samba-common-tools-debuginfo-4.15.5-12.el8_6.i686.rpm samba-common-tools-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-debuginfo-4.15.5-12.el8_6.i686.rpm samba-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-debugsource-4.15.5-12.el8_6.i686.rpm samba-debugsource-4.15.5-12.el8_6.x86_64.rpm samba-krb5-printing-4.15.5-12.el8_6.x86_64.rpm samba-krb5-printing-debuginfo-4.15.5-12.el8_6.i686.rpm samba-krb5-printing-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-libs-4.15.5-12.el8_6.i686.rpm samba-libs-4.15.5-12.el8_6.x86_64.rpm samba-libs-debuginfo-4.15.5-12.el8_6.i686.rpm samba-libs-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-test-4.15.5-12.el8_6.x86_64.rpm samba-test-debuginfo-4.15.5-12.el8_6.i686.rpm samba-test-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-test-libs-4.15.5-12.el8_6.x86_64.rpm samba-test-libs-debuginfo-4.15.5-12.el8_6.i686.rpm samba-test-libs-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-vfs-iouring-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-winbind-4.15.5-12.el8_6.x86_64.rpm samba-winbind-clients-4.15.5-12.el8_6.x86_64.rpm samba-winbind-clients-debuginfo-4.15.5-12.el8_6.i686.rpm samba-winbind-clients-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-winbind-debuginfo-4.15.5-12.el8_6.i686.rpm samba-winbind-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-winbind-krb5-locator-4.15.5-12.el8_6.x86_64.rpm samba-winbind-krb5-locator-debuginfo-4.15.5-12.el8_6.i686.rpm samba-winbind-krb5-locator-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-winbind-modules-4.15.5-12.el8_6.i686.rpm samba-winbind-modules-4.15.5-12.el8_6.x86_64.rpm samba-winbind-modules-debuginfo-4.15.5-12.el8_6.i686.rpm samba-winbind-modules-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-winexe-4.15.5-12.el8_6.x86_64.rpm samba-winexe-debuginfo-4.15.5-12.el8_6.x86_64.rpm Red Hat CodeReady Linux Builder EUS(v.8.6): aarch64: ctdb-debuginfo-4.15.5-12.el8_6.aarch64.rpm libsmbclient-debuginfo-4.15.5-12.el8_6.aarch64.rpm libsmbclient-devel-4.15.5-12.el8_6.aarch64.rpm libwbclient-debuginfo-4.15.5-12.el8_6.aarch64.rpm libwbclient-devel-4.15.5-12.el8_6.aarch64.rpm python3-samba-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-client-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-client-libs-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-common-libs-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-common-tools-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-debugsource-4.15.5-12.el8_6.aarch64.rpm samba-devel-4.15.5-12.el8_6.aarch64.rpm samba-krb5-printing-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-libs-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-test-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-test-libs-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-vfs-iouring-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-winbind-clients-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-winbind-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-winbind-krb5-locator-debuginfo-4.15.5-12.el8_6.aarch64.rpm samba-winbind-modules-debuginfo-4.15.5-12.el8_6.aarch64.rpm ppc64le: ctdb-debuginfo-4.15.5-12.el8_6.ppc64le.rpm libsmbclient-debuginfo-4.15.5-12.el8_6.ppc64le.rpm libsmbclient-devel-4.15.5-12.el8_6.ppc64le.rpm libwbclient-debuginfo-4.15.5-12.el8_6.ppc64le.rpm libwbclient-devel-4.15.5-12.el8_6.ppc64le.rpm python3-samba-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-client-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-client-libs-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-common-libs-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-common-tools-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-debugsource-4.15.5-12.el8_6.ppc64le.rpm samba-devel-4.15.5-12.el8_6.ppc64le.rpm samba-krb5-printing-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-libs-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-test-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-test-libs-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-vfs-iouring-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-winbind-clients-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-winbind-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-winbind-krb5-locator-debuginfo-4.15.5-12.el8_6.ppc64le.rpm samba-winbind-modules-debuginfo-4.15.5-12.el8_6.ppc64le.rpm s390x: ctdb-debuginfo-4.15.5-12.el8_6.s390x.rpm libsmbclient-debuginfo-4.15.5-12.el8_6.s390x.rpm libsmbclient-devel-4.15.5-12.el8_6.s390x.rpm libwbclient-debuginfo-4.15.5-12.el8_6.s390x.rpm libwbclient-devel-4.15.5-12.el8_6.s390x.rpm python3-samba-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-client-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-client-libs-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-common-libs-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-common-tools-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-debugsource-4.15.5-12.el8_6.s390x.rpm samba-devel-4.15.5-12.el8_6.s390x.rpm samba-krb5-printing-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-libs-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-test-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-test-libs-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-vfs-iouring-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-winbind-clients-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-winbind-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-winbind-krb5-locator-debuginfo-4.15.5-12.el8_6.s390x.rpm samba-winbind-modules-debuginfo-4.15.5-12.el8_6.s390x.rpm x86_64: ctdb-debuginfo-4.15.5-12.el8_6.i686.rpm ctdb-debuginfo-4.15.5-12.el8_6.x86_64.rpm libsmbclient-debuginfo-4.15.5-12.el8_6.i686.rpm libsmbclient-debuginfo-4.15.5-12.el8_6.x86_64.rpm libsmbclient-devel-4.15.5-12.el8_6.i686.rpm libsmbclient-devel-4.15.5-12.el8_6.x86_64.rpm libwbclient-debuginfo-4.15.5-12.el8_6.i686.rpm libwbclient-debuginfo-4.15.5-12.el8_6.x86_64.rpm libwbclient-devel-4.15.5-12.el8_6.i686.rpm libwbclient-devel-4.15.5-12.el8_6.x86_64.rpm python3-samba-debuginfo-4.15.5-12.el8_6.i686.rpm python3-samba-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-client-debuginfo-4.15.5-12.el8_6.i686.rpm samba-client-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-client-libs-debuginfo-4.15.5-12.el8_6.i686.rpm samba-client-libs-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-common-libs-debuginfo-4.15.5-12.el8_6.i686.rpm samba-common-libs-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-common-tools-debuginfo-4.15.5-12.el8_6.i686.rpm samba-common-tools-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-debuginfo-4.15.5-12.el8_6.i686.rpm samba-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-debugsource-4.15.5-12.el8_6.i686.rpm samba-debugsource-4.15.5-12.el8_6.x86_64.rpm samba-devel-4.15.5-12.el8_6.i686.rpm samba-devel-4.15.5-12.el8_6.x86_64.rpm samba-krb5-printing-debuginfo-4.15.5-12.el8_6.i686.rpm samba-krb5-printing-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-libs-debuginfo-4.15.5-12.el8_6.i686.rpm samba-libs-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-test-debuginfo-4.15.5-12.el8_6.i686.rpm samba-test-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-test-libs-debuginfo-4.15.5-12.el8_6.i686.rpm samba-test-libs-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-vfs-iouring-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-winbind-clients-debuginfo-4.15.5-12.el8_6.i686.rpm samba-winbind-clients-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-winbind-debuginfo-4.15.5-12.el8_6.i686.rpm samba-winbind-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-winbind-krb5-locator-debuginfo-4.15.5-12.el8_6.i686.rpm samba-winbind-krb5-locator-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-winbind-modules-debuginfo-4.15.5-12.el8_6.i686.rpm samba-winbind-modules-debuginfo-4.15.5-12.el8_6.x86_64.rpm samba-winexe-debuginfo-4.15.5-12.el8_6.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2022-38023 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBZFRFdNzjgjWX9erEAQhJ6g/8D/CmLUQqbBaPeLytealtzX5YCg8xWBBV E4mJCZx1MeUse2km0wG1vM83IetqEI4S6h2wVHEFGrrCHtq2blrCWJEhusrgGGy0 FdpQUiWDWP0AnTeDswJT//lru5qHbJPGubG4ejXGqcB7A4t+fY94cXFf5c/azOZm bJA1xWNh24Vr/mmhLiJQHnr3BgQoRi86wPtVCWFYyND5r3xeqt4RmFYxAmAW4f3J 6p+4+3kmUtsyd15EAp3YADIo2dw2o1euUrAz81vNrDj+sJKsrMISK0MeR92t8GYR SXgjW+RxFIftKRi45yn/14gP/U00Ov+pzwNTLZs9D3BRB+u6uwq9vNl7AYb20RZ8 K+1HNgE8gUPNMuXA1VqTJR59a72a5Mcxdf5Yzbzml3Gt+X1HuCv4Jd3VORM2nFWc 1cedEKtNw0S9dQw38nLdXaFuFsXqn1/emwEllp7Q91Nf+yMWxH5ruOp1ICBeTzOI PmBRr5S96tkBBoas51+IDCK1yPL7vln2FeuGMHLLVzxtvR+XZCMGTO3Y4SKR+GyM /VgkfCIbdWp9lUlZ1t3Ts/CMyC5ZmtTPXinNLKj4+zS4XNYfgECl8039OTvrBz6D JrCFwwZPHBee7m/s6crabWZcMYzh8HWJUrBqdApr9cLViN5m4qXLElW5f+YfbJps WSDcXM5ao2Q=5iav -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Significant samba patch for Red Hat Enterprise Linux tackles severe vulnerability in NetLogon Secure Channel protocol.. Red Hat Security, Samba Update, Linux Security Patches. . Severity: Important. LinuxSecurity.com Team

Calendar 2 May 04, 2023 Important Red Hat
Banner 2 1028x280 1708121730 1 1771599631
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorysoftware updateFedora

Fedora: 2015-ee7a2b5844 moderate: ganglia 3.7.1 auth issue

Update to ganglia-web 3.7.1, including security fix for CVE-2015-6816.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-ee7a2b5844 2015-10-23 11:59:44.995208 -------------------------------------------------------------------------------- Name : ganglia Product : Fedora 22 Version : 3.7.2 Release : 6.fc22 URL : https://sourceforge.net/projects/ganglia/ Summary : Distributed Monitoring System Description : Ganglia is a scalable, real-time monitoring and execution environment with all execution requests and statistics expressed in an open well-defined XML format. -------------------------------------------------------------------------------- Update Information: Update to ganglia-web 3.7.1, including security fix for CVE-2015-6816. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1260563 - CVE-2015-6816 ganglia: Bypassing Ganglia-web auth using boolean serialization [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1260563 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update ganglia' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/admin/lists/package-announce.lists.fedoraproject.org/ . An upgrade for ganglia-web 3.7.1 on Fedora 22 has been released, resolving CVE-2015-6816 with critical patches. Discover more details here.. Ganglia Security Update,Fedora 22,CVE Fix,Ganglia-webUpdate,Security Advisory. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Oct 23, 2015 Important Fedora
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryRed Hat Enterprise Linuximportant

Red Hat Enterprise Linux 4.0 RHSA-2014:0382-01 Important Auth Flaw

Updated python-keystoneclient packages that fix one security issue are now available for Red Hat Enterprise Linux OpenStack Platform 4.0. The Red Hat Security Response Team has rated this update as having Important security impact. A Common Vulnerability Scoring System (CVSS). -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Important: python-keystoneclient security update Advisory ID: RHSA-2014:0382-01 Product: Red Hat Enterprise Linux OpenStack Platform Advisory URL: https://access.redhat.com/errata/RHSA-2014:0382.html Issue date: 2014-04-09 CVE Names: CVE-2014-0105 ==================================================================== 1. Summary: Updated python-keystoneclient packages that fix one security issue are now available for Red Hat Enterprise Linux OpenStack Platform 4.0. The Red Hat Security Response Team has rated this update as having Important security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux OpenStack Platform 4.0 - noarch 3. Description: Python-keystoneclient is a client library and a command line utility for interacting with the OpenStack Identity API. The OpenStack Identity auth_token middleware component handles the authentication of tokens with keystone. When using the auth_token middleware with the memcached token cache enabled, a token for a different identity could be returned. An authenticated user could use this flaw to escalate their privileges by making repeated requests that could eventually allow the user to acquire the administrator's identity. Note that only OpenStack Identity setups using auth_token with memcached were affected. (CVE-2014-0105) Red Hat would like to thank the OpenStack project for reporting thisissue. Upstream acknowledges Kieran Spear from the University of Melbourne as the original reporter. The python-keystoneclient package has been upgraded to version 0.7.1. Additionally, the python-six package has been upgraded to version 1.5.2, required by the updated python-keystoneclient package. All python-keystoneclient users are advised to upgrade to these updated packages, which correct this issue. After installing this update, all OpenStack services using auth_token must be restarted for this update to take effect. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/site/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1082165 - CVE-2014-0105 python-keystoneclient: Potential context confusion in Keystone middleware 6. Package List: Red Hat Enterprise Linux OpenStack Platform 4.0: Source: noarch: python-keystoneclient-0.7.1-2.el6ost.noarch.rpm python-keystoneclient-doc-0.7.1-2.el6ost.noarch.rpm python-six-1.5.2-1.el6.noarch.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7. References: https://access.redhat.com/security/cve/CVE-2014-0105 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2014 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFTRZduXlSAg2UNWIIRAglSAJ0cJCU8defXrY3LbZcQ61o40z1CKACdG9wn TCMWdEj4ETm7eZWGYlOCVIA=vO02 -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Newly released python-keystoneclient updates that fix security vulnerabilities are now accessible for Red HatEnterprise OpenStack Platform.. Red Hat Security, Python Keystoneclient, OpenStack Platform, Security Update. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Apr 09, 2014 Important Red Hat
Banner 2 1028x280 1708121730 1 1771599631
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorymoderatesecurity update

Red Hat: RHSA-2011:0170-01 Moderate: Libuser LDAP Authentication Flaw

Updated libuser packages that fix one security issue are now available for Red Hat Enterprise Linux 4, 5, and 6. The Red Hat Security Response Team has rated this update as having moderate [More...]. ==================================================================== Red Hat Security Advisory Synopsis: Moderate: libuser security update Advisory ID: RHSA-2011:0170-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2011:0170.html Issue date: 2011-01-20 CVE Names: CVE-2011-0002 ==================================================================== 1. Summary: Updated libuser packages that fix one security issue are now available for Red Hat Enterprise Linux 4, 5, and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. 2. Relevant releases/architectures: RHEL Desktop Workstation (v. 5 client) - i386, x86_64 Red Hat Enterprise Linux (v. 5 server) - i386, ia64, ppc, s390x, x86_64 Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64 Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux Desktop version 4 - i386, x86_64 Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64 Red Hat Enterprise Linux HPC Node (v. 6) - x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64 3. Description: The libuser libraryimplements a standardized interface for manipulating and administering user and group accounts. Sample applications that are modeled after applications from the shadow password suite (shadow-utils) are included in these packages. It was discovered that libuser did not set the password entry correctly when creating LDAP (Lightweight Directory Access Protocol) users. If an administrator did not assign a password to an LDAP based user account, either at account creation with luseradd, or with lpasswd after account creation, an attacker could use this flaw to log into that account with a default password string that should have been rejected. (CVE-2011-0002) Note: LDAP administrators that have used libuser tools to add users should check existing user accounts for plain text passwords, and reset them as necessary. Users of libuser should upgrade to these updated packages, which contain a backported patch to correct this issue. 4. Solution: Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at 5. Bugs fixed (http://bugzilla.redhat.com/): 643227 - CVE-2011-0002 libuser creates LDAP users with a default password 6. Package List: Red Hat Enterprise Linux AS version4: Source: i386: libuser-0.52.5-1.1.el4_8.1.i386.rpm libuser-debuginfo-0.52.5-1.1.el4_8.1.i386.rpm libuser-devel-0.52.5-1.1.el4_8.1.i386.rpm ia64: libuser-0.52.5-1.1.el4_8.1.i386.rpm libuser-0.52.5-1.1.el4_8.1.ia64.rpm libuser-debuginfo-0.52.5-1.1.el4_8.1.i386.rpm libuser-debuginfo-0.52.5-1.1.el4_8.1.ia64.rpm libuser-devel-0.52.5-1.1.el4_8.1.ia64.rpm ppc: libuser-0.52.5-1.1.el4_8.1.ppc.rpm libuser-0.52.5-1.1.el4_8.1.ppc64.rpm libuser-debuginfo-0.52.5-1.1.el4_8.1.ppc.rpm libuser-debuginfo-0.52.5-1.1.el4_8.1.ppc64.rpm libuser-devel-0.52.5-1.1.el4_8.1.ppc.rpm s390: libuser-0.52.5-1.1.el4_8.1.s390.rpm libuser-debuginfo-0.52.5-1.1.el4_8.1.s390.rpm libuser-devel-0.52.5-1.1.el4_8.1.s390.rpm s390x: libuser-0.52.5-1.1.el4_8.1.s390.rpm libuser-0.52.5-1.1.el4_8.1.s390x.rpm libuser-debuginfo-0.52.5-1.1.el4_8.1.s390.rpm libuser-debuginfo-0.52.5-1.1.el4_8.1.s390x.rpm libuser-devel-0.52.5-1.1.el4_8.1.s390x.rpm x86_64: libuser-0.52.5-1.1.el4_8.1.i386.rpm libuser-0.52.5-1.1.el4_8.1.x86_64.rpm libuser-debuginfo-0.52.5-1.1.el4_8.1.i386.rpm libuser-debuginfo-0.52.5-1.1.el4_8.1.x86_64.rpm libuser-devel-0.52.5-1.1.el4_8.1.x86_64.rpm Red Hat Enterprise Linux Desktop version 4: Source: i386: libuser-0.52.5-1.1.el4_8.1.i386.rpm libuser-debuginfo-0.52.5-1.1.el4_8.1.i386.rpm libuser-devel-0.52.5-1.1.el4_8.1.i386.rpm x86_64: libuser-0.52.5-1.1.el4_8.1.i386.rpm libuser-0.52.5-1.1.el4_8.1.x86_64.rpm libuser-debuginfo-0.52.5-1.1.el4_8.1.i386.rpm libuser-debuginfo-0.52.5-1.1.el4_8.1.x86_64.rpm libuser-devel-0.52.5-1.1.el4_8.1.x86_64.rpm Red Hat Enterprise Linux ES version4: Source: i386: libuser-0.52.5-1.1.el4_8.1.i386.rpm libuser-debuginfo-0.52.5-1.1.el4_8.1.i386.rpm libuser-devel-0.52.5-1.1.el4_8.1.i386.rpm ia64: libuser-0.52.5-1.1.el4_8.1.i386.rpm libuser-0.52.5-1.1.el4_8.1.ia64.rpm libuser-debuginfo-0.52.5-1.1.el4_8.1.i386.rpm libuser-debuginfo-0.52.5-1.1.el4_8.1.ia64.rpm libuser-devel-0.52.5-1.1.el4_8.1.ia64.rpm x86_64: libuser-0.52.5-1.1.el4_8.1.i386.rpm libuser-0.52.5-1.1.el4_8.1.x86_64.rpm libuser-debuginfo-0.52.5-1.1.el4_8.1.i386.rpm libuser-debuginfo-0.52.5-1.1.el4_8.1.x86_64.rpm libuser-devel-0.52.5-1.1.el4_8.1.x86_64.rpm Red Hat Enterprise Linux WS version 4: Source: i386: libuser-0.52.5-1.1.el4_8.1.i386.rpm libuser-debuginfo-0.52.5-1.1.el4_8.1.i386.rpm libuser-devel-0.52.5-1.1.el4_8.1.i386.rpm ia64: libuser-0.52.5-1.1.el4_8.1.i386.rpm libuser-0.52.5-1.1.el4_8.1.ia64.rpm libuser-debuginfo-0.52.5-1.1.el4_8.1.i386.rpm libuser-debuginfo-0.52.5-1.1.el4_8.1.ia64.rpm libuser-devel-0.52.5-1.1.el4_8.1.ia64.rpm x86_64: libuser-0.52.5-1.1.el4_8.1.i386.rpm libuser-0.52.5-1.1.el4_8.1.x86_64.rpm libuser-debuginfo-0.52.5-1.1.el4_8.1.i386.rpm libuser-debuginfo-0.52.5-1.1.el4_8.1.x86_64.rpm libuser-devel-0.52.5-1.1.el4_8.1.x86_64.rpm Red Hat Enterprise Linux Desktop (v. 5 client): Source: i386: libuser-0.54.7-2.1.el5_5.2.i386.rpm libuser-debuginfo-0.54.7-2.1.el5_5.2.i386.rpm x86_64: libuser-0.54.7-2.1.el5_5.2.i386.rpm libuser-0.54.7-2.1.el5_5.2.x86_64.rpm libuser-debuginfo-0.54.7-2.1.el5_5.2.i386.rpm libuser-debuginfo-0.54.7-2.1.el5_5.2.x86_64.rpm RHEL Desktop Workstation (v. 5 client): Source: i386: libuser-debuginfo-0.54.7-2.1.el5_5.2.i386.rpm libuser-devel-0.54.7-2.1.el5_5.2.i386.rpm x86_64: libuser-debuginfo-0.54.7-2.1.el5_5.2.i386.rpm libuser-debuginfo-0.54.7-2.1.el5_5.2.x86_64.rpm libuser-devel-0.54.7-2.1.el5_5.2.i386.rpm libuser-devel-0.54.7-2.1.el5_5.2.x86_64.rpm Red Hat Enterprise Linux (v. 5server): Source: i386: libuser-0.54.7-2.1.el5_5.2.i386.rpm libuser-debuginfo-0.54.7-2.1.el5_5.2.i386.rpm libuser-devel-0.54.7-2.1.el5_5.2.i386.rpm ia64: libuser-0.54.7-2.1.el5_5.2.ia64.rpm libuser-debuginfo-0.54.7-2.1.el5_5.2.ia64.rpm libuser-devel-0.54.7-2.1.el5_5.2.ia64.rpm ppc: libuser-0.54.7-2.1.el5_5.2.ppc.rpm libuser-0.54.7-2.1.el5_5.2.ppc64.rpm libuser-debuginfo-0.54.7-2.1.el5_5.2.ppc.rpm libuser-debuginfo-0.54.7-2.1.el5_5.2.ppc64.rpm libuser-devel-0.54.7-2.1.el5_5.2.ppc.rpm libuser-devel-0.54.7-2.1.el5_5.2.ppc64.rpm s390x: libuser-0.54.7-2.1.el5_5.2.s390.rpm libuser-0.54.7-2.1.el5_5.2.s390x.rpm libuser-debuginfo-0.54.7-2.1.el5_5.2.s390.rpm libuser-debuginfo-0.54.7-2.1.el5_5.2.s390x.rpm libuser-devel-0.54.7-2.1.el5_5.2.s390.rpm libuser-devel-0.54.7-2.1.el5_5.2.s390x.rpm x86_64: libuser-0.54.7-2.1.el5_5.2.i386.rpm libuser-0.54.7-2.1.el5_5.2.x86_64.rpm libuser-debuginfo-0.54.7-2.1.el5_5.2.i386.rpm libuser-debuginfo-0.54.7-2.1.el5_5.2.x86_64.rpm libuser-devel-0.54.7-2.1.el5_5.2.i386.rpm libuser-devel-0.54.7-2.1.el5_5.2.x86_64.rpm Red Hat Enterprise Linux Desktop (v. 6): Source: i386: libuser-0.56.13-4.el6_0.1.i686.rpm libuser-debuginfo-0.56.13-4.el6_0.1.i686.rpm libuser-python-0.56.13-4.el6_0.1.i686.rpm x86_64: libuser-0.56.13-4.el6_0.1.i686.rpm libuser-0.56.13-4.el6_0.1.x86_64.rpm libuser-debuginfo-0.56.13-4.el6_0.1.i686.rpm libuser-debuginfo-0.56.13-4.el6_0.1.x86_64.rpm libuser-python-0.56.13-4.el6_0.1.x86_64.rpm Red Hat Enterprise Linux Desktop Optional (v. 6): Source: i386: libuser-debuginfo-0.56.13-4.el6_0.1.i686.rpm libuser-devel-0.56.13-4.el6_0.1.i686.rpm x86_64: libuser-debuginfo-0.56.13-4.el6_0.1.i686.rpm libuser-debuginfo-0.56.13-4.el6_0.1.x86_64.rpm libuser-devel-0.56.13-4.el6_0.1.i686.rpm libuser-devel-0.56.13-4.el6_0.1.x86_64.rpm Red Hat Enterprise Linux HPC Node (v. 6): Source: x86_64: libuser-0.56.13-4.el6_0.1.x86_64.rpm libuser-debuginfo-0.56.13-4.el6_0.1.x86_64.rpm Red Hat Enterprise Linux HPC Node Optional (v.6): Source: x86_64: libuser-0.56.13-4.el6_0.1.i686.rpm libuser-debuginfo-0.56.13-4.el6_0.1.i686.rpm libuser-debuginfo-0.56.13-4.el6_0.1.x86_64.rpm libuser-devel-0.56.13-4.el6_0.1.i686.rpm libuser-devel-0.56.13-4.el6_0.1.x86_64.rpm libuser-python-0.56.13-4.el6_0.1.x86_64.rpm Red Hat Enterprise Linux Server (v. 6): Source: i386: libuser-0.56.13-4.el6_0.1.i686.rpm libuser-debuginfo-0.56.13-4.el6_0.1.i686.rpm libuser-python-0.56.13-4.el6_0.1.i686.rpm ppc64: libuser-0.56.13-4.el6_0.1.ppc.rpm libuser-0.56.13-4.el6_0.1.ppc64.rpm libuser-debuginfo-0.56.13-4.el6_0.1.ppc.rpm libuser-debuginfo-0.56.13-4.el6_0.1.ppc64.rpm libuser-python-0.56.13-4.el6_0.1.ppc64.rpm s390x: libuser-0.56.13-4.el6_0.1.s390.rpm libuser-0.56.13-4.el6_0.1.s390x.rpm libuser-debuginfo-0.56.13-4.el6_0.1.s390.rpm libuser-debuginfo-0.56.13-4.el6_0.1.s390x.rpm libuser-python-0.56.13-4.el6_0.1.s390x.rpm x86_64: libuser-0.56.13-4.el6_0.1.i686.rpm libuser-0.56.13-4.el6_0.1.x86_64.rpm libuser-debuginfo-0.56.13-4.el6_0.1.i686.rpm libuser-debuginfo-0.56.13-4.el6_0.1.x86_64.rpm libuser-python-0.56.13-4.el6_0.1.x86_64.rpm Red Hat Enterprise Linux Server Optional (v. 6): Source: i386: libuser-debuginfo-0.56.13-4.el6_0.1.i686.rpm libuser-devel-0.56.13-4.el6_0.1.i686.rpm ppc64: libuser-debuginfo-0.56.13-4.el6_0.1.ppc.rpm libuser-debuginfo-0.56.13-4.el6_0.1.ppc64.rpm libuser-devel-0.56.13-4.el6_0.1.ppc.rpm libuser-devel-0.56.13-4.el6_0.1.ppc64.rpm s390x: libuser-debuginfo-0.56.13-4.el6_0.1.s390.rpm libuser-debuginfo-0.56.13-4.el6_0.1.s390x.rpm libuser-devel-0.56.13-4.el6_0.1.s390.rpm libuser-devel-0.56.13-4.el6_0.1.s390x.rpm x86_64: libuser-debuginfo-0.56.13-4.el6_0.1.i686.rpm libuser-debuginfo-0.56.13-4.el6_0.1.x86_64.rpm libuser-devel-0.56.13-4.el6_0.1.i686.rpm libuser-devel-0.56.13-4.el6_0.1.x86_64.rpm Red Hat Enterprise Linux Workstation (v.6): Source: i386: libuser-0.56.13-4.el6_0.1.i686.rpm libuser-debuginfo-0.56.13-4.el6_0.1.i686.rpm libuser-python-0.56.13-4.el6_0.1.i686.rpm x86_64: libuser-0.56.13-4.el6_0.1.i686.rpm libuser-0.56.13-4.el6_0.1.x86_64.rpm libuser-debuginfo-0.56.13-4.el6_0.1.i686.rpm libuser-debuginfo-0.56.13-4.el6_0.1.x86_64.rpm libuser-python-0.56.13-4.el6_0.1.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 6): Source: i386: libuser-debuginfo-0.56.13-4.el6_0.1.i686.rpm libuser-devel-0.56.13-4.el6_0.1.i686.rpm x86_64: libuser-debuginfo-0.56.13-4.el6_0.1.i686.rpm libuser-debuginfo-0.56.13-4.el6_0.1.x86_64.rpm libuser-devel-0.56.13-4.el6_0.1.i686.rpm libuser-devel-0.56.13-4.el6_0.1.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package 7. References: https://access.redhat.com/security/cve/CVE-2011-0002 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2011 Red Hat, Inc. . Crucial security patch launched for libuser in Red Hat Enterprise Linux addresses LDAP authentication vulnerability. Key upgrade highlights.. libuser update, ldap authentication fix, red hat security. . LinuxSecurity.com Team

Calendar 2 Jan 20, 2011 Red Hat
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorymoderatepackage update

Red Hat Enterprise Linux 5 RHSA-2007:0040-01 Moderate NSS_LDAP Sec Issue

Updated nss_ldap packages that fix a security flaw are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team.. - --------------------------------------------------------------------- Red Hat Security Advisory Synopsis: Moderate: nss_ldap security update Advisory ID: RHSA-2006:0719-01 Advisory URL: https://access.redhat.com/errata/RHSA-2006:0719.html Issue date: 2006-11-15 Updated on: 2006-11-15 Product: Red Hat Enterprise Linux CVE Names: CVE-2006-5170 - ---------------------------------------------------------------------1. Summary: Updated nss_ldap packages that fix a security flaw are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. 2. Relevant releases/architectures: Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Enterprise Linux Desktop version 4 - i386, x86_64 Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64 3. Problem description: nss_ldap is a set of C library extensions that allow X.500 and LDAP directory servers to be used as primary sources for aliases, ethers, groups, hosts, networks, protocols, users, RPCs, services, and shadow passwords. A flaw was found in the way nss_ldap handled a PasswordPolicyResponse control sent by an LDAP server. If an LDAP server responded to an authentication request with a PasswordPolicyResponse control, it was possible for an application using nss_ldap to improperly authenticate certain users. (CVE-2006-5170) This flaw was only exploitable within applications which did not properly process nss_ldap error messages. Only xscreensaver is currently known to exhibit this behavior. All users of nss_ldap should upgrade to these updated packages, which contain abackported patch that resolves this issue. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date This will start an interactive process that will result in the appropriate RPMs being upgraded on your system. 5. Bug IDs fixed (http://bugzilla.redhat.com/): 207286 - CVE-2006-5170 When using LDAP for authentication, xscreensaver allows access if account locked out. 6. RPMs required: Red Hat Enterprise Linux AS version 4: SRPMS: 8fdad6a352014e9c95f6640896bf91dd nss_ldap-226-17.src.rpm i386: f2728f30aeb7e78623aae9265fae7369 nss_ldap-226-17.i386.rpm 93c6349f5bd8880e6be2af40e4edcda6 nss_ldap-debuginfo-226-17.i386.rpm ia64: f2728f30aeb7e78623aae9265fae7369 nss_ldap-226-17.i386.rpm a8cc0cd2d3bd8f2fa916b8f50506dbfa nss_ldap-226-17.ia64.rpm 93c6349f5bd8880e6be2af40e4edcda6 nss_ldap-debuginfo-226-17.i386.rpm 244bcce1538dc5537b860324b219ef3e nss_ldap-debuginfo-226-17.ia64.rpm ppc: 8fe0c5612ddac345de98d98daf3b1f47 nss_ldap-226-17.ppc.rpm fef89f4ddf2879df5d8b3cad563610dc nss_ldap-226-17.ppc64.rpm 31738b28daabe162736517dcee208011 nss_ldap-debuginfo-226-17.ppc.rpm 88cc4161fb0d1be7e5008a57dc9d614f nss_ldap-debuginfo-226-17.ppc64.rpm s390: 07f25516c0a7c24c8119f440f4c1fdf0 nss_ldap-226-17.s390.rpm aebc40eeef7e7277342dc5c7ae6e8a39 nss_ldap-debuginfo-226-17.s390.rpm s390x: 07f25516c0a7c24c8119f440f4c1fdf0 nss_ldap-226-17.s390.rpm e193a588cce944b5fa2a3feb01737b61 nss_ldap-226-17.s390x.rpm aebc40eeef7e7277342dc5c7ae6e8a39 nss_ldap-debuginfo-226-17.s390.rpm 03545e67b2137ebd7a27162b009a8f26 nss_ldap-debuginfo-226-17.s390x.rpm x86_64: f2728f30aeb7e78623aae9265fae7369 nss_ldap-226-17.i386.rpm 804dba9f8720306da14615b1f353e31d nss_ldap-226-17.x86_64.rpm 93c6349f5bd8880e6be2af40e4edcda6 nss_ldap-debuginfo-226-17.i386.rpm e4fd474865ccdfd5907047d6bd0ccdac nss_ldap-debuginfo-226-17.x86_64.rpm Red Hat Enterprise Linux Desktop version 4: SRPMS: 8fdad6a352014e9c95f6640896bf91dd nss_ldap-226-17.src.rpm i386: f2728f30aeb7e78623aae9265fae7369 nss_ldap-226-17.i386.rpm 93c6349f5bd8880e6be2af40e4edcda6 nss_ldap-debuginfo-226-17.i386.rpm x86_64: f2728f30aeb7e78623aae9265fae7369 nss_ldap-226-17.i386.rpm 804dba9f8720306da14615b1f353e31d nss_ldap-226-17.x86_64.rpm 93c6349f5bd8880e6be2af40e4edcda6 nss_ldap-debuginfo-226-17.i386.rpm e4fd474865ccdfd5907047d6bd0ccdac nss_ldap-debuginfo-226-17.x86_64.rpm Red Hat Enterprise Linux ES version 4: SRPMS: 8fdad6a352014e9c95f6640896bf91dd nss_ldap-226-17.src.rpm i386: f2728f30aeb7e78623aae9265fae7369 nss_ldap-226-17.i386.rpm 93c6349f5bd8880e6be2af40e4edcda6 nss_ldap-debuginfo-226-17.i386.rpm ia64: f2728f30aeb7e78623aae9265fae7369 nss_ldap-226-17.i386.rpm a8cc0cd2d3bd8f2fa916b8f50506dbfa nss_ldap-226-17.ia64.rpm 93c6349f5bd8880e6be2af40e4edcda6 nss_ldap-debuginfo-226-17.i386.rpm 244bcce1538dc5537b860324b219ef3e nss_ldap-debuginfo-226-17.ia64.rpm x86_64: f2728f30aeb7e78623aae9265fae7369 nss_ldap-226-17.i386.rpm 804dba9f8720306da14615b1f353e31d nss_ldap-226-17.x86_64.rpm 93c6349f5bd8880e6be2af40e4edcda6 nss_ldap-debuginfo-226-17.i386.rpm e4fd474865ccdfd5907047d6bd0ccdac nss_ldap-debuginfo-226-17.x86_64.rpm Red Hat Enterprise Linux WS version 4: SRPMS: 8fdad6a352014e9c95f6640896bf91dd nss_ldap-226-17.src.rpm i386: f2728f30aeb7e78623aae9265fae7369 nss_ldap-226-17.i386.rpm 93c6349f5bd8880e6be2af40e4edcda6 nss_ldap-debuginfo-226-17.i386.rpm ia64: f2728f30aeb7e78623aae9265fae7369 nss_ldap-226-17.i386.rpm a8cc0cd2d3bd8f2fa916b8f50506dbfa nss_ldap-226-17.ia64.rpm 93c6349f5bd8880e6be2af40e4edcda6 nss_ldap-debuginfo-226-17.i386.rpm 244bcce1538dc5537b860324b219ef3e nss_ldap-debuginfo-226-17.ia64.rpm x86_64: f2728f30aeb7e78623aae9265fae7369 nss_ldap-226-17.i386.rpm 804dba9f8720306da14615b1f353e31d nss_ldap-226-17.x86_64.rpm 93c6349f5bd8880e6be2af40e4edcda6 nss_ldap-debuginfo-226-17.i386.rpm e4fd474865ccdfd5907047d6bd0ccdac nss_ldap-debuginfo-226-17.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7. References: https://www.cve.org/CVERecord?id=CVE-2006-5170 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2006 Red Hat, Inc. . The nss_ldap update from Red Hat addresses a significant security vulnerability concerning user authentication. Users are urged to take prompt action.. Red Hat Enterprise, Linux Patches, Security Update, NSS LDAP, Authentication Issues. . LinuxSecurity.com Team

Calendar 2 Nov 15, 2006 Red Hat
Banner 2 1028x280 1708121730 1 1771599631
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here