Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -1 articles for you...
89
security advisoryFedoramoderate severityFedora 39 FEDORA-2024-40ee18b2e7 Moderate: Loupe Denial of Service
This update contains builds from a mini-mass-rebuild for Rust applications (and some C-style libraries). Rebuilding with the Rust 1.78 toolchain should fix incomplete debug information for the Rust standard library (and the resulting low-quality stack traces). Additionally, builds will have picked up fixes for some minor low-priority. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-40ee18b2e7 2024-06-02 03:36:56.060441 -------------------------------------------------------------------------------- Name : loupe Product : Fedora 39 Version : 45.3 Release : 2.fc39 URL : Summary : Image viewer Description : An image viewer application written with GTK 4, Libadwaita and Rust. Features: - Fast GPU accelerated image rendering with tiled rendering for SVGs - Extendable and sandboxed (expect SVG) image decoding - Support for more than 15 image formats by default - Extensive support for touchpad and touchscreen gestures - Accessible presentation of the most important metadata - Sleek but powerful interface developed in conjunction with GNOME Human Interface Guidelines -------------------------------------------------------------------------------- Update Information: This update contains builds from a mini-mass-rebuild for Rust applications (and some C-style libraries). Rebuilding with the Rust 1.78 toolchain should fix incomplete debug information for the Rust standard library (and the resulting low-quality stack traces). Additionally, builds will have picked up fixes for some minor low-priority security and / or safety fixes in crate dependencies that had not yet been handled via a separate (targeted) rebuild: h2 v0.3.26+ (denial-of-service): https://rustsec.org/advisories/RUSTSEC-2024-0332.html glib v0.19.4+ and backports (UB): core/pull/1343 hashbrown v0.14.5+ (UB): https://github.com/rust-lang/hashbrown/pull/511 rustls v0.22.4+, v0.21.11+(denial-of-service): https://rustsec.org/advisories/RUSTSEC-2024-0336.html -------------------------------------------------------------------------------- ChangeLog: * Fri May 24 2024 Fabio Valentini - 45.3-2 - Rebuild with Rust 1.78 to fix incomplete debuginfo and backtraces -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-40ee18b2e7' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Jun 02, 2024
Fedora
89
security advisorydenial of serviceupdateFedora 40: FEDORA-2024-ce2936b568 Minimal Threats: rust-uu_expand Issues
This update contains builds from a mini-mass-rebuild for Rust applications (and some C-style libraries). Rebuilding with the Rust 1.78 toolchain should fix incomplete debug information for the Rust standard library (and the resulting low-quality stack traces). Additionally, builds will have picked up fixes for some minor low-priority. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-ce2936b568 2024-05-26 01:25:15.719720 -------------------------------------------------------------------------------- Name : rust-uu_expand Product : Fedora 40 Version : 0.0.23 Release : 3.fc40 URL : Summary : expand ~ (uutils) convert input tabs to spaces Description : expand ~ (uutils) convert input tabs to spaces. -------------------------------------------------------------------------------- Update Information: This update contains builds from a mini-mass-rebuild for Rust applications (and some C-style libraries). Rebuilding with the Rust 1.78 toolchain should fix incomplete debug information for the Rust standard library (and the resulting low-quality stack traces). Additionally, builds will have picked up fixes for some minor low-priority security and / or safety fixes in crate dependencies that had not yet been handled via a separate (targeted) rebuild: h2 v0.3.26+ (denial-of-service): https://rustsec.org/advisories/RUSTSEC-2024-0332.html glib v0.19.4+ and backports (UB): core/pull/1343 hashbrown v0.14.5+ (UB): https://github.com/rust-lang/hashbrown/pull/511 rustls v0.22.4+, v0.21.11+ (denial-of-service): https://rustsec.org/advisories/RUSTSEC-2024-0336.html -------------------------------------------------------------------------------- ChangeLog: * Thu May 23 2024 Fabio Valentini - 0.0.23-3 - Rebuild with Rust 1.78 to fix incomplete debuginfo and backtraces -------------------------------------------------------------------------------- This update can be installed with the"dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-ce2936b568' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
May 26, 2024
•Low
Fedora
89
security advisorydenial of servicefedoraFedora 40: 2024:04-25 Hazardous Update: Rust-Gitui DoS Advisory
This update contains builds from a mini-mass-rebuild for Rust applications (and some C-style libraries). Rebuilding with the Rust 1.78 toolchain should fix incomplete debug information for the Rust standard library (and the resulting low-quality stack traces). Additionally, builds will have picked up fixes for some minor low-priority. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-ce2936b568 2024-05-26 01:25:15.719720 -------------------------------------------------------------------------------- Name : rust-gitui Product : Fedora 40 Version : 0.24.3 Release : 5.fc40 URL : Summary : Blazing fast terminal-ui for git Description : Blazing fast terminal-ui for git. -------------------------------------------------------------------------------- Update Information: This update contains builds from a mini-mass-rebuild for Rust applications (and some C-style libraries). Rebuilding with the Rust 1.78 toolchain should fix incomplete debug information for the Rust standard library (and the resulting low-quality stack traces). Additionally, builds will have picked up fixes for some minor low-priority security and / or safety fixes in crate dependencies that had not yet been handled via a separate (targeted) rebuild: h2 v0.3.26+ (denial-of-service): https://rustsec.org/advisories/RUSTSEC-2024-0332.html glib v0.19.4+ and backports (UB): core/pull/1343 hashbrown v0.14.5+ (UB): https://github.com/rust-lang/hashbrown/pull/511 rustls v0.22.4+, v0.21.11+ (denial-of-service): https://rustsec.org/advisories/RUSTSEC-2024-0336.html -------------------------------------------------------------------------------- ChangeLog: * Thu May 23 2024 Fabio Valentini - 0.24.3-5 - Rebuild with Rust 1.78 to fix incomplete debuginfo and backtraces -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c'dnf upgrade --advisory FEDORA-2024-ce2936b568' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
May 26, 2024
•Important
Fedora
89
security advisorysecurity patchminor issuesFedora 22 GnuPG2 Security Update: Minor Issues Resolved
Updated package from upstream fixing minor security issues.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-5943 2015-04-10 17:05:22 -------------------------------------------------------------------------------- Name : gnupg2 Product : Fedora 22 Version : 2.1.2 Release : 2.fc22 URL : http://www.gnupg.org/ Summary : Utility for secure communication and data storage Description : GnuPG is GNU's tool for secure communication and data storage. It can be used to encrypt data and to create digital signatures. It includes an advanced key management facility and is compliant with the proposed OpenPGP Internet standard as described in RFC2440 and the S/MIME standard as described by several RFCs. GnuPG 2.0 is a newer version of GnuPG with additional support for S/MIME. It has a different design philosophy that splits functionality up into several modules. The S/MIME and smartcard functionality is provided by the gnupg2-smime package. -------------------------------------------------------------------------------- Update Information: Updated package from upstream fixing minor security issues. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1178759 - gnupg2: double free in cmd_readkey() https://bugzilla.redhat.com/show_bug.cgi?id=1178759 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update gnupg2' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailinglist
Apr 22, 2015
•Important
Fedora
100
security practicesminor issuesupdate reportSUSE 2010:008 Security Advisory Addresses Low Profile Vulnerabilities
To avoid flooding mailing lists with SUSE Security Announcements for minor To avoid flooding mailing lists with SUSE Security Announcements for minor issues, SUSE Security releases weekly summary reports for the low profile issues, SUSE Security releases weekly summary reports for the low profile vulnerability fixes. The SUSE Security Summary Reports do not list or download URLs like the SUSE Secu [More...]. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ______________________________________________________________________________ SUSE Security Summary Report Announcement ID: SUSE-SR:2010:008 Date: Wed, 07 Apr 2010 13:00:00 +0000 Cross-References: CVE-2008-5515, CVE-2009-2693, CVE-2009-2901 CVE-2009-2902, CVE-2009-3389, CVE-2009-3555 CVE-2010-0082, CVE-2010-0084, CVE-2010-0085 CVE-2010-0087, CVE-2010-0088, CVE-2010-0089 CVE-2010-0090, CVE-2010-0091, CVE-2010-0092 CVE-2010-0093, CVE-2010-0094, CVE-2010-0095 CVE-2010-0547, CVE-2010-0732, CVE-2010-0837 CVE-2010-0838, CVE-2010-0839, CVE-2010-0840 CVE-2010-0841, CVE-2010-0842, CVE-2010-0843 CVE-2010-0844, CVE-2010-0845, CVE-2010-0846 CVE-2010-0847, CVE-2010-0848, CVE-2010-0849 CVE-2010-0850, CVE-2010-0926 Content of this advisory: 1) Solved Security Vulnerabilities: - gnome-screensaver - tomcat5, tomcat6 - libtheora - java-1_6_0-sun - samba 2) Pending Vulnerabilities, Solutions, and Work-Arounds: none 3) Authenticity Verification and Additional Information ______________________________________________________________________________ 1)Solved Security Vulnerabilities To avoid flooding mailing lists with SUSE Security Announcements for minor issues, SUSE Security releases weekly summary reports for the low profile vulnerability fixes. The SUSE Security Summary Reports do not list or download URLs like the SUSE Security Announcements that are released for more severe vulnerabilities. Fixed packages for the following incidents are already available on our FTP server and via the YaST Online Update. - gnome-screensaver Pressing the "Return" key repeatedly caused an X error that terminated gnome-screensaver (CVE-2010-0732). Affected Products: SLE11, openSUSE 11.0, 11.1, 11.2 - tomcat5, tomcat6 tomcat was updated to fix several security issues: - CVE-2009-2693, CVE-2009-2902: Directory traversal vulnerability allowed remote attackers to create or overwrite arbitrary files/dirs with a specially crafted WAR file. - CVE-2009-2901: When autoDeploy is enabled the autodeployment process deployed appBase files that remain from a failed undeploy, which might allow remote attackers to bypass intended authentication requirements via HTTP requests. - CVE-2008-5515: When using the RequestDispatcher method, it was possible for remote attackers to bypass intended access restrictions and conduct directory traversal attacks. Affected Products: SLES9, SLE10-SP2, SLE10-SP3, SLE11, openSUSE 11.0, 11.1, 11.2 - libtheora An integer overflow was fixed in libtheora. It could be exploited remotely to execute arbitrary code (CVE-2009-3389). Affected Products: SLE11, openSUSE 11.0, 11.1, 11.2 - java-1_6_0-sun Sun Java 6 Update 19 was released to fix a large number of security issues, including several buffer overflows. (CVE-2010-0082, CVE-2010-0084, CVE-2010-0085, CVE-2010-0087, CVE-2010-0088, CVE-2010-0089, CVE-2010-0090, CVE-2010-0091, CVE-2010-0092, CVE-2010-0093,CVE-2010-0094, CVE-2010-0095, CVE-2010-0837, CVE-2010-0838, CVE-2010-0839, CVE-2010-0840, CVE-2010-0841, CVE-2010-0842, CVE-2010-0843, CVE-2010-0844, CVE-2010-0845, CVE-2010-0846, CVE-2010-0847, CVE-2010-0848, CVE-2010-0849, CVE-2010-0850). This update also disables unsafe TLS renegotiations (CVE-2009-3555). Please refer to the following document for more information: https://www.oracle.com/java/technologies/ Affected Products: SLE11, openSUSE 11.0, 11.1, 11.2 - samba With enabled "wide links" samba follows symbolic links on the server side, therefore allowing clients to overwrite arbitrary files (CVE-2010-0926). This update changes the default setting to have "wide links" disabled by default. The new default only works if "wide links" is not set explicitly in smb.conf. Due to a race condition in mount.cifs a local attacker could corrupt /etc/mtab if mount.cifs is installed setuid root. mount.cifs is not setuid root by default and it's not recommended to change that (CVE-2010-0547). Affected Products: SLES9, SLE10-SP2, SLE10-SP3, SLE11, openSUSE 11.0, 11.1, 11.2 ______________________________________________________________________________ 2) Pending Vulnerabilities, Solutions, and Work-Arounds none ______________________________________________________________________________ 3) Authenticity Verification and Additional Information - Announcement authenticity verification: SUSE security announcements are published via mailing lists and on Web sites. The authenticity and integrity of a SUSE security announcement is guaranteed by a cryptographic signature in each announcement. All SUSE security announcements are published with a valid signature. To verify the signature of the announcement, save it as text into a file and run the command gpg --verify replacing with the name of the file containing the announcement. The output for a validsignature looks like: gpg: Signature made using RSA key ID 3D25D3D9 gpg: Good signature from "SuSE Security Team " where is replaced by the date the document was signed. If the security team's key is not contained in your key ring, you can import it from the first installation CD. To import the key, use the command gpg --import gpg-pubkey-3d25d3d9-36e12d04.asc - Package authenticity verification: SUSE update packages are available on many mirror FTP servers all over the world. While this service is considered valuable and important to the free and open source software community, the authenticity and integrity of a package needs to be verified to ensure that it has not been tampered with. The internal RPM package signatures provide an easy way to verify the authenticity of an RPM package. Use the command rpm -v --checksig to verify the signature of the package, replacing with the filename of the RPM package downloaded. The package is unmodified if it contains a valid signature from
Apr 07, 2010
•Low
SuSE
89
security advisoryFedoraminor issuesFedora: FEDORA-2009-4928 Minor: Mingw32-opensc Security Issue Fix
CVE-2009-1603 A minor update fixing security problem within pkcs11-tool command. . -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2009-4928 2009-05-14 02:30:27 -------------------------------------------------------------------------------- Name : mingw32-opensc Product : Fedora 10 Version : 0.11.8 Release : 1.fc10 URL : Summary : MingGW Windows OpenSC library Description : OpenSC is a package for for accessing smart card devices. Basic functionality (e.g. SELECT FILE, READ BINARY) should work on any ISO 7816-4 compatible smart card. Encryption and decryption using private keys on the smart card is possible with PKCS #15 compatible cards, such as the FINEID (Finnish Electronic IDentity) card. Swedish Posten eID cards have also been confirmed to work. This is the MinGW cross-compiled Windows library. -------------------------------------------------------------------------------- Update Information: CVE-2009-1603 A minor update fixing security problem within pkcs11-tool command. -------------------------------------------------------------------------------- References: [ 1 ] Bug #499862 - opensec: insecure public exponent in opensc 0.11.7 https://bugzilla.redhat.com/show_bug.cgi?id=499862 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update mingw32-opensc' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at -------------------------------------------------------------------------------- _______________________________________________ Fedora-package-announce mailing list
Jun 02, 2009
Fedora
89
security advisoryfedorabug fixesFedora 9 PAM Security Update 2009-3231 Moderate: Minor Issues Resolved
Update to new minor upstream release. Minor security issue fixes and bug fixes.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2009-3231 2009-04-02 16:29:22 --------------------------------------------------------------------------------Name : pam Product : Fedora 9 Version : 1.0.4 Release : 4.fc9 URL : Summary : A security tool which provides authentication for applications Description : PAM (Pluggable Authentication Modules) is a system security tool that allows system administrators to set authentication policy without having to recompile programs that handle authentication. --------------------------------------------------------------------------------Update Information: Update to new minor upstream release. Minor security issue fixes and bug fixes. --------------------------------------------------------------------------------ChangeLog: * Mon Mar 30 2009 Tomas Mraz 1.0.4-4 - replace libtool to drop unneeded /lib64 rpath * Thu Mar 26 2009 Tomas Mraz 1.0.4-3 - replace all std descriptors when calling helpers (#491471) * Tue Mar 17 2009 Tomas Mraz 1.0.4-2 - update to new upstream minor release (bugfixes and minor security fixes) - drop tests for not pulling in libpthread (as NPTL should be safe) * Tue Sep 23 2008 Tomas Mraz 1.0.2-2 - new password quality checks in pam_cracklib - report failed logins from btmp in pam_lastlog - allow larger groups in modutil functions - fix leaked file descriptor in pam_tally * Wed May 21 2008 Tomas Mraz 1.0.1-4 - pam_namespace: allow safe creation of directories owned by user (#437116) - pam_unix: fix multiple error prompts on password change (#443872) * Tue May 20 2008 Tomas Mraz 1.0.1-3 - pam_selinux: add env_params option which will be used by OpenSSH - fix build with new autoconf --------------------------------------------------------------------------------References: [ 1 ] Bug #489932 - CVE-2009-0887 pam:integer signedness error in _pam_StrTok() https://bugzilla.redhat.com/show_bug.cgi?id=489932 [ 2 ] Bug #487216 - CVE-2009:0579 pam: MINDAYS not respected by pam for password changing https://bugzilla.redhat.com/show_bug.cgi?id=487216 --------------------------------------------------------------------------------This update can be installed with the "yum" update program. Use su -c 'yum update pam' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ Fedora-package-announce mailing list
Apr 14, 2009
Fedora
98
security advisoryupdatered hatRed Hat 7.x: RHSA-2003:243-01 moderate: Apache Multiple Threats
Updated Apache and mod_ssl packages that fix several minor security issuesare now available for Red Hat Linux 7.1, 7.2, and 7.3.. ` - --------------------------------------------------------------------- Red Hat Security Advisory Synopsis: Updated Apache and mod_ssl packages fix security vulnerabilities Advisory ID: RHSA-2003:243-01 Issue date: 2003-09-22 Updated on: 2003-09-22 Product: Red Hat Linux Keywords: Apache httpd ASF APR Cross references: Obsoletes: RHSA-2002:222 CVE Names: CAN-2003-0020 CAN-2003-0192 - --------------------------------------------------------------------- 1. Topic: Updated Apache and mod_ssl packages that fix several minor security issues are now available for Red Hat Linux 7.1, 7.2, and 7.3. 2. Relevant releases/architectures: Red Hat Linux 7.1 - i386 Red Hat Linux 7.2 - i386, ia64 Red Hat Linux 7.3 - i386 3. Problem description: The Apache HTTP server is a powerful, full-featured, efficient, and freely-available Web server. Ben Laurie found a bug in the optional renegotiation code in mod_ssl which can cause cipher suite restrictions to be ignored. This is triggered if optional renegotiation is used (SSLOptions +OptRenegotiate) along with verification of client certificates and a change to the cipher suite over the renegotiation. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2003-0192 to this issue. Apache does not filter terminal escape sequences from its error logs, which could make it easier for attackers to insert those sequences into terminal emulators containing vulnerabilities related to escape sequences. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2003-0020 to this issue. It is possible to get Apache 1.3 to get into an infinite loop handling internal redirects and nested subrequests. A patch for this issue adds a new LimitInternalRecursion directive. All users of the Apache HTTP WebServer are advised to upgrade to the applicable errata packages, which contain back-ported fixes correcting these issues. After the errata packages are installed, restart the Web service by running the following command: /sbin/service httpd restart 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. To update all RPMs for your particular architecture, run: rpm -Fvh [filenames] where [filenames] is a list of the RPMs you wish to upgrade. Only those RPMs which are currently installed will be updated. Those RPMs which are not installed but included in the list will not be updated. Note that you can also use wildcards (*.rpm) if your current directory *only* contains the desired RPMs. Please note that this update is also available via Red Hat Network. Many people find this an easier way to apply updates. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date This will start an interactive process that will result in the appropriate RPMs being upgraded on your system. If up2date fails to connect to Red Hat Network due to SSL Certificate Errors, you need to install a version of the up2date client with an updated certificate. The latest version of up2date is available from the Red Hat FTP site and may also be downloaded directly from the RHN website: 5. Bug IDs fixed ( for more info): 60281 - OPTIONS no longer respected in init.d/httpd for apache-1.3.22-2 72245 - service httpd reload problem 6. RPMs required: Red Hat Linux 7.1: SRPMS: i386: Red Hat Linux 7.2: SRPMS: i386: ia64: Red Hat Linux 7.3: SRPMS: i386: 7. Verification: MD5 sum Package Name - -------------------------------------------------------------------------- f197c629453e162ebf1a8a9fa27ab798 7.1/en/os/SRPMS/apache-1.3.27-2.7.1.src.rpm 2bb3043fe65f7e5b4051fa51fa259c9c7.1/en/os/SRPMS/mod_ssl-2.8.12-2.7.src.rpm 0d64a821ceb6a18ec3c551015ffaecc2 7.1/en/os/i386/apache-1.3.27-2.7.1.i386.rpm 6c0826aa00722236ef84e3fb1d7a3b2d 7.1/en/os/i386/apache-devel-1.3.27-2.7.1.i386.rpm b542d3e0cb43d4baa70ec564dba2ddf8 7.1/en/os/i386/apache-manual-1.3.27-2.7.1.i386.rpm a3dff92085849cd597ce65655b048de1 7.1/en/os/i386/mod_ssl-2.8.12-2.7.i386.rpm acdcd860d21a442da7c87901f8fcacf1 7.2/en/os/SRPMS/apache-1.3.27-2.7.2.src.rpm b5b4f0f56e6517b8ea1f844e8bbc781d 7.2/en/os/SRPMS/mod_ssl-2.8.12-3.src.rpm d8d6d8a31e08e93b7e1d7c2c54cdca66 7.2/en/os/i386/apache-1.3.27-2.7.2.i386.rpm a75457af20ef5ac7f801c16a41c11dd5 7.2/en/os/i386/apache-devel-1.3.27-2.7.2.i386.rpm f0e4ba3b547a3db09a01cb293d624cb2 7.2/en/os/i386/apache-manual-1.3.27-2.7.2.i386.rpm 5cd0f10d7e8872625183fd6f1c8d6f47 7.2/en/os/i386/mod_ssl-2.8.12-3.i386.rpm 6aa40d6ca82e9943a260e38350101995 7.2/en/os/ia64/apache-1.3.27-2.7.2.ia64.rpm 7df30828fdd2d04320e24e5719665c66 7.2/en/os/ia64/apache-devel-1.3.27-2.7.2.ia64.rpm 00e251842cdf3ba774fee104daf609ed 7.2/en/os/ia64/apache-manual-1.3.27-2.7.2.ia64.rpm bd71f84c890c80daf587e45a1b782249 7.2/en/os/ia64/mod_ssl-2.8.12-3.ia64.rpm 2e1f774bba76f3dadf3051aa6954413e 7.3/en/os/SRPMS/apache-1.3.27-3.src.rpm b5b4f0f56e6517b8ea1f844e8bbc781d 7.3/en/os/SRPMS/mod_ssl-2.8.12-3.src.rpm b4bd3fb8dd33052899f661870c4dad16 7.3/en/os/i386/apache-1.3.27-3.i386.rpm 67c0cc1567568ffdb4857a4049dcc6e7 7.3/en/os/i386/apache-devel-1.3.27-3.i386.rpm 2ada85a57c3c220a082ef8ce23e96bff 7.3/en/os/i386/apache-manual-1.3.27-3.i386.rpm 5cd0f10d7e8872625183fd6f1c8d6f47 7.3/en/os/i386/mod_ssl-2.8.12-3.i386.rpm These packages are GPG signed by Red Hat for security. Our key is available from https://access.redhat.com/security/team/key You can verify each package with the following command: rpm --checksig -v If you only wish to verify that each package has not been corrupted or tampered with, examine only the md5sum with the following command: md5sum 8. References: Apache Week. Apache 2.0.47 released CVE-CVE-2003-0020 CVE -CVE-2003-0192 9. Contact: The Red Hat security contact is . More contact details at https://www.redhat.com/en/technologies/all-products Copyright 2003 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQE/brVLXlSAg2UNWIIRAmN3AJ0Zart1VTlMKbx4i73/G6nnEXRykQCfVGhl syNHjBNOCYE0kO0NMJcAZA0=/slD -----END PGP SIGNATURE----- `. Recent updates to the Nginx and OpenSSL libraries for CentOS Linux effectively tackle a range of minor security flaws.. Apache Security, Mod_Ssl Fix, Red Hat Update. . LinuxSecurity.com Team
Sep 22, 2003
Red Hat
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!