Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -2 articles for you...
87
security advisorycriticalsoftware updateDebian: DSA-5234-1 Critical: Fish Shell Arbitrary Code Execution
An arbitrary code execution vulnerability was disovered in fish, a command line shell. When using the default configuraton of fish, changing to a directory automatically ran `git` commands in order to display information about the current repository in the prompt. Such . - ------------------------------------------------------------------------- Debian Security Advisory DSA-5234-1
Sep 21, 2022
•Critical
Debian
197
security advisoryupdatecriticalDebian 9 DLA-2794-1 Critical: PHP 7.0 Local Escalation Threat
An out-of-bounds read and write flaw was discovered in the PHP-FPM code, which could result in escalation of privileges from local unprivileged user to the root user. . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-2794-1
Oct 27, 2021
•Critical
Debian LTS
198
security advisorycriticalarbitrary code executionArch Linux 202104-1 Critical Advisory: GitLab Code Execution Risk
The package gitlab before version 13.10.3-1 is vulnerable to multiple issues including arbitrary code execution and incorrect calculation. . Arch Linux Security Advisory ASA-202104-1 ======================================== Severity: Critical Date : 2021-04-29 CVE-ID : CVE-2021-22205 CVE-2021-28965 Package : gitlab Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-1822 Summary ====== The package gitlab before version 13.10.3-1 is vulnerable to multiple issues including arbitrary code execution and incorrect calculation. Resolution ========= Upgrade to 13.10.3-1. # pacman -Syu "gitlab> =13.10.3-1" The problems have been fixed upstream in version 13.10.3. Workaround ========= None. Description ========== - CVE-2021-22205 (arbitrary code execution) An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.9. GitLab was not properly validating image files that is passed to a file parser which resulted in a remote command execution. The issue is fixed in GitLab versions 13.10.3, 13.9.6 and 13.8.8. - CVE-2021-28965 (incorrect calculation) When parsing and serializing a crafted XML document, the REXML gem (including the one bundled with Ruby) can create a wrong XML document whose structure is different from the original one. The impact of this issue highly depends on context, but it may lead to a vulnerability in some programs that are using REXML. The issue is fixed in version 3.2.5 of the REXML gem. Impact ===== An attacker can crash or execute arbitrary code on the affected server by providing a maliciously crafted XML or imagefile. References ========= https://about.gitlab.com/releases/2021/04/14/security-release-gitlab-13-10-3-released/ https://about.gitlab.com/releases/2021/04/14/security-release-gitlab-13-10-3-released/#Remote-code-execution-when-uploading-specially-crafted-image-files https://gitlab.com/gitlab-org/gitlab/-/issues/327121 https://hackerone.com/reports/1154542 https://www.ruby-lang.org/en/news/2021/04/05/xml-round-trip-vulnerability-in-rexml-cve-2021-28965/ https://hackerone.com/reports/1104077 https://github.com/ruby/rexml/commit/a659c63e37414506dfb0d4655e031bb7a2e73fc8 https://github.com/ruby/rexml/commit/2fe62e29094d95921d7e19abbd2e26b23d78dc5b https://github.com/ruby/rexml/commit/6a250d2cd1194c2be72becbdd9c3e770aa16e752 https://github.com/ruby/rexml/commit/f7bab8937513b1403cea5aff874cbf32fd5e8551 https://github.com/ruby/rexml/commit/f9d88e4948b4a43294c25dc0edb16815bd9d8618 https://github.com/ruby/rexml/commit/9b311e59ae05749e082eb6bbefa1cb620d1a786e https://github.com/ruby/rexml/commit/3c137eb119550874b2b3e27d12b733ca67033377 https://security.archlinux.org/CVE-2021-22205 https://security.archlinux.org/CVE-2021-28965 . Severe flaws identified in GitLab prior to 13.10.3-1 pose risks; upgrading is advised for safeguarding.. GitLab Vulnerability, Arch Linux Advisory, Code Execution Risks. . Severity: Critical. LinuxSecurity.com Team
Apr 29, 2021
•Critical
ArchLinux
89
security advisoryfedorasoftware updateFedora 26: Security Advisory For Synfigstudio Code Flaws
Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagick/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-8f27031c8f 2017-09-19 02:41:35.415951 --------------------------------------------------------------------------------Name : synfigstudio Product : Fedora 26 Version : 1.2.0 Release : 5.fc26 URL : https://www.synfig.org/ Summary : Vector-based 2D animation studio Description : Synfig Animation Studio is a powerful, industrial-strength vector-based 2D animation software, designed from the ground-up for producing feature-film quality animation with fewer people and resources. It is designed to be capable of producing feature-film quality animation. It eliminates the need for tweening, preventing the need to hand-draw each frame. Synfig features spatial and temporal resolution independence (sharp and smoothat any resolution or framerate), high dynamic range images, and a flexible plugin system. This package contains the GUI-based animation studio. --------------------------------------------------------------------------------Update Information: Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagick/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates. --------------------------------------------------------------------------------References: [ 1 ] Bug #1471837 - CVE-2017-11352 ImageMagick: Improper EOF handling in coders/rle.c can trigger crash (Incomplete fix for CVE-2017-9144) [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1471837 [ 2 ] Bug #1471122 - CVE-2017-10995 ImageMagick: Out-of-bounds heap read in mng_get_long function [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1471122 [ 3 ] Bug #1470670 - CVE-2017-11170 ImageMagick: Memory leak in ReadTGAImage function when processing TGA or VST file [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1470670 [ 4 ] Bug #1465064 - CVE-2017-7941 CVE-2017-7942 CVE-2017-7943 CVE-2017-8352 ImageMagick: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1465064 [ 5 ] Bug #1455602 - CVE-2017-9141 CVE-2017-9142 CVE-2017-9143 CVE-2017-9144 ImageMagick: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1455602 [ 6 ] Bug #1453125 - CVE-2017-9098 ImageMagick: use of uninitialized memory in RLE decoder [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1453125 [ 7 ] Bug #1413898 - CVE-2016-9556 CVE-2016-9559 ImageMagick: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1413898 [ 8 ] Bug #1408404 - CVE-2016-8707 ImageMagick: OOB write in convert utility when deflating TIFF files [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1408404 [ 9 ] Bug #1483575 - CVE-2017-12587 ImageMagick: Resource exhaustion in ReadPWPImage function in coders\pwp.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1483575 [ 10 ] Bug #1299275 - ImageMagick-7.0.6-9 is available https://bugzilla.redhat.com/show_bug.cgi?id=1299275 [ 11 ] Bug #1483132 - CVE-2017-12433 CVE-2017-12434 CVE-2017-12435 ImageMagick: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1483132 [ 12 ] Bug #1483117 - CVE-2017-12640 CVE-2017-12641 CVE-2017-12642 CVE-2017-12643 CVE-2017-12644 CVE-2017-12654 CVE-2017-12662 CVE-2017-12663 CVE-2017-12664 CVE-2017-12665 CVE-2017-12666 ImageMagick: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1483117 [ 13 ] Bug #1482655 - CVE-2017-12427 CVE-2017-12428 CVE-2017-12429 CVE-2017-12430 CVE-2017-12432 ImageMagick: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1482655 [ 14 ] Bug #1482626 - CVE-2017-12418 ImageMagick: Memory leaks in the parse8BIMW and format8BIM functions in coders/meta.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1482626 [ 15 ] Bug #1350462 - CVE-2016-5841 CVE-2016-5842 imagemagick: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1350462 [ 16 ] Bug #1361494 - CVE-2016-6491 ImageMagick: Out-of-bounds read in CopyMagickMemory [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1361494 [ 17 ] Bug #1378790 - CVE-2014-9907 CVE-2015-8957 CVE-2015-8958 CVE-2015-8959 CVE-2016-6823 CVE-2016-7101 CVE-2016-7513 CVE-2016-7514 CVE-2016-7515 CVE-2016-7516 CVE-2016-7517 CVE-2016-7518 CVE-2016-7519 CVE-2016-7520 CVE-2016-7521 ... ImageMagick: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1378790 [ 18 ] Bug #1361578 - CVE-2016-5010 ImageMagick: Out-of-bounds read when processing crafted tiff file [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1361578 [ 19 ] Bug #1477566 - CVE-2017-12140 ImageMagick: integer signedness error in ReadDCMImage function [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1477566 [ 20 ] Bug #1477070 - CVE-2017-11724 CVE-2017-11750 CVE-2017-11751 CVE-2017-11752 CVE-2017-11753 CVE-2017-11754 CVE-2017-11755 ImageMagick: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1477070 [ 21 ] Bug #1475486 - CVE-2017-11644 ImageMagick: Memory-Leak in ReadMATImage() coders/mat.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1475486 [ 22 ] Bug #1475471 - CVE-2017-11639 ImageMagick: heap-based buffer over-read in the WriteCIPImage() function in coders/cip.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1475471 [ 23 ] Bug #1475464 - CVE-2017-11640 ImageMagick: NULL pointer dereference in WritePTIFImage() in coders/tiff.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1475464 [ 24 ] Bug #1474846 - CVE-2017-11523 ImageMagick: Endless loop in ReadTXTImage function in coders/txt.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1474846 [ 25 ] Bug #1474420 - CVE-2017-11446 CVE-2017-11478 ImageMagick: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1474420 [ 26 ] Bug #1473848 - CVE-2017-11360 ImageMagick: Resource exhaustion in ReadRLEImage function [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1473848 [ 27 ] Bug #1473825 - CVE-2017-11188 ImageMagick: Resource exhaustion in ReadDPXImage function in coders\dpx.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1473825 [ 28 ] Bug #1473802 - CVE-2017-11448 ImageMagick: Info leak from from uninitialized memory in ReadJPEGImage function [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1473802 [ 29 ] Bug #1473799 - CVE-2017-11447 ImageMagick: Memory leak in ReadSCREENSHOTImage function in coders/screenshot.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1473799 [ 30 ] Bug #1473797 - CVE-2017-11449 ImageMagick: coders/mpc.c don't validade blob sizes of stdin image input [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1473797 [ 31 ] Bug #1473775 - CVE-2017-11450 ImageMagick: Too short JPEG data causes denial of service in coders/jpeg.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1473775 [ 32 ] Bug #1473758 - CVE-2017-11141 ImageMagick: Memory exhaustion in ReadMATImage function in coders\mat.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1473758 [ 33 ] Bug #1473719 - CVE-2017-10928 ImageMagick: heap-based buffer over-read in the GetNextToken function [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1473719 [ 34 ] Bug #1410515 - ImageMagick: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1410515 [ 35 ] Bug #1479313 - synfigstudio doesn't start https://bugzilla.redhat.com/show_bug.cgi?id=1479313 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade synfigstudio' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
Sep 19, 2017
•Critical
Fedora
98
security advisoryred hatdirectory traversalRed Hat: RHSA-2016-0456-01 Important: ActionView Code Flaws
Updated rh-ror41-rubygem-actionview packages that fix two security issues are now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Important: rh-ror41 security update Advisory ID: RHSA-2016:0456-01 Product: Red Hat Software Collections Advisory URL: https://access.redhat.com/errata/RHSA-2016:0456.html Issue date: 2016-03-15 CVE Names: CVE-2016-2097 CVE-2016-2098 ==================================================================== 1. Summary: Updated rh-ror41-rubygem-actionview packages that fix two security issues are now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6) - noarch Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7) - noarch Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.6) - noarch Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7) - noarch Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.1) - noarch Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.2) - noarch Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6) - noarch Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7) - noarch 3. Description: The rh-ror41 collection provides Ruby on Rails version 4.1. Ruby on Rails is a model-view-controller (MVC)framework for web application development. The following issues were corrected in rubygem-actionview: A directory traversal flaw was found in the way the Action View component searched for templates for rendering. If an application passed untrusted input to the 'render' method, a remote, unauthenticated attacker could use this flaw to render unexpected files and, possibly, execute arbitrary code. (CVE-2016-2097) A code injection flaw was found in the way the Action View component searched for templates for rendering. If an application passed untrusted input to the 'render' method, a remote, unauthenticated attacker could use this flaw to execute arbitrary code. (CVE-2016-2098) Red Hat would like to thank the Ruby on Rails project for reporting these issues. Upstream acknowledges Jyoti Singh and Tobias Kraze (makandra) as original reporters of CVE-2016-2097, and Tobias Kraze (makandra) and joernchen (Phenoelit) as original reporters of CVE-2016-2098. All rh-ror41 collection rubygem-actionview packages users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. All running applications using the rh-ror41 collection must be restarted for this update to take effect. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1310043 - CVE-2016-2097 rubygem-actionview, rubygem-actionpack: directory traversal in Action View, incomplete CVE-2016-0752 fix 1310054 - CVE-2016-2098 rubygem-actionview, rubygem-actionpack: code injection vulnerability in Action View 6. Package List: Red Hat Software Collections for Red Hat Enterprise Linux Server (v.6): Source: rh-ror41-rubygem-actionpack-4.1.5-4.el6.src.rpm rh-ror41-rubygem-actionview-4.1.5-5.el6.src.rpm noarch: rh-ror41-rubygem-actionpack-4.1.5-4.el6.noarch.rpm rh-ror41-rubygem-actionpack-doc-4.1.5-4.el6.noarch.rpm rh-ror41-rubygem-actionview-4.1.5-5.el6.noarch.rpm rh-ror41-rubygem-actionview-doc-4.1.5-5.el6.noarch.rpm Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.6): Source: rh-ror41-rubygem-actionpack-4.1.5-4.el6.src.rpm rh-ror41-rubygem-actionview-4.1.5-5.el6.src.rpm noarch: rh-ror41-rubygem-actionpack-4.1.5-4.el6.noarch.rpm rh-ror41-rubygem-actionpack-doc-4.1.5-4.el6.noarch.rpm rh-ror41-rubygem-actionview-4.1.5-5.el6.noarch.rpm rh-ror41-rubygem-actionview-doc-4.1.5-5.el6.noarch.rpm Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7): Source: rh-ror41-rubygem-actionpack-4.1.5-4.el6.src.rpm rh-ror41-rubygem-actionview-4.1.5-5.el6.src.rpm noarch: rh-ror41-rubygem-actionpack-4.1.5-4.el6.noarch.rpm rh-ror41-rubygem-actionpack-doc-4.1.5-4.el6.noarch.rpm rh-ror41-rubygem-actionview-4.1.5-5.el6.noarch.rpm rh-ror41-rubygem-actionview-doc-4.1.5-5.el6.noarch.rpm Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6): Source: rh-ror41-rubygem-actionpack-4.1.5-4.el6.src.rpm rh-ror41-rubygem-actionview-4.1.5-5.el6.src.rpm noarch: rh-ror41-rubygem-actionpack-4.1.5-4.el6.noarch.rpm rh-ror41-rubygem-actionpack-doc-4.1.5-4.el6.noarch.rpm rh-ror41-rubygem-actionview-4.1.5-5.el6.noarch.rpm rh-ror41-rubygem-actionview-doc-4.1.5-5.el6.noarch.rpm Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7): Source: rh-ror41-rubygem-actionpack-4.1.5-4.el7.src.rpm rh-ror41-rubygem-actionview-4.1.5-5.el7.src.rpm noarch: rh-ror41-rubygem-actionpack-4.1.5-4.el7.noarch.rpm rh-ror41-rubygem-actionpack-doc-4.1.5-4.el7.noarch.rpm rh-ror41-rubygem-actionview-4.1.5-5.el7.noarch.rpm rh-ror41-rubygem-actionview-doc-4.1.5-5.el7.noarch.rpm Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v.7.1): Source: rh-ror41-rubygem-actionpack-4.1.5-4.el7.src.rpm rh-ror41-rubygem-actionview-4.1.5-5.el7.src.rpm noarch: rh-ror41-rubygem-actionpack-4.1.5-4.el7.noarch.rpm rh-ror41-rubygem-actionpack-doc-4.1.5-4.el7.noarch.rpm rh-ror41-rubygem-actionview-4.1.5-5.el7.noarch.rpm rh-ror41-rubygem-actionview-doc-4.1.5-5.el7.noarch.rpm Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.2): Source: rh-ror41-rubygem-actionpack-4.1.5-4.el7.src.rpm rh-ror41-rubygem-actionview-4.1.5-5.el7.src.rpm noarch: rh-ror41-rubygem-actionpack-4.1.5-4.el7.noarch.rpm rh-ror41-rubygem-actionpack-doc-4.1.5-4.el7.noarch.rpm rh-ror41-rubygem-actionview-4.1.5-5.el7.noarch.rpm rh-ror41-rubygem-actionview-doc-4.1.5-5.el7.noarch.rpm Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7): Source: rh-ror41-rubygem-actionpack-4.1.5-4.el7.src.rpm rh-ror41-rubygem-actionview-4.1.5-5.el7.src.rpm noarch: rh-ror41-rubygem-actionpack-4.1.5-4.el7.noarch.rpm rh-ror41-rubygem-actionpack-doc-4.1.5-4.el7.noarch.rpm rh-ror41-rubygem-actionview-4.1.5-5.el7.noarch.rpm rh-ror41-rubygem-actionview-doc-4.1.5-5.el7.noarch.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2016-2097 https://access.redhat.com/security/cve/CVE-2016-2098 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2016 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iD8DBQFW6HnzXlSAg2UNWIIRAgxMAKCR7+/qPcNAVkC4vb58Ju9UWsErmwCeMhcI ytvB5H2ZlgjleYDrUnkCF+U=kOmc -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list
Mar 15, 2016
•Important
Red Hat
98
security advisorysecurity updateRed HatRed Hat: 2014:1051-01 Critical: Flash-Plugin Code Flaws Advisory
An updated Adobe Flash Player package that fixes multiple security issues is now available for Red Hat Enterprise Linux 5 and 6 Supplementary. Red Hat Product Security has rated this update as having Critical security [More...]. ==================================================================== Red Hat Security Advisory Synopsis: Critical: flash-plugin security update Advisory ID: RHSA-2014:1051-01 Product: Red Hat Enterprise Linux Supplementary Advisory URL: https://access.redhat.com/errata/RHSA-2014:1051.html Issue date: 2014-08-13 CVE Names: CVE-2014-0538 CVE-2014-0540 CVE-2014-0541 CVE-2014-0542 CVE-2014-0543 CVE-2014-0544 CVE-2014-0545 ==================================================================== 1. Summary: An updated Adobe Flash Player package that fixes multiple security issues is now available for Red Hat Enterprise Linux 5 and 6 Supplementary. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Desktop Supplementary (v. 5) - i386, x86_64 Red Hat Enterprise Linux Desktop Supplementary (v. 6) - i386, x86_64 Red Hat Enterprise Linux Server Supplementary (v. 5) - i386, x86_64 Red Hat Enterprise Linux Server Supplementary (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Supplementary (v. 6) - i386, x86_64 3. Description: The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. This update fixes multiple vulnerabilities in Adobe Flash Player. These vulnerabilities are detailed in the Adobe Security Bulletin APSB14-18, listed in the References section. Multiple flaws were found in the way flash-plugin displayed certain SWF content. An attacker could use these flaws tocreate a specially crafted SWF file that would cause flash-plugin to crash or, potentially, execute arbitrary code when the victim loaded a page containing the malicious SWF content. (CVE-2014-0538, CVE-2014-0540, CVE-2014-0541, CVE-2014-0542, CVE-2014-0543, CVE-2014-0544, CVE-2014-0545) All users of Adobe Flash Player should install this updated package, which upgrades Flash Player to version 11.2.202.400. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1129417 - CVE-2014-0538 CVE-2014-0540 CVE-2014-0541 CVE-2014-0542 CVE-2014-0543 CVE-2014-0544 CVE-2014-0545 flash-plugin: multiple code execution or security bypass flaws (APSB14-18) 6. Package List: Red Hat Enterprise Linux Desktop Supplementary (v. 5): i386: flash-plugin-11.2.202.400-1.el5.i386.rpm x86_64: flash-plugin-11.2.202.400-1.el5.i386.rpm Red Hat Enterprise Linux Server Supplementary (v. 5): i386: flash-plugin-11.2.202.400-1.el5.i386.rpm x86_64: flash-plugin-11.2.202.400-1.el5.i386.rpm Red Hat Enterprise Linux Desktop Supplementary (v. 6): i386: flash-plugin-11.2.202.400-1.el6.i686.rpm x86_64: flash-plugin-11.2.202.400-1.el6.i686.rpm Red Hat Enterprise Linux Server Supplementary (v. 6): i386: flash-plugin-11.2.202.400-1.el6.i686.rpm x86_64: flash-plugin-11.2.202.400-1.el6.i686.rpm Red Hat Enterprise Linux Workstation Supplementary (v. 6): i386: flash-plugin-11.2.202.400-1.el6.i686.rpm x86_64: flash-plugin-11.2.202.400-1.el6.i686.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package 7.References: https://access.redhat.com/security/cve/CVE-2014-0538 https://access.redhat.com/security/cve/CVE-2014-0540 https://access.redhat.com/security/cve/CVE-2014-0541 https://access.redhat.com/security/cve/CVE-2014-0542 https://access.redhat.com/security/cve/CVE-2014-0543 https://access.redhat.com/security/cve/CVE-2014-0544 https://access.redhat.com/security/cve/CVE-2014-0545 https://access.redhat.com/security/updates/classification/#critical 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2014 Red Hat, Inc. . Urgent notice for critical security patches regarding flash-plugin on Red Hat Enterprise Linux. Immediate installation required to prevent vulnerabilities!. Red Hat Advisory, Flash Plugin Issues, Critical Security Updates. . Severity: Critical. LinuxSecurity.com Team
Aug 13, 2014
•Critical
Red Hat
98
security advisoryRed Hatbug fixRed Hat Enterprise Linux 3: RHSA-2004:687-01 Moderate: PHP Code Flaws
Updated php packages that fix various security issues and bugs are now available for Red Hat Enterprise Linux 3.. --------------------------------------------------------------------- Red Hat Security Advisory Synopsis: Updated php packages fix security issues and bugs Advisory ID: RHSA-2004:687-01 Advisory URL: https://access.redhat.com/errata/RHSA-2004:687.html Issue date: 2004-12-21 Updated on: 2004-12-21 Product: Red Hat Enterprise Linux Keywords: PHP Obsoletes: RHBA-2004:272 CVE Names: CAN-2004-0958 CAN-2004-0959 CAN-2004-1018 CAN-2004-1019 CAN-2004-1065 ---------------------------------------------------------------------1. Summary: Updated php packages that fix various security issues and bugs are now available for Red Hat Enterprise Linux 3. 2. Relevant releases/architectures: Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Desktop version 3 - i386, x86_64 Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64 3. Problem description: PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web server. Flaws including possible information disclosure, double free, and negative reference index array underflow were found in the deserialization code of PHP. PHP applications may use the unserialize function on untrusted user data, which could allow a remote attacker to gain access to memory or potentially execute arbitrary code. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-1019 to this issue. A flaw in the exif extension of PHP was found which lead to a stack overflow. An attacker could create a carefully crafted image file in such a way that if parsed by a PHP script using the exif extension it could cause a crash or potentially execute arbitrary code. The Common Vulnerabilities and Exposuresproject (cve.mitre.org) has assigned the name CAN-2004-1065 to this issue. An information disclosure bug was discovered in the parsing of "GPC" variables in PHP (query strings or cookies, and POST form data). If particular scripts used the values of the GPC variables, portions of the memory space of an httpd child process could be revealed to the client. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0958 to this issue. A file access bug was discovered in the parsing of "multipart/form-data" forms, used by PHP scripts which allow file uploads. In particular configurations, some scripts could allow a malicious client to upload files to an arbitrary directory where the "apache" user has write access. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0959 to this issue. Flaws were found in shmop_write, pack, and unpack PHP functions. These functions are not normally passed user supplied data, so would require a malicious PHP script to be exploited. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-1018 to desired RPMs. Please note that this update is also available via Red Hat Network. Many people find this an easier way to apply updates. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date This will start an interactive process that will result in the appropriate RPMs being upgraded on your system. If up2date fails to connect to Red Hat Network due to SSL Certificate Errors, you need to install a version of the up2date client with an updated certificate. The latest version of up2date is available from the Red Hat FTP site and may also be downloaded directly from the RHN website: https://access.redhat.com 5. Bug IDs fixed (http://bugzilla.redhat.com/): 131412 - Include process control extension, pcntl 131562 - phpize is broken on x86_64 132003 - fopen doesn't work across remoteconnections while under Apache 134971 - CAN-2004-0958 PHP variable parsing 134975 - CAN-2004-0959 PHP arbitrary file creation 141132 - CAN-2004-1019 information disclosure issues 142056 - CAN-2004-1065 ext/exif/exif.c - exif_read_data() overflow on long sectionname 6. RPMs required: Red Hat Enterprise Linux AS version 3: SRPMS: 818b43822465cab8f3b8b937883e83e8 php-4.3.2-19.ent.src.rpm i386: 7596bef3a34d0e536bf7d928d4e4fe72 php-4.3.2-19.ent.i386.rpm 7d1621e13be8c768862c7046bcdf6091 php-devel-4.3.2-19.ent.i386.rpm daaa408d09844d147921c64cadef6ef6 php-imap-4.3.2-19.ent.i386.rpm c2cde45149b04ff57cdb992ee238b557 php-ldap-4.3.2-19.ent.i386.rpm ebf63e54f3db6155fc3849002d6e885b php-mysql-4.3.2-19.ent.i386.rpm c21f48ea272bdd76d3c3029d20aace8e php-odbc-4.3.2-19.ent.i386.rpm d9194ed4e9a76384769f4b4912088581 php-pgsql-4.3.2-19.ent.i386.rpm ia64: 1bc4b9a171005daa9949aa7ce6867819 php-4.3.2-19.ent.ia64.rpm fae7fb7a8293664d432045261317afa4 php-devel-4.3.2-19.ent.ia64.rpm 6cb195cabe3d74e815991f5a7e3e8ea1 php-imap-4.3.2-19.ent.ia64.rpm 3f3a407d55367e36d8ebe092c4350e13 php-ldap-4.3.2-19.ent.ia64.rpm 308e1ea8b4e0719ee72040238b70cdbf php-mysql-4.3.2-19.ent.ia64.rpm eb92dbb86507aced5740249b9e5b68a7 php-odbc-4.3.2-19.ent.ia64.rpm 05e2049de5a83c0623948393e456e40c php-pgsql-4.3.2-19.ent.ia64.rpm ppc: 0d40de309a5aa22aa60149deb559c53f php-4.3.2-19.ent.ppc.rpm 054f2b454915f3047e767d5252b6aec7 php-devel-4.3.2-19.ent.ppc.rpm 26721fd754dfad6e073fccc547658f65 php-imap-4.3.2-19.ent.ppc.rpm 623869a31a37e12b272540ddf43f861e php-ldap-4.3.2-19.ent.ppc.rpm c33a16d7156099928a6dea43f8c061df php-mysql-4.3.2-19.ent.ppc.rpm 9ede40b3ff4b81e12a0cb40716f34be2 php-odbc-4.3.2-19.ent.ppc.rpm a6478adc86f7db4dc024882e87867f8f php-pgsql-4.3.2-19.ent.ppc.rpm s390: i386: 7596bef3a34d0e536bf7d928d4e4fe72 php-4.3.2-19.ent.i386.rpm 7d1621e13be8c768862c7046bcdf6091 php-devel-4.3.2-19.ent.i386.rpm daaa408d09844d147921c64cadef6ef6 php-imap-4.3.2-19.ent.i386.rpm c2cde45149b04ff57cdb992ee238b557 php-ldap-4.3.2-19.ent.i386.rpm ebf63e54f3db6155fc3849002d6e885b php-mysql-4.3.2-19.ent.i386.rpm c21f48ea272bdd76d3c3029d20aace8e php-odbc-4.3.2-19.ent.i386.rpm d9194ed4e9a76384769f4b4912088581 php-pgsql-4.3.2-19.ent.i386.rpm x86_64: 9eed133c39c848b5b9cf30bd0f0e41a3 php-4.3.2-19.ent.x86_64.rpm 31b3d22d09049c688e05c19b91a5343d php-devel-4.3.2-19.ent.x86_64.rpm 57910471f09de36603c2b6b89bf9a079 php-imap-4.3.2-19.ent.x86_64.rpm 851b437d1adbdcf8a7e4f9dd0f47ccbd php-ldap-4.3.2-19.ent.x86_64.rpm a4db3d9d4572d8c9fd3cf88d370d9196 php-mysql-4.3.2-19.ent.x86_64.rpm a7aef84e839ee4339e8307256a1da32d php-odbc-4.3.2-19.ent.x86_64.rpm 11e8e9e2d0cc9a2fba2b6c01787a8752 php-pgsql-4.3.2-19.ent.x86_64.rpm Red Hat Enterprise Linux ES version 3: SRPMS: 818b43822465cab8f3b8b937883e83e8 php-4.3.2-19.ent.src.rpm i386: 7596bef3a34d0e536bf7d928d4e4fe72 php-4.3.2-19.ent.i386.rpm 7d1621e13be8c768862c7046bcdf6091 php-devel-4.3.2-19.ent.i386.rpm daaa408d09844d147921c64cadef6ef6 php-imap-4.3.2-19.ent.i386.rpm c2cde45149b04ff57cdb992ee238b557 php-ldap-4.3.2-19.ent.i386.rpm ebf63e54f3db6155fc3849002d6e885b php-mysql-4.3.2-19.ent.i386.rpm c21f48ea272bdd76d3c3029d20aace8e php-odbc-4.3.2-19.ent.i386.rpm d9194ed4e9a76384769f4b4912088581 php-pgsql-4.3.2-19.ent.i386.rpm ia64: 1bc4b9a171005daa9949aa7ce6867819 php-4.3.2-19.ent.ia64.rpm fae7fb7a8293664d432045261317afa4 php-devel-4.3.2-19.ent.ia64.rpm 6cb195cabe3d74e815991f5a7e3e8ea1 php-imap-4.3.2-19.ent.ia64.rpm 3f3a407d55367e36d8ebe092c4350e13 php-ldap-4.3.2-19.ent.ia64.rpm 308e1ea8b4e0719ee72040238b70cdbf php-mysql-4.3.2-19.ent.ia64.rpm eb92dbb86507aced5740249b9e5b68a7 php-odbc-4.3.2-19.ent.ia64.rpm 05e2049de5a83c0623948393e456e40c php-pgsql-4.3.2-19.ent.ia64.rpm x86_64: 9eed133c39c848b5b9cf30bd0f0e41a3 php-4.3.2-19.ent.x86_64.rpm 31b3d22d09049c688e05c19b91a5343d php-devel-4.3.2-19.ent.x86_64.rpm 57910471f09de36603c2b6b89bf9a079 php-imap-4.3.2-19.ent.x86_64.rpm 851b437d1adbdcf8a7e4f9dd0f47ccbd php-ldap-4.3.2-19.ent.x86_64.rpm a4db3d9d4572d8c9fd3cf88d370d9196 php-mysql-4.3.2-19.ent.x86_64.rpm a7aef84e839ee4339e8307256a1da32d php-odbc-4.3.2-19.ent.x86_64.rpm 11e8e9e2d0cc9a2fba2b6c01787a8752 php-pgsql-4.3.2-19.ent.x86_64.rpm Red Hat Enterprise Linux WS version 3: SRPMS: 818b43822465cab8f3b8b937883e83e8 php-4.3.2-19.ent.src.rpm i386: 7596bef3a34d0e536bf7d928d4e4fe72 php-4.3.2-19.ent.i386.rpm 7d1621e13be8c768862c7046bcdf6091 php-devel-4.3.2-19.ent.i386.rpm daaa408d09844d147921c64cadef6ef6 php-imap-4.3.2-19.ent.i386.rpm c2cde45149b04ff57cdb992ee238b557 php-ldap-4.3.2-19.ent.i386.rpm ebf63e54f3db6155fc3849002d6e885b php-mysql-4.3.2-19.ent.i386.rpm c21f48ea272bdd76d3c3029d20aace8e php-odbc-4.3.2-19.ent.i386.rpm d9194ed4e9a76384769f4b4912088581 php-pgsql-4.3.2-19.ent.i386.rpm ia64: 1bc4b9a171005daa9949aa7ce6867819 php-4.3.2-19.ent.ia64.rpm fae7fb7a8293664d432045261317afa4 php-devel-4.3.2-19.ent.ia64.rpm 6cb195cabe3d74e815991f5a7e3e8ea1 php-imap-4.3.2-19.ent.ia64.rpm 3f3a407d55367e36d8ebe092c4350e13 php-ldap-4.3.2-19.ent.ia64.rpm 308e1ea8b4e0719ee72040238b70cdbf php-mysql-4.3.2-19.ent.ia64.rpm eb92dbb86507aced5740249b9e5b68a7 php-odbc-4.3.2-19.ent.ia64.rpm 05e2049de5a83c0623948393e456e40c php-pgsql-4.3.2-19.ent.ia64.rpm x86_64: 9eed133c39c848b5b9cf30bd0f0e41a3 php-4.3.2-19.ent.x86_64.rpm 31b3d22d09049c688e05c19b91a5343d php-devel-4.3.2-19.ent.x86_64.rpm 57910471f09de36603c2b6b89bf9a079 php-imap-4.3.2-19.ent.x86_64.rpm 851b437d1adbdcf8a7e4f9dd0f47ccbd php-ldap-4.3.2-19.ent.x86_64.rpm a4db3d9d4572d8c9fd3cf88d370d9196 php-mysql-4.3.2-19.ent.x86_64.rpm a7aef84e839ee4339e8307256a1da32d php-odbc-4.3.2-19.ent.x86_64.rpm 11e8e9e2d0cc9a2fba2b6c01787a8752 php-pgsql-4.3.2-19.ent.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7.References: https://www.cve.org/CVERecord?id=CAN-2004-0958 https://www.cve.org/CVERecord?id=CAN-2004-0959 https://www.cve.org/CVERecord?id=CAN-2004-1018 https://www.cve.org/CVERecord?id=CAN-2004-1019 https://www.cve.org/CVERecord?id=CAN-2004-1065 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2004 Red Hat, Inc. . New PHP updates released for Red Hat to address severe security vulnerabilities and bugs impacting various versions and system architectures.. Red Hat Security, PHP Updates, Code Flaws Fixes, Security Patches, Enterprise Solutions. . Severity: Important. LinuxSecurity.com Team
Dec 22, 2004
•Important
Red Hat
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!