Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -2 articles for you...
89
security advisoryFedoracritical fixFedora 35: 2022-a39015bec2 Critical: Kernel Escalation Fix
The 5.15.18 stable kernel update contains fixes for a number of issues across the tree.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-a39015bec2 2022-02-01 01:11:23.956642 --------------------------------------------------------------------------------Name : kernel Product : Fedora 35 Version : 5.15.18 Release : 200.fc35 URL : https://www.kernel.org/ Summary : The Linux kernel Description : The kernel meta package --------------------------------------------------------------------------------Update Information: The 5.15.18 stable kernel update contains fixes for a number of issues across the tree. --------------------------------------------------------------------------------ChangeLog: * Sat Jan 29 2022 Justin M. Forbes [5.15.18-0] - Linux v5.15.18 (Justin M. Forbes) --------------------------------------------------------------------------------References: [ 1 ] Bug #2042404 - CVE-2022-0330 kernel: possible privileges escalation due to missing TLB flush https://bugzilla.redhat.com/show_bug.cgi?id=2042404 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-a39015bec2' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Jan 31, 2022
•Critical
Fedora
98
security advisorybug fixRed Hat Enterprise LinuxOracle Linux 7: ELSA-2021-2099-02 Severe Wildfly Security Update
An update for tomcat6 is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Important: tomcat6 security and bug fix update Advisory ID: RHSA-2016:2045-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2016:2045.html Issue date: 2016-10-10 CVE Names: CVE-2015-5174 CVE-2015-5345 CVE-2016-0706 CVE-2016-0714 CVE-2016-5388 CVE-2016-6325 ==================================================================== 1. Summary: An update for tomcat6 is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Desktop (v. 6) - noarch Red Hat Enterprise Linux HPC Node (v. 6) - noarch Red Hat Enterprise Linux Server (v. 6) - noarch Red Hat Enterprise Linux Workstation (v. 6) - noarch 3. Description: Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages (JSP) technologies. Security Fix(es): * It was discovered that the Tomcat packages installed certain configuration files read by the Tomcat initialization script as writeable to the tomcat group. A member of the group or a malicious web application deployed on Tomcat could use this flaw to escalate their privileges. (CVE-2016-6325) * It was found that several Tomcat session persistence mechanisms could allow a remote, authenticated user to bypassintended SecurityManager restrictions and execute arbitrary code in a privileged context via a web application that placed a crafted object in a session. (CVE-2016-0714) * It was discovered that tomcat used the value of the Proxy header from HTTP requests to initialize the HTTP_PROXY environment variable for CGI scripts, which in turn was incorrectly used by certain HTTP client implementations to configure the proxy for outgoing HTTP requests. A remote attacker could possibly use this flaw to redirect HTTP requests performed by a CGI script to an attacker-controlled proxy via a malicious HTTP request. (CVE-2016-5388) * A directory traversal flaw was found in Tomcat's RequestUtil.java. A remote, authenticated user could use this flaw to bypass intended SecurityManager restrictions and list a parent directory via a '/..' in a pathname used by a web application in a getResource, getResourceAsStream, or getResourcePaths call, as demonstrated by the $CATALINA_BASE/webapps directory. (CVE-2015-5174) * It was found that Tomcat could reveal the presence of a directory even when that directory was protected by a security constraint. A user could make a request to a directory via a URL not ending with a slash and, depending on whether Tomcat redirected that request, could confirm whether that directory existed. (CVE-2015-5345) * It was found that Tomcat allowed the StatusManagerServlet to be loaded by a web application when a security manager was configured. This allowed a web application to list all deployed web applications and expose sensitive information such as session IDs. (CVE-2016-0706) Red Hat would like to thank Scott Geary (VendHQ) for reporting CVE-2016-5388. The CVE-2016-6325 issue was discovered by Red Hat Product Security. Bug Fix(es): * Due to a bug in the tomcat6 spec file, the catalina.out file's md5sum, size, and mtime attributes were compared to the file's attributes at installation time. Because these attributes change after the service is started, the "rpm -V" command previously failed. Withthis update, the attributes mentioned above are ignored in the RPM verification and the catalina.out file now passes the verification check. (BZ#1357123) 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1265698 - CVE-2015-5174 tomcat: URL Normalization issue 1311082 - CVE-2016-0714 tomcat: Security Manager bypass via persistence mechanisms 1311087 - CVE-2016-0706 tomcat: security manager bypass via StatusManagerServlet 1311089 - CVE-2015-5345 tomcat: directory disclosure 1353809 - CVE-2016-5388 Tomcat: CGI sets environmental variable based on user supplied Proxy request header 1357123 - rpm -V tomcat6 fails due on /var/log/tomcat6/catalina.out [rhel-6.8.z] 1367447 - CVE-2016-6325 tomcat: tomcat writable config files allow privilege escalation 6. Package List: Red Hat Enterprise Linux Desktop (v. 6): Source: tomcat6-6.0.24-98.el6_8.src.rpm noarch: tomcat6-6.0.24-98.el6_8.noarch.rpm tomcat6-admin-webapps-6.0.24-98.el6_8.noarch.rpm tomcat6-docs-webapp-6.0.24-98.el6_8.noarch.rpm tomcat6-el-2.1-api-6.0.24-98.el6_8.noarch.rpm tomcat6-javadoc-6.0.24-98.el6_8.noarch.rpm tomcat6-jsp-2.1-api-6.0.24-98.el6_8.noarch.rpm tomcat6-lib-6.0.24-98.el6_8.noarch.rpm tomcat6-servlet-2.5-api-6.0.24-98.el6_8.noarch.rpm tomcat6-webapps-6.0.24-98.el6_8.noarch.rpm Red Hat Enterprise Linux HPC Node (v. 6): Source: tomcat6-6.0.24-98.el6_8.src.rpm noarch: tomcat6-6.0.24-98.el6_8.noarch.rpm tomcat6-admin-webapps-6.0.24-98.el6_8.noarch.rpm tomcat6-docs-webapp-6.0.24-98.el6_8.noarch.rpm tomcat6-el-2.1-api-6.0.24-98.el6_8.noarch.rpm tomcat6-javadoc-6.0.24-98.el6_8.noarch.rpm tomcat6-jsp-2.1-api-6.0.24-98.el6_8.noarch.rpm tomcat6-lib-6.0.24-98.el6_8.noarch.rpm tomcat6-servlet-2.5-api-6.0.24-98.el6_8.noarch.rpm tomcat6-webapps-6.0.24-98.el6_8.noarch.rpm Red Hat Enterprise Linux Server (v.6): Source: tomcat6-6.0.24-98.el6_8.src.rpm noarch: tomcat6-6.0.24-98.el6_8.noarch.rpm tomcat6-admin-webapps-6.0.24-98.el6_8.noarch.rpm tomcat6-docs-webapp-6.0.24-98.el6_8.noarch.rpm tomcat6-el-2.1-api-6.0.24-98.el6_8.noarch.rpm tomcat6-javadoc-6.0.24-98.el6_8.noarch.rpm tomcat6-jsp-2.1-api-6.0.24-98.el6_8.noarch.rpm tomcat6-lib-6.0.24-98.el6_8.noarch.rpm tomcat6-servlet-2.5-api-6.0.24-98.el6_8.noarch.rpm tomcat6-webapps-6.0.24-98.el6_8.noarch.rpm Red Hat Enterprise Linux Workstation (v. 6): Source: tomcat6-6.0.24-98.el6_8.src.rpm noarch: tomcat6-6.0.24-98.el6_8.noarch.rpm tomcat6-admin-webapps-6.0.24-98.el6_8.noarch.rpm tomcat6-docs-webapp-6.0.24-98.el6_8.noarch.rpm tomcat6-el-2.1-api-6.0.24-98.el6_8.noarch.rpm tomcat6-javadoc-6.0.24-98.el6_8.noarch.rpm tomcat6-jsp-2.1-api-6.0.24-98.el6_8.noarch.rpm tomcat6-lib-6.0.24-98.el6_8.noarch.rpm tomcat6-servlet-2.5-api-6.0.24-98.el6_8.noarch.rpm tomcat6-webapps-6.0.24-98.el6_8.noarch.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2015-5174 https://access.redhat.com/security/cve/CVE-2015-5345 https://access.redhat.com/security/cve/CVE-2016-0706 https://access.redhat.com/security/cve/CVE-2016-0714 https://access.redhat.com/security/cve/CVE-2016-5388 https://access.redhat.com/security/cve/CVE-2016-6325 https://access.redhat.com/security/updates/classification#important https://tomcat.apache.org/security-6.html#Fixed_in_Apache_Tomcat_6.0.45 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2016 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iD8DBQFX+/4AXlSAg2UNWIIRAjm0AJ9rYknhq2i5F0ykr0zogwOYt9DJ6QCdHkkb kkUxsjVWgiQohr2wjkMhuFg=OFvs -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list
Oct 10, 2016
•Important
Red Hat
98
security advisorymoderatered hatModerate Security Advisory for Privilege Escalation in Docker on RHEL 7
An update for docker is now available for Red Hat Enterprise Linux 7 Extras. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: docker security, bug fix, and enhancement update Advisory ID: RHSA-2016:1034-01 Product: Red Hat Enterprise Linux Extras Advisory URL: https://access.redhat.com/errata/RHSA-2016:1034.html Issue date: 2016-05-12 CVE Names: CVE-2016-3697 ==================================================================== 1. Summary: An update for docker is now available for Red Hat Enterprise Linux 7 Extras. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux 7 Extras - x86_64 3. Description: Docker is an open-source engine that automates the deployment of any application as a lightweight, portable, self-sufficient container that will run virtually anywhere. Security Fix(es): * It was found that Docker would launch containers under the specified UID instead of a username. An attacker able to launch a container could use this flaw to escalate their privileges to root within the launched container. (CVE-2016-3697) This issue was discovered by Mrunal Patel (Red Hat). Bug Fix(es): * The process of pulling an image spawns a new "goroutine" for each layer in the image manifest. If any of these downloads, everything stops and an error is returned, even though other goroutines would still be running and writing output through a progress reader which is attached to an http response writer. Since therequest handler had already returned from the first error, the http server panics when one of these download goroutines makes a write to the response writer buffer. This bug has been fixed, and docker no longer panics when pulling an image. (BZ#1264562) * Previously, in certain situations, a container rootfs remained busy during container removal. This typically happened if a container mount point leaked into another mount namespace. As a consequence, container removal failed. To fix this bug, a new docker daemon option "dm.use_deferred_deletion" has been provided. If set to true, this option will defer the container rootfs deletion. The user will see success on container removal but the actual thin device backing the rootfs will be deleted later when it is not busy anymore. (BZ#1190492) * Previously, the Docker unit file had the "Restart" option set to "on-failure". Consequently, the docker daemon was forced to restart even in cases where it couldn't be started because of configuration or other issues and this situation forced unnecessary restarts of the docker-storage-setup service in a loop. This also caused real error messages to be lost due to so many restarts. To fix this bug, "Restart=on-failure" has been replaced with "Restart=on-abnormal" in the docker unit file. As a result, the docker daemon will not automatically restart if it fails with an unclean exit code. (BZ#1319783) * Previously, the request body was incorrectly read twice by the docker daemon and consequently, an EOF error was returned. To fix this bug, the code which incorrectly read the request body the first time has been removed. As a result, the EOF error is no longer returned and the body is correctly read when really needed. (BZ#1329743) Enhancement(s): * The /usr/bin/docker script now calls /usr/bin/docker-current or /usr/bin/docker-latest based on the value of the sysconfig variable DOCKERBINARY present in /etc/sysconfig/docker. /usr/bin/docker and /etc/sysconfig/docker provided by the docker-common package allow the admin toconfigure which docker client binary gets called. /usr/bin/docker will call /usr/bin/docker-latest by default when docker is not installed. If docker is installed, /usr/bin/docker will call /usr/bin/docker-current by default, unless DOCKERBINARY is set to /usr/bin/docker-latest in /etc/sysconfig/docker. This way, you can use docker-latest or docker without the need to check which version of the daemon is currently running. (BZ#1328219) 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1186066 - The docker stop operation doesn't work with --pid=host containers containing multiple processes 1261565 - docker-storage-setup service fails after initial successful run if DEVS is defined in /etc/sysconfig/docker-storage-setup 1266307 - Capture information about the remote user connecting over socket in /run/docker 1268059 - docker exec setting the wrong cgroups 1272143 - Can't start containers that use supplemental groups but lack /etc/groups 1303110 - [extras-rhel-7.2.4] Docker does not own /usr/lib/docker-storage-setup 1309739 - docker push fails when pushing image to docker hub 1316651 - Docker run read-only: System error: read-only file system 1319783 - [docker] Use Restart=on-abnormal instead of Restart=on-failure 1322762 - sha256 Conflict while pull images after upgrade 1328219 - [extras-rhel-7.2.4] include docker-common subpackage in 'docker' to handle /usr/bin/docker for docker and docker-latest 1329423 - Skip /dev setup in container when it is bind mounted in 1329450 - CVE-2016-3697 docker: privilege escalation via confusion of usernames and UIDs 1329743 - Unable to push images to private registry using docker-1.9.1-25 and python-docker-py-1.7.2-1 1330595 - /usr/bin/docker wrapper script: $@ must be quoted 1330622 - enhance condition judgement in /usr/bin/docker script 1331007 - SELinux regression in docker-selinux-1.9.1-37 1332592 - Incompleterequirement on docker-common 6. Package List: Red Hat Enterprise Linux 7 Extras: Source: docker-1.9.1-40.el7.src.rpm x86_64: docker-1.9.1-40.el7.x86_64.rpm docker-common-1.9.1-40.el7.x86_64.rpm docker-forward-journald-1.9.1-40.el7.x86_64.rpm docker-logrotate-1.9.1-40.el7.x86_64.rpm docker-selinux-1.9.1-40.el7.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2016-3697 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2016 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iD8DBQFXNNmjXlSAg2UNWIIRAiykAJsFs/yFnQFjyl2Yy/SEvNqQEkMkAQCfaZQg 27AS5B9QUiqNaHl08y1kvTs=GZkL -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list
May 12, 2016
Red Hat
98
security advisorykernel updateRed Hat Enterprise LinuxRed Hat Enterprise Linux 5.6: RHSA-2015:0919-01 Important Kernel Escalation
Updated kernel packages that fix one security issue are now available for Red Hat Enterprise Linux 5.6 Long Life. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Important: kernel security update Advisory ID: RHSA-2015:0919-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2015:0919.html Issue date: 2015-04-30 CVE Names: CVE-2014-8159 ==================================================================== 1. Summary: Updated kernel packages that fix one security issue are now available for Red Hat Enterprise Linux 5.6 Long Life. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux LL (v. 5.6 server) - i386, ia64, noarch, x86_64 3. Description: The kernel packages contain the Linux kernel, the core of any Linux operating system. * It was found that the Linux kernel's Infiniband subsystem did not properly sanitize input parameters while registering memory regions from user space via the (u)verbs API. A local user with access to a /dev/infiniband/uverbsX device could use this flaw to crash the system or, potentially, escalate their privileges on the system. (CVE-2014-8159, Important) Red Hat would like to thank Mellanox for reporting this issue. All kernel users are advised to upgrade to these updated packages, which contain a backported patch to correct this issue. The system must be rebooted for this update to take effect. 4. Solution: Before applying this update, make sure all previously releasederrata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1181166 - CVE-2014-8159 kernel: infiniband: uverbs: unprotected physical memory access 6. Package List: Red Hat Enterprise Linux LL (v. 5.6server): Source: kernel-2.6.18-238.55.1.el5.src.rpm i386: kernel-2.6.18-238.55.1.el5.i686.rpm kernel-PAE-2.6.18-238.55.1.el5.i686.rpm kernel-PAE-debuginfo-2.6.18-238.55.1.el5.i686.rpm kernel-PAE-devel-2.6.18-238.55.1.el5.i686.rpm kernel-debug-2.6.18-238.55.1.el5.i686.rpm kernel-debug-debuginfo-2.6.18-238.55.1.el5.i686.rpm kernel-debug-devel-2.6.18-238.55.1.el5.i686.rpm kernel-debuginfo-2.6.18-238.55.1.el5.i686.rpm kernel-debuginfo-common-2.6.18-238.55.1.el5.i686.rpm kernel-devel-2.6.18-238.55.1.el5.i686.rpm kernel-headers-2.6.18-238.55.1.el5.i386.rpm kernel-xen-2.6.18-238.55.1.el5.i686.rpm kernel-xen-debuginfo-2.6.18-238.55.1.el5.i686.rpm kernel-xen-devel-2.6.18-238.55.1.el5.i686.rpm ia64: kernel-2.6.18-238.55.1.el5.ia64.rpm kernel-debug-2.6.18-238.55.1.el5.ia64.rpm kernel-debug-debuginfo-2.6.18-238.55.1.el5.ia64.rpm kernel-debug-devel-2.6.18-238.55.1.el5.ia64.rpm kernel-debuginfo-2.6.18-238.55.1.el5.ia64.rpm kernel-debuginfo-common-2.6.18-238.55.1.el5.ia64.rpm kernel-devel-2.6.18-238.55.1.el5.ia64.rpm kernel-headers-2.6.18-238.55.1.el5.ia64.rpm kernel-xen-2.6.18-238.55.1.el5.ia64.rpm kernel-xen-debuginfo-2.6.18-238.55.1.el5.ia64.rpm kernel-xen-devel-2.6.18-238.55.1.el5.ia64.rpm noarch: kernel-doc-2.6.18-238.55.1.el5.noarch.rpm x86_64: kernel-2.6.18-238.55.1.el5.x86_64.rpm kernel-debug-2.6.18-238.55.1.el5.x86_64.rpm kernel-debug-debuginfo-2.6.18-238.55.1.el5.x86_64.rpm kernel-debug-devel-2.6.18-238.55.1.el5.x86_64.rpm kernel-debuginfo-2.6.18-238.55.1.el5.x86_64.rpm kernel-debuginfo-common-2.6.18-238.55.1.el5.x86_64.rpm kernel-devel-2.6.18-238.55.1.el5.x86_64.rpm kernel-headers-2.6.18-238.55.1.el5.x86_64.rpm kernel-xen-2.6.18-238.55.1.el5.x86_64.rpm kernel-xen-debuginfo-2.6.18-238.55.1.el5.x86_64.rpm kernel-xen-devel-2.6.18-238.55.1.el5.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7.References: https://access.redhat.com/security/cve/CVE-2014-8159 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2015 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iD8DBQFVQlKtXlSAg2UNWIIRAnKYAJ0e9dsFyZoh1KtK95n4kCP04FwQnACdHexE zN9gdu2zSiIAZJEhWe1yXO8=bwvG -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list
Apr 30, 2015
•Important
Red Hat
98
security advisorykernel updateaccess controlRed Hat: RHSA-2015:0870-01 Critical: Kernel Escalation Issue
Updated kernel packages that fix one security issue are now available for Red Hat Enterprise Linux 5.9 Long Life. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Important: kernel security update Advisory ID: RHSA-2015:0870-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2015:0870.html Issue date: 2015-04-22 CVE Names: CVE-2014-8159 ==================================================================== 1. Summary: Updated kernel packages that fix one security issue are now available for Red Hat Enterprise Linux 5.9 Long Life. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux EUS (v. 5.9 server) - i386, ia64, noarch, ppc, s390x, x86_64 3. Description: The kernel packages contain the Linux kernel, the core of any Linux operating system. * It was found that the Linux kernel's Infiniband subsystem did not properly sanitize input parameters while registering memory regions from user space via the (u)verbs API. A local user with access to a /dev/infiniband/uverbsX device could use this flaw to crash the system or, potentially, escalate their privileges on the system. (CVE-2014-8159, Important) Red Hat would like to thank Mellanox for reporting this issue. All kernel users are advised to upgrade to these updated packages, which contain a backported patch to correct this issue. The system must be rebooted for this update to take effect. 4. Solution: Before applying this update, make sure all previously releasederrata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1181166 - CVE-2014-8159 kernel: infiniband: uverbs: unprotected physical memory access 6. Package List: Red Hat Enterprise Linux EUS (v. 5.9server): Source: kernel-2.6.18-348.30.1.el5.src.rpm i386: kernel-2.6.18-348.30.1.el5.i686.rpm kernel-PAE-2.6.18-348.30.1.el5.i686.rpm kernel-PAE-debuginfo-2.6.18-348.30.1.el5.i686.rpm kernel-PAE-devel-2.6.18-348.30.1.el5.i686.rpm kernel-debug-2.6.18-348.30.1.el5.i686.rpm kernel-debug-debuginfo-2.6.18-348.30.1.el5.i686.rpm kernel-debug-devel-2.6.18-348.30.1.el5.i686.rpm kernel-debuginfo-2.6.18-348.30.1.el5.i686.rpm kernel-debuginfo-common-2.6.18-348.30.1.el5.i686.rpm kernel-devel-2.6.18-348.30.1.el5.i686.rpm kernel-headers-2.6.18-348.30.1.el5.i386.rpm kernel-xen-2.6.18-348.30.1.el5.i686.rpm kernel-xen-debuginfo-2.6.18-348.30.1.el5.i686.rpm kernel-xen-devel-2.6.18-348.30.1.el5.i686.rpm ia64: kernel-2.6.18-348.30.1.el5.ia64.rpm kernel-debug-2.6.18-348.30.1.el5.ia64.rpm kernel-debug-debuginfo-2.6.18-348.30.1.el5.ia64.rpm kernel-debug-devel-2.6.18-348.30.1.el5.ia64.rpm kernel-debuginfo-2.6.18-348.30.1.el5.ia64.rpm kernel-debuginfo-common-2.6.18-348.30.1.el5.ia64.rpm kernel-devel-2.6.18-348.30.1.el5.ia64.rpm kernel-headers-2.6.18-348.30.1.el5.ia64.rpm kernel-xen-2.6.18-348.30.1.el5.ia64.rpm kernel-xen-debuginfo-2.6.18-348.30.1.el5.ia64.rpm kernel-xen-devel-2.6.18-348.30.1.el5.ia64.rpm noarch: kernel-doc-2.6.18-348.30.1.el5.noarch.rpm ppc: kernel-2.6.18-348.30.1.el5.ppc64.rpm kernel-debug-2.6.18-348.30.1.el5.ppc64.rpm kernel-debug-debuginfo-2.6.18-348.30.1.el5.ppc64.rpm kernel-debug-devel-2.6.18-348.30.1.el5.ppc64.rpm kernel-debuginfo-2.6.18-348.30.1.el5.ppc64.rpm kernel-debuginfo-common-2.6.18-348.30.1.el5.ppc64.rpm kernel-devel-2.6.18-348.30.1.el5.ppc64.rpm kernel-headers-2.6.18-348.30.1.el5.ppc.rpm kernel-headers-2.6.18-348.30.1.el5.ppc64.rpm kernel-kdump-2.6.18-348.30.1.el5.ppc64.rpm kernel-kdump-debuginfo-2.6.18-348.30.1.el5.ppc64.rpm kernel-kdump-devel-2.6.18-348.30.1.el5.ppc64.rpm s390x: kernel-2.6.18-348.30.1.el5.s390x.rpm kernel-debug-2.6.18-348.30.1.el5.s390x.rpm kernel-debug-debuginfo-2.6.18-348.30.1.el5.s390x.rpm kernel-debug-devel-2.6.18-348.30.1.el5.s390x.rpm kernel-debuginfo-2.6.18-348.30.1.el5.s390x.rpm kernel-debuginfo-common-2.6.18-348.30.1.el5.s390x.rpm kernel-devel-2.6.18-348.30.1.el5.s390x.rpm kernel-headers-2.6.18-348.30.1.el5.s390x.rpm kernel-kdump-2.6.18-348.30.1.el5.s390x.rpm kernel-kdump-debuginfo-2.6.18-348.30.1.el5.s390x.rpm kernel-kdump-devel-2.6.18-348.30.1.el5.s390x.rpm x86_64: kernel-2.6.18-348.30.1.el5.x86_64.rpm kernel-debug-2.6.18-348.30.1.el5.x86_64.rpm kernel-debug-debuginfo-2.6.18-348.30.1.el5.x86_64.rpm kernel-debug-devel-2.6.18-348.30.1.el5.x86_64.rpm kernel-debuginfo-2.6.18-348.30.1.el5.x86_64.rpm kernel-debuginfo-common-2.6.18-348.30.1.el5.x86_64.rpm kernel-devel-2.6.18-348.30.1.el5.x86_64.rpm kernel-headers-2.6.18-348.30.1.el5.x86_64.rpm kernel-xen-2.6.18-348.30.1.el5.x86_64.rpm kernel-xen-debuginfo-2.6.18-348.30.1.el5.x86_64.rpm kernel-xen-devel-2.6.18-348.30.1.el5.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2014-8159 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2015 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iD8DBQFVN3thXlSAg2UNWIIRAnjWAKC00K4ifrnucnMD7jxJulVmlWZ8jwCgknVq IQ0SbzGceEbGGq8zzw2e1ug=ceTG -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list
Apr 22, 2015
•Important
Red Hat
98
security advisorymoderateRed HatRed Hat Enterprise Linux 6: RHSA-2012:1261-01 Moderate: Dbus Escalation
Updated dbus packages that fix one security issue are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: dbus security update Advisory ID: RHSA-2012:1261-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2012:1261.html Issue date: 2012-09-13 CVE Names: CVE-2012-3524 ==================================================================== 1. Summary: Updated dbus packages that fix one security issue are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux Desktop Optional (v. 6) - i386, noarch, x86_64 Red Hat Enterprise Linux HPC Node (v. 6) - x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - noarch, x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 6) - noarch Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 6) - noarch 3. Description: D-Bus is a system for sending messages between applications. It is used for the system-wide message bus service and as a per-user-login-session messaging facility. It was discovered that the D-Bus library honored environment settings even when running with elevated privileges. A local attacker could possibly use this flaw to escalate their privileges, by setting specificenvironment variables before running a setuid or setgid application linked against the D-Bus library (libdbus). (CVE-2012-3524) Note: With this update, libdbus ignores environment variables when used by setuid or setgid applications. The environment is not ignored when an application gains privileges via file system capabilities; however, no application shipped in Red Hat Enterprise Linux 6 gains privileges via file system capabilities. Red Hat would like to thank Sebastian Krahmer of the SUSE Security Team for reporting this issue. All users are advised to upgrade to these updated packages, which contain a backported patch to correct this issue. For the update to take effect, all running instances of dbus-daemon and all running applications using the libdbus library must be restarted, or the system rebooted. 4. Solution: Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258 5. Bugs fixed (http://bugzilla.redhat.com/): 847402 - CVE-2012-3524 X.org: arbitrary code execution as root when libdbus > = 1.5 is used 6. Package List: Red Hat Enterprise Linux Desktop (v. 6): Source: i386: dbus-1.2.24-7.el6_3.i686.rpm dbus-debuginfo-1.2.24-7.el6_3.i686.rpm dbus-libs-1.2.24-7.el6_3.i686.rpm dbus-x11-1.2.24-7.el6_3.i686.rpm x86_64: dbus-1.2.24-7.el6_3.x86_64.rpm dbus-debuginfo-1.2.24-7.el6_3.i686.rpm dbus-debuginfo-1.2.24-7.el6_3.x86_64.rpm dbus-libs-1.2.24-7.el6_3.i686.rpm dbus-libs-1.2.24-7.el6_3.x86_64.rpm dbus-x11-1.2.24-7.el6_3.x86_64.rpm Red Hat Enterprise Linux Desktop Optional (v.6): Source: i386: dbus-debuginfo-1.2.24-7.el6_3.i686.rpm dbus-devel-1.2.24-7.el6_3.i686.rpm noarch: dbus-doc-1.2.24-7.el6_3.noarch.rpm x86_64: dbus-debuginfo-1.2.24-7.el6_3.i686.rpm dbus-debuginfo-1.2.24-7.el6_3.x86_64.rpm dbus-devel-1.2.24-7.el6_3.i686.rpm dbus-devel-1.2.24-7.el6_3.x86_64.rpm Red Hat Enterprise Linux HPC Node (v. 6): Source: x86_64: dbus-1.2.24-7.el6_3.x86_64.rpm dbus-debuginfo-1.2.24-7.el6_3.i686.rpm dbus-debuginfo-1.2.24-7.el6_3.x86_64.rpm dbus-libs-1.2.24-7.el6_3.i686.rpm dbus-libs-1.2.24-7.el6_3.x86_64.rpm dbus-x11-1.2.24-7.el6_3.x86_64.rpm Red Hat Enterprise Linux HPC Node Optional (v. 6): Source: noarch: dbus-doc-1.2.24-7.el6_3.noarch.rpm x86_64: dbus-debuginfo-1.2.24-7.el6_3.i686.rpm dbus-debuginfo-1.2.24-7.el6_3.x86_64.rpm dbus-devel-1.2.24-7.el6_3.i686.rpm dbus-devel-1.2.24-7.el6_3.x86_64.rpm Red Hat Enterprise Linux Server (v. 6): Source: i386: dbus-1.2.24-7.el6_3.i686.rpm dbus-debuginfo-1.2.24-7.el6_3.i686.rpm dbus-devel-1.2.24-7.el6_3.i686.rpm dbus-libs-1.2.24-7.el6_3.i686.rpm dbus-x11-1.2.24-7.el6_3.i686.rpm ppc64: dbus-1.2.24-7.el6_3.ppc64.rpm dbus-debuginfo-1.2.24-7.el6_3.ppc.rpm dbus-debuginfo-1.2.24-7.el6_3.ppc64.rpm dbus-devel-1.2.24-7.el6_3.ppc.rpm dbus-devel-1.2.24-7.el6_3.ppc64.rpm dbus-libs-1.2.24-7.el6_3.ppc.rpm dbus-libs-1.2.24-7.el6_3.ppc64.rpm dbus-x11-1.2.24-7.el6_3.ppc64.rpm s390x: dbus-1.2.24-7.el6_3.s390x.rpm dbus-debuginfo-1.2.24-7.el6_3.s390.rpm dbus-debuginfo-1.2.24-7.el6_3.s390x.rpm dbus-devel-1.2.24-7.el6_3.s390.rpm dbus-devel-1.2.24-7.el6_3.s390x.rpm dbus-libs-1.2.24-7.el6_3.s390.rpm dbus-libs-1.2.24-7.el6_3.s390x.rpm dbus-x11-1.2.24-7.el6_3.s390x.rpm x86_64: dbus-1.2.24-7.el6_3.x86_64.rpm dbus-debuginfo-1.2.24-7.el6_3.i686.rpm dbus-debuginfo-1.2.24-7.el6_3.x86_64.rpm dbus-devel-1.2.24-7.el6_3.i686.rpm dbus-devel-1.2.24-7.el6_3.x86_64.rpm dbus-libs-1.2.24-7.el6_3.i686.rpm dbus-libs-1.2.24-7.el6_3.x86_64.rpm dbus-x11-1.2.24-7.el6_3.x86_64.rpm Red Hat Enterprise Linux Server Optional (v.6): Source: noarch: dbus-doc-1.2.24-7.el6_3.noarch.rpm Red Hat Enterprise Linux Workstation (v. 6): Source: i386: dbus-1.2.24-7.el6_3.i686.rpm dbus-debuginfo-1.2.24-7.el6_3.i686.rpm dbus-devel-1.2.24-7.el6_3.i686.rpm dbus-libs-1.2.24-7.el6_3.i686.rpm dbus-x11-1.2.24-7.el6_3.i686.rpm x86_64: dbus-1.2.24-7.el6_3.x86_64.rpm dbus-debuginfo-1.2.24-7.el6_3.i686.rpm dbus-debuginfo-1.2.24-7.el6_3.x86_64.rpm dbus-devel-1.2.24-7.el6_3.i686.rpm dbus-devel-1.2.24-7.el6_3.x86_64.rpm dbus-libs-1.2.24-7.el6_3.i686.rpm dbus-libs-1.2.24-7.el6_3.x86_64.rpm dbus-x11-1.2.24-7.el6_3.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 6): Source: noarch: dbus-doc-1.2.24-7.el6_3.noarch.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package 7. References: https://access.redhat.com/security/cve/CVE-2012-3524 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2012 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFQUhYLXlSAg2UNWIIRAk4LAJ0XMDkKrx8BKrQ5ebuS77IoErxi/gCeJQnS Xf4NI8lqycSfoi+up1nqc5o=Pf0m -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list
Sep 13, 2012
Red Hat
91
security advisoryGentoohigh severitySlackware: 202110-11 Critical: CherryPy Remote Code Execution Vulnerability
Certain Heimdal components, ftpd and rcp, are vulnerable to a local privilege escalation.. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200608-21 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: High Title: Heimdal: Multiple local privilege escalation vulnerabilities Date: August 23, 2006 Bugs: #143371 ID: 200608-21 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======= Certain Heimdal components, ftpd and rcp, are vulnerable to a local privilege escalation. Background ========= Heimdal is a free implementation of Kerberos 5. Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 app-crypt/heimdal < 0.7.2-r3 > = 0.7.2-r3 Description ========== The ftpd and rcp applications provided by Heimdal fail to check the return value of calls to seteuid(). Impact ===== A local attacker could exploit this vulnerability to execute arbitrary code with elevated privileges. Workaround ========= There is no known workaround at this time. Resolution ========= All Heimdal users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose "> =app-crypt/heimdal-0.7.2-r3" References ========= [ 1 ] Official advisory [ 2 ] CVE-2006-3083 https://www.cve.org/CVERecord?id=CVE-2006-3083 [ 3 ] CVE-2006-3084 https://www.cve.org/CVERecord?id=CVE-2006-3084 Availability =========== This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/200608-21 Concerns? ======== Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to
Aug 23, 2006
Gentoo
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!