Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 0 articles for you...
219
security advisorymoderateupdateRocky Linux 8 RLSA-2025:0743 moderate: keepalived integer overflow
Moderate: keepalived security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2025:0743", "synopsis": "Moderate: keepalived security update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for keepalived.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "The keepalived utility provides simple and robust facilities for load balancing and high availability. The load balancing framework relies on the well-known and widely used IP Virtual Server (IPVS) kernel module providing layer-4 (transport layer) load balancing. Keepalived implements a set of checkers to dynamically and adaptively maintain and manage a load balanced server pool according to the health of the servers. Keepalived also implements the Virtual Router Redundancy Protocol (VRRPv2) to achieve high availability with director failover.\n\nSecurity Fix(es):\n\n* keepalived: Integer overflow vulnerability in vrrp_ipsets_handler (CVE-2024-41184)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2298532", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2298532", "description": ""}], "cves": [{"name": "CVE-2024-41184", "sourceBy": "MITRE", "sourceLink": "https://www.cve.org/CVERecord?id=CVE-2024-41184", "cvss3ScoringVector": "UNKNOWN", "cvss3BaseScore": "UNKNOWN", "cwe": "UNKNOWN"}], "references": [], "publishedAt": "2025-02-13T20:34:26.141542Z", "rpms": {"Rocky Linux 8": {"nvras": ["keepalived-0:2.1.5-10.el8_10.aarch64.rpm", "keepalived-0:2.1.5-10.el8_10.src.rpm", "keepalived-0:2.1.5-10.el8_10.x86_64.rpm", "keepalived-debuginfo-0:2.1.5-10.el8_10.aarch64.rpm", "keepalived-debuginfo-0:2.1.5-10.el8_10.x86_64.rpm","keepalived-debugsource-0:2.1.5-10.el8_10.aarch64.rpm", "keepalived-debugsource-0:2.1.5-10.el8_10.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. AlmaLinux unveils a significant security patch for haproxy, fixing a buffer overflow vulnerability. Upgrade today!. keepalived Security Update, Rocky Linux Advisory, Load Balancing Security. . LinuxSecurity.com Team
Feb 13, 2025
Rocky Linux
219
security advisorymoderateupdateRocky Linux 8 RLSA-2022:1931 Important Nginx Security Patch
Moderate: keepalived security and bug fix update. \{'type': 'Security', 'shortCode': 'RL', 'name': 'RLSA-2022:1930', 'synopsis': 'Moderate: keepalived security and bug fix update', 'severity': 'Moderate', 'topic': 'An update for keepalived is now available for Rocky Linux 8.\nRocky Linux Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.', 'description': 'The keepalived utility provides simple and robust facilities for load balancing and high availability. The load balancing framework relies on the well-known and widely used IP Virtual Server (IPVS) kernel module providing layer-4 (transport layer) load balancing. Keepalived implements a set of checkers to dynamically and adaptively maintain and manage a load balanced server pool according to the health of the servers. Keepalived also implements the Virtual Router Redundancy Protocol (VRRPv2) to achieve high availability with director failover.\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\nAdditional Changes:\nFor detailed information on changes in this release, see the Rocky Linux 8.6 Release Notes linked from the References section.', 'solution': None, 'affectedProducts': ['Rocky Linux 8'], 'fixes': ['2027156'], 'cves': ['Red Hat:::https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-44225.json:::CVE-2021-44225'], 'references': [], 'publishedAt': '2022-05-18T19:43:35.069755Z', 'rpms': ['keepalived-2.1.5-8.el8.aarch64.rpm', 'keepalived-2.1.5-8.el8.src.rpm', 'keepalived-2.1.5-8.el8.x86_64.rpm', 'keepalived-debuginfo-2.1.5-8.el8.aarch64.rpm', 'keepalived-debuginfo-2.1.5-8.el8.x86_64.rpm', 'keepalived-debugsource-2.1.5-8.el8.aarch64.rpm', 'keepalived-debugsource-2.1.5-8.el8.x86_64.rpm']}\. The latestkeepalived security patch for Rocky Linux 8 fixes vulnerabilities and improves the efficiency of load balancing capabilities.. keepalived Security, Rocky Linux Update, Load Balancing Fix. . LinuxSecurity.com Team
Sep 02, 2022
Rocky Linux
98
security advisorymoderateRed HatRedHat: RHSA-2019-3788 Moderate: openstack-octavia Security Fix
An update for openstack-octavia is now available for Red Hat OpenStack Platform 13.0 (Queens). Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which . -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: openstack-octavia security and bug fix update Advisory ID: RHSA-2019:3788-01 Product: Red Hat Enterprise Linux OpenStack Platform Advisory URL: https://access.redhat.com/errata/RHSA-2019:3788 Issue date: 2019-11-07 CVE Names: CVE-2019-17134 ==================================================================== 1. Summary: An update for openstack-octavia is now available for Red Hat OpenStack Platform 13.0 (Queens). Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat OpenStack Platform 13.0 - noarch, ppc64le, x86_64 3. Description: The OpenStack Load Balancing service (openstack-octavia) provides a Load Balancing-as-a-Service (LBaaS) version 2 implementation for Red Hat OpenStack platform director based installations. Security Fix(es): * openstack-octavia: amphora-agent not requiring client certificate (CVE-2019-17134) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * [Backport request]Add failover logging to show the amphora details. (BZ#1743476) 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, referto: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1712448 - Cannot delete load balancer that is in PENDING_UPDATE with PENDING_CREATE LISTENER after running into BZ 1693808 1760178 - Rebase openstack-octavia to 431d9c9 1761307 - CVE-2019-17134 openstack-octavia: amphora-agent not requiring client certificate 6. Package List: Red Hat OpenStack Platform 13.0: Source: openstack-octavia-2.1.2-1.el7ost.src.rpm noarch: openstack-octavia-amphora-agent-2.1.2-1.el7ost.noarch.rpm openstack-octavia-api-2.1.2-1.el7ost.noarch.rpm openstack-octavia-common-2.1.2-1.el7ost.noarch.rpm openstack-octavia-diskimage-create-2.1.2-1.el7ost.noarch.rpm openstack-octavia-health-manager-2.1.2-1.el7ost.noarch.rpm openstack-octavia-housekeeping-2.1.2-1.el7ost.noarch.rpm openstack-octavia-worker-2.1.2-1.el7ost.noarch.rpm python-octavia-2.1.2-1.el7ost.noarch.rpm ppc64le: openstack-octavia-debuginfo-2.1.2-1.el7ost.ppc64le.rpm python-octavia-tests-golang-2.1.2-1.el7ost.ppc64le.rpm x86_64: openstack-octavia-debuginfo-2.1.2-1.el7ost.x86_64.rpm python-octavia-tests-golang-2.1.2-1.el7ost.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2019-17134 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2019 Red Hat, Inc. -----BEGIN PGP SIGNATURE-----Version: GnuPGv1 iQIVAwUBXcQhwtzjgjWX9erEAQjfGxAAol41b9KONPNEuMe52B+qw6xHM9QjaF7J 6lqAv6sWhvF/CsA5lVFJbjBmMkiTV5F/ZYx1FNB+RloBAO1TTi+fBngtAeiUK2J2 lKAxa5Z8jiRUWTVi/nxTtszK8RQFpvjqTwr0hnsOXNnLWJs6zwK0dG9GhTnXQ1Af OP6eGze51dWTHLaQ3jvOAdTngZ5qZ1eyQt/fgIFY+VQxqB0wWgURC2n7uXS4WD3c I/HehOsTC4wRpnKqoNW/yenNTpywzzCbSdlljlE6JBlXhEdRRSipTaXLEyJpdFLn trS4Nf8LT1KC0pZblep5+JQhCAI4FNO5GOWKvzjMPTmUb1FWs1Ev9p7lTRpvQyMH zZ6WFErVWQ2s8vm9vkx4OZ5Kd7tiqUcz29W3rXpTNP+dkGYU8UOwWm10IjSU1Yg6 vkX4kI6b9Tr4jjN5sg1gPXAHUZ5RbXpcpwSHv18OFEpBkfIJrGAq9C8GYl3ZeKva huqK2xA2H5qH/KtnGJehrFD6h2kR0Gh2zFPbl2a3Ac+s7Ibn/oEplwurOOrdeVne 0NjdzSUjFLQ69Ap+DutbrP6yjnVW2JoS5zgYKKRIRe9HZ8wI7ckTT4KjBFpmcxJR q9ilUiWem7s9r7oufOZXYh+CaAl5yAdy7h6DMaFGPLqAkJ0Dhqmqy6s5IZSi1ILv Uz92zCz9uo4=2ftV -----END PGP SIGNATURE-------RHSA-announce mailing list
Nov 07, 2019
Red Hat
98
security advisorymoderatesecurity fixOpenStack 14.0 RHSA-2019-3743-01 Security Update for Octavia Moderate
An update for openstack-octavia is now available for Red Hat OpenStack Platform 14.0 (Rocky). Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which . -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: openstack-octavia security update Advisory ID: RHSA-2019:3743-01 Product: Red Hat Enterprise Linux OpenStack Platform Advisory URL: https://access.redhat.com/errata/RHSA-2019:3743 Issue date: 2019-11-06 CVE Names: CVE-2019-17134 ==================================================================== 1. Summary: An update for openstack-octavia is now available for Red Hat OpenStack Platform 14.0 (Rocky). Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link in the References section. 2. Relevant releases/architectures: Red Hat OpenStack Platform 14.0 - noarch, ppc64le, x86_64 3. Description: The OpenStack Load Balancing service (openstack-octavia) provides a Load Balancing-as-a-Service (LBaaS) version 2 implementation for Red Hat OpenStack platform director based installations. Security Fix(es): * openstack-octavia: amphora-agent not requiring client certificate (CVE-2019-17134) For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1761307 - CVE-2019-17134openstack-octavia: amphora-agent not requiring client certificate 1762807 - Rebase openstack-octavia to 3.2.0 6. Package List: Red Hat OpenStack Platform 14.0: Source: openstack-octavia-3.1.0-3.el7ost.src.rpm noarch: openstack-octavia-amphora-agent-3.1.0-3.el7ost.noarch.rpm openstack-octavia-api-3.1.0-3.el7ost.noarch.rpm openstack-octavia-common-3.1.0-3.el7ost.noarch.rpm openstack-octavia-diskimage-create-3.1.0-3.el7ost.noarch.rpm openstack-octavia-health-manager-3.1.0-3.el7ost.noarch.rpm openstack-octavia-housekeeping-3.1.0-3.el7ost.noarch.rpm openstack-octavia-worker-3.1.0-3.el7ost.noarch.rpm python-octavia-3.1.0-3.el7ost.noarch.rpm ppc64le: openstack-octavia-debuginfo-3.1.0-3.el7ost.ppc64le.rpm python-octavia-tests-golang-3.1.0-3.el7ost.ppc64le.rpm x86_64: openstack-octavia-debuginfo-3.1.0-3.el7ost.x86_64.rpm python-octavia-tests-golang-3.1.0-3.el7ost.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2019-17134 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2019 Red Hat, Inc. -----BEGIN PGP SIGNATURE-----Version: GnuPGv1 iQIVAwUBXcLk49zjgjWX9erEAQhOrBAAoxHewFVjcgKP7LWN2K8LPqrEbdwpPZ5f IHTSAtpHC8JeFN3RzCpxBR1j9kbEoormIAGKl+2axIPb57giAt5AuZ5pVFuazJpQ XU+0SzJRKs23sQbAtzXLcicGRnM1398VO4/gfy4FdBChcNOLlU0y8WPHKgWd+LmQ cIs7PA/H/8P9l+eH0AYHg0xqvNLumGKPkgVBGmA4s8NIzjCZTAUjXvJW0NS+JBAC 9A8yyDmE7pvlvRAzmZ0qWYnLHFHdDq4DF8Ydmg2tigf1SaDZAF9csh83M2vqXv9d ZoWfSs4AZhFy2SJNeXfpOT77tz0oQk8SSpHNA+ErnPfnVi1aDXeQze2ivSUeaVVQ C2jXyBc83ByKQGf84qdR1ZpgGtw0YjR75D4xISQlQsE7NiFnMT0n/SEChhFWJrEN yBR/Hp8I1iq5QOTatOHA5/6CGJav+WoIQdeYcUgOfTryHzv5+kbwtD9WsTWxiwfz jmtJ4KaRcVaVmyzYnctQwFioz+gwlgWbmWjzV+gQ98CpxlmPlVJW3OGY42vnNRvt yNonifiAxkcP25bsacZ9lA2uNQW5ni9ee9JcmNivgbqz8qdPi82OgzByqzrzjbS7 Gq7yPlybq6n54JGr5bSBrBr7/Rl/svHASYO98VKG/C5fReBuySABPblIWcAWmFjO TBi+VhrB2RM=jEXf -----END PGP SIGNATURE-------RHSA-announce mailing list
Nov 06, 2019
Red Hat
98
security advisorymoderatesecurity updateRedHat: RHSA-2019-0593 Moderate: Openstack-Octavia Load Balancing Update
An update for openstack-octavia is now available for Red Hat OpenStack Platform 14.0 (Rocky). Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: openstack-octavia security update Advisory ID: RHSA-2019:0593-01 Product: Red Hat Enterprise Linux OpenStack Platform Advisory URL: https://access.redhat.com/errata/RHSA-2019:0593 Issue date: 2019-03-18 CVE Names: CVE-2018-16856 ==================================================================== 1. Summary: An update for openstack-octavia is now available for Red Hat OpenStack Platform 14.0 (Rocky). Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat OpenStack Platform 14.0 - noarch, ppc64le, x86_64 3. Description: The OpenStack Load Balancing service (openstack-octavia) provides a Load Balancing-as-a-Service (LBaaS) version 2 implementation for Red Hat OpenStack platform director based installations. Security Fix(es): * openstack-octavia: Private keys written to world-readable log files (CVE-2018-16856) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1547449 - [Octavia] Provider driver / third party plugin framework 1633019 -CVE-2018-16856 openstack-octavia: Private keys written to world-readable log files [openstack-14-default] 1634986 - All existing amphora instances are deleting when RabbitMQ is down 1649165 - CVE-2018-16856 openstack-octavia: Private keys written to world-readable log files 1672299 - Rebase openstack-octavia to import 6. Package List: Red Hat OpenStack Platform 14.0: Source: openstack-octavia-3.0.2-0.20181219195054.ec4c88e.el7ost.src.rpm noarch: openstack-octavia-amphora-agent-3.0.2-0.20181219195054.ec4c88e.el7ost.noarch.rpm openstack-octavia-api-3.0.2-0.20181219195054.ec4c88e.el7ost.noarch.rpm openstack-octavia-common-3.0.2-0.20181219195054.ec4c88e.el7ost.noarch.rpm openstack-octavia-diskimage-create-3.0.2-0.20181219195054.ec4c88e.el7ost.noarch.rpm openstack-octavia-health-manager-3.0.2-0.20181219195054.ec4c88e.el7ost.noarch.rpm openstack-octavia-housekeeping-3.0.2-0.20181219195054.ec4c88e.el7ost.noarch.rpm openstack-octavia-worker-3.0.2-0.20181219195054.ec4c88e.el7ost.noarch.rpm python-octavia-3.0.2-0.20181219195054.ec4c88e.el7ost.noarch.rpm ppc64le: openstack-octavia-debuginfo-3.0.2-0.20181219195054.ec4c88e.el7ost.ppc64le.rpm python-octavia-tests-golang-3.0.2-0.20181219195054.ec4c88e.el7ost.ppc64le.rpm x86_64: openstack-octavia-debuginfo-3.0.2-0.20181219195054.ec4c88e.el7ost.x86_64.rpm python-octavia-tests-golang-3.0.2-0.20181219195054.ec4c88e.el7ost.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2018-16856 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2019 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBXI+XC9zjgjWX9erEAQh/1A//fmIQXf/7NFf7SHfP3FCHW91B7xlNAk9+ OYDsEevY6pjPpF340Zv5/D97qncNKLMvw/u8LxB9GBWRD1+hmW1fh0LSRKSfrDg4 /Y94xQCGPVThZxVyYa9mlt+Hy6Alcgis233aWkUeD+FtbpIKz1ZQMU97CtXMqG+Q 8oNv9a//f/IEV11TI1jpLZ7KJ7ri6zw90QTvPwwlCHkbFCasPGDDpja9bfe4GFh2 NxPfd8IiJ5VYKk6DbgRqEtco3a+BIG3H9xzAjQS7gzFXE25QvNWfB5LVsreWj59c LnuEfvCDuiDvKtU3XxjeS7ClqE5lf4vp/JqCadpcsw3B2OB5JnywAimDWOn1+EiX LPZo5Tix1RJAPFLbvUKZSZb2xUUHupViZFgemww9/LztLUAxwHNwlHLMRQ1+cjxK DzRLXl8rUIl3Vb3V/Rse522WWxgqWO4kh3jxbTwU6BWvWNbv6tSMe9dd2dtGV6fh AolNRS+odblVBq6fBVT4YX7tEcq+gE+zeXtscSbK0bZNp4e8F8ZWD04g07EFY7iI z1ZydMl7ks2ouU9+2aCRpcRNy7qh1Nnb5/fqhv1eoCAgPpaOnphmLg+EfVxoYfXd 55Pd3PnE0UBCRpoqRYtSsinqKvgZHJZk1pyvdysUqNtwk4QkkGjTSreZXCjy4r5/ 8o/FRFKHgKY=MBQx -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Mar 18, 2019
Red Hat
98
security advisorymoderatesecurity issueRed Hat: RHSA-2019-0567 Moderate: openstack-octavia Security Update
An update for openstack-octavia is now available for Red Hat OpenStack Platform 13.0 (Queens). Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: openstack-octavia security and bug fix update Advisory ID: RHSA-2019:0567-01 Product: Red Hat Enterprise Linux OpenStack Platform Advisory URL: https://access.redhat.com/errata/RHSA-2019:0567 Issue date: 2019-03-14 CVE Names: CVE-2018-16856 ==================================================================== 1. Summary: An update for openstack-octavia is now available for Red Hat OpenStack Platform 13.0 (Queens). Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat OpenStack Platform 13.0 - noarch, ppc64le, x86_64 3. Description: The OpenStack Load Balancing service (openstack-octavia) provides a Load Balancing-as-a-Service (LBaaS) version 2 implementation for Red Hat OpenStack platform director based installations. Security Fix(es): * openstack-octavia: Private keys written to world-readable log files (CVE-2018-16856) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * This feature is "community support" and not supported by Red Hat per RHOSP SLA. (BZ#1671022) 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5.Bugs fixed (https://bugzilla.redhat.com/): 1547478 - Test Octavia with OVN 1571636 - Backports of general improvements to Octavia 1582145 - Listener's "operating status" is not transitioning to ONLINE even when pool and members are configured for it. 1607276 - All existing amphora instances are deleting when RabbitMQ is down 1649165 - CVE-2018-16856 openstack-octavia: Private keys written to world-readable log files 1669078 - Add support for configuring Octavia LB timeouts in OSP 13 1670170 - Rebase openstack-octavia to 2.0.3 1672370 - flake8 fail: code over-indentation 6. Package List: Red Hat OpenStack Platform 13.0: Source: openstack-octavia-2.0.3-2.el7ost.src.rpm noarch: openstack-octavia-amphora-agent-2.0.3-2.el7ost.noarch.rpm openstack-octavia-api-2.0.3-2.el7ost.noarch.rpm openstack-octavia-common-2.0.3-2.el7ost.noarch.rpm openstack-octavia-diskimage-create-2.0.3-2.el7ost.noarch.rpm openstack-octavia-health-manager-2.0.3-2.el7ost.noarch.rpm openstack-octavia-housekeeping-2.0.3-2.el7ost.noarch.rpm openstack-octavia-worker-2.0.3-2.el7ost.noarch.rpm python-octavia-2.0.3-2.el7ost.noarch.rpm ppc64le: openstack-octavia-debuginfo-2.0.3-2.el7ost.ppc64le.rpm python-octavia-tests-golang-2.0.3-2.el7ost.ppc64le.rpm x86_64: openstack-octavia-debuginfo-2.0.3-2.el7ost.x86_64.rpm python-octavia-tests-golang-2.0.3-2.el7ost.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2018-16856 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2019 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBXIpYTtzjgjWX9erEAQhc4w/9Erw6jFpW2LgY3PLmEyEbuZpENhjZDaGz by2y05d4678w0KzAVW3oEeW1+FchgNw364e316sfum1qUsmRBcdaZ1fpuVk49Hmr NVW2cxFVf0nJy8tdz8iUyv1pauBLwrn2wjIRN5kffK4/MLvlmr0EEnNJxlWv/0dy GeP3cE2i2+BqT+C/teIQ8QiU7ALflmRucI8wi+b+3fbImeQGgnsXvV21YUHxLSTf mELhyn72cAc5WvV450GN+5CHbcIouNgMaCPfPQklDM8MpTk6zTP9KZDmjAJRAePy v4Fm3TI1e3bLPQHWO4zMetOMUscU8p/HCyQXTmBfsdUoNnNdQpaDdDuldKjN9cA/ TJt9XG4ftfuq0d3LijL/KFdtgu1i25CsFfeLXrYUawnsQF3PSqlGHJzldiPtjBry ifvxHX8JK9jLJgUt0st2d5Pl/C72NW1hx/LxZZSBjV/yoHdd03lUcQrHzw1EmLYF kCVhoiJLSwfDoa+zsUI8btegNgNsoG3DU8z+FM5u5YF6yQBFliiavqBNSosU7o3w Zxkt+oWYlKWSyBOD08WzWb+QVWPAipThPof8BNbssQtTuvRgBcJTXXRJwD5rihXw 44UC0Jld15ia1Zju3KnwGG6EPtOXnR4tjXjQOg1zdv1T3jkQagT6Gr3qtuAvIkr8 SYsITSH1o9k=JjdT -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Mar 14, 2019
Red Hat
89
security advisorybuffer overflowFedoraFedora 29: 2018-3fbc181b3e High: Keepalived Buffer Overflow Fix
Security fix for CVE-2018-19044, CVE-2018-19045, CVE-2018-19046, CVE-2018-19115. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2018-3fbc181b3e 2018-12-11 02:42:14.381642 --------------------------------------------------------------------------------Name : keepalived Product : Fedora 29 Version : 2.0.10 Release : 1.fc29 URL : https://www.keepalived.org/ Summary : High Availability monitor built upon LVS, VRRP and service pollers Description : Keepalived provides simple and robust facilities for load balancing and high availability to Linux system and Linux based infrastructures. The load balancing framework relies on well-known and widely used Linux Virtual Server (IPVS) kernel module providing Layer4 load balancing. Keepalived implements a set of checkers to dynamically and adaptively maintain and manage load-balanced server pool according their health. High availability is achieved by VRRP protocol. VRRP is a fundamental brick for router failover. In addition, keepalived implements a set of hooks to the VRRP finite state machine providing low-level and high-speed protocol interactions. Keepalived frameworks can be used independently or all together to provide resilient infrastructures. --------------------------------------------------------------------------------Update Information: Security fix for CVE-2018-19044, CVE-2018-19045, CVE-2018-19046, CVE-2018-19115 --------------------------------------------------------------------------------ChangeLog: * Mon Nov 26 2018 Ryan O'Hara - 2.0.10-1 - Update to 2.0.10 - Fix improper pathname validation (#1651864, CVE-2018-19044) - Fix insecure permissions when creating temporary files (#1651868, CVE-2018-19045) - Fix insecure use of temporary files (#1651870, CVE-2018-19046) - Fix buffer overflow when parsing HTTP status codes (#1651873,CVE-2018-19047) --------------------------------------------------------------------------------References: [ 1 ] Bug #1651863 - CVE-2018-19044 keepalived: Improper pathname validation allows for overwrite of arbitrary filenames via symlinks https://bugzilla.redhat.com/show_bug.cgi?id=1651863 [ 2 ] Bug #1651866 - CVE-2018-19045 keepalived: Insecure permissions when creating new temporary files allows for leaking of sensitive data https://bugzilla.redhat.com/show_bug.cgi?id=1651866 [ 3 ] Bug #1651869 - CVE-2018-19046 keepalived: Insecure use of temporary files allows attackers read sensitive information from pre-existing files https://bugzilla.redhat.com/show_bug.cgi?id=1651869 [ 4 ] Bug #1651871 - CVE-2018-19115 keepalived: Heap-based buffer overflow when parsing HTTP status codes allows for denial of service or possibly arbitrary code execution https://bugzilla.redhat.com/show_bug.cgi?id=1651871 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2018-3fbc181b3e' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Dec 11, 2018
Fedora
98
security advisoryaccess flawremote attackUbuntu: USN-2023-0107-01 High: Piranha Security Vulnerability
An updated piranha package that fixes one security issue is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having Important security impact. A Common Vulnerability Scoring System (CVSS). -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Important: piranha security update Advisory ID: RHSA-2014:0174-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2014:0174.html Issue date: 2014-02-13 CVE Names: CVE-2013-6492 ==================================================================== 1. Summary: An updated piranha package that fixes one security issue is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having Important security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. 2. Relevant releases/architectures: RHEL Clustering (v. 5 server) - i386, ia64, ppc, x86_64 3. Description: Piranha provides high-availability and load-balancing services for Red Hat Enterprise Linux. The piranha packages contain various tools to administer and configure the Linux Virtual Server (LVS), as well as the heartbeat and failover components. LVS is a dynamically-adjusted kernel routing mechanism that provides load balancing, primarily for Web and FTP servers. It was discovered that the Piranha Configuration Tool did not properly restrict access to its web pages. A remote attacker able to connect to the Piranha Configuration Tool web server port could use this flaw to read or modify the LVS configuration without providing valid administrative credentials. (CVE-2013-6492) All piranha users are advised to upgrade to this updated package, which contains a backported patch to correct this issue. 4.Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/site/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1043040 - CVE-2013-6492 piranha: web UI authentication bypass using POST requests 6. Package List: RHEL Clustering (v. 5 server): Source: i386: piranha-0.8.4-26.el5_10.1.i386.rpm piranha-debuginfo-0.8.4-26.el5_10.1.i386.rpm ia64: piranha-0.8.4-26.el5_10.1.ia64.rpm piranha-debuginfo-0.8.4-26.el5_10.1.ia64.rpm ppc: piranha-0.8.4-26.el5_10.1.ppc.rpm piranha-debuginfo-0.8.4-26.el5_10.1.ppc.rpm x86_64: piranha-0.8.4-26.el5_10.1.x86_64.rpm piranha-debuginfo-0.8.4-26.el5_10.1.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7. References: https://access.redhat.com/security/cve/CVE-2013-6492 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2014 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFS/RSSXlSAg2UNWIIRAllvAKCDxPbXEcGglUZgFc+IE08NOXzFcwCdGKqD jYmbn1MRFF5DMUDrMAw3yEw=Hts1 -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list
Feb 13, 2014
•Important
Red Hat
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!