Explore top 10 tips to secure your open-source projects now. Read More
×
Fix for remote vulnerabilities against OpenPrinting cups-filters. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-01127974ec 2024-09-28 01:26:49.812274 -------------------------------------------------------------------------------- Name : cups-browsed Product : Fedora 40 Version : 2.0.1 Release : 3.fc40 URL : https://github.com/OpenPrinting/cups-browsed Summary : Daemon for local auto-installation of remote printers Description : cups-browsed is a helper daemon, which automatically installs printers locally, provides load balancing and clustering of print queues. The daemon installs the printers based on found mDNS records and CUPS broadcast, or by polling a remote print server. -------------------------------------------------------------------------------- Update Information: Fix for remote vulnerabilities against OpenPrinting cups-filters -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 26 2024 Justin M. Forbes - 1:2.0.1-2 - Fix for CVE-2024-47176 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2314997 - [Major Incident] CVE-2024-47176 cups-browsed: cups-browsed binds on UDP INADDR_ANY:631 trusting any packet from any source [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2314997 [ 2 ] Bug #2315000 - [Major Incident] CVE-2024-47076 libcupsfilters: `cfGetPrinterAttributes` API does not perform sanitization on returned IPP attributes [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2315000 [ 3 ] Bug #2315004 - [Major Incident] CVE-2024-47175 libppd: remote command injection via attacker controlled data in PPD file [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2315004 [ 4 ] Bug #2315005 - [Major Incident] CVE-2024-47177 cups-filters: foomatic-rip in cups-filters allows arbitrary command execution viathe FoomaticRIPCommandLine PPD parameter [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2315005 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-01127974ec' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Fix for remote vulnerabilities against OpenPrinting cups-filters. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-01127974ec 2024-09-28 01:26:49.812274 -------------------------------------------------------------------------------- Name : libcupsfilters Product : Fedora 40 Version : 2.1~b1 Release : 3.fc40 URL : https://github.com/OpenPrinting/libcupsfilters Summary : Library for developing printing filters Description : Libcupsfilters provides a library, which implements common functions used in cups-browsed daemon and printing filters, and additional files as banner templates and character sets. The filters are used in CUPS daemon and in printer applications. -------------------------------------------------------------------------------- Update Information: Fix for remote vulnerabilities against OpenPrinting cups-filters -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 26 2024 Justin M. Forbes - 1:2.1~b1-3 - Fix for CVE-2024-47076 * Thu Aug 22 2024 Marek Kasik - 1:2.1~b1-2 - Rebuild for poppler 24.08.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2314997 - [Major Incident] CVE-2024-47176 cups-browsed: cups-browsed binds on UDP INADDR_ANY:631 trusting any packet from any source [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2314997 [ 2 ] Bug #2315000 - [Major Incident] CVE-2024-47076 libcupsfilters: `cfGetPrinterAttributes` API does not perform sanitization on returned IPP attributes [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2315000 [ 3 ] Bug #2315004 - [Major Incident] CVE-2024-47175 libppd: remote command injection via attacker controlled data in PPD file [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2315004 [ 4 ] Bug #2315005 - [Major Incident] CVE-2024-47177 cups-filters:foomatic-rip in cups-filters allows arbitrary command execution via the FoomaticRIPCommandLine PPD parameter [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2315005 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-01127974ec' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Fix for remote vulnerabilities against OpenPrinting cups-filters. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-cf6ab63871 2024-09-28 01:19:53.104014 -------------------------------------------------------------------------------- Name : libcupsfilters Product : Fedora 39 Version : 2.1~b1 Release : 3.fc39 URL : https://github.com/OpenPrinting/libcupsfilters Summary : Library for developing printing filters Description : Libcupsfilters provides a library, which implements common functions used in cups-browsed daemon and printing filters, and additional files as banner templates and character sets. The filters are used in CUPS daemon and in printer applications. -------------------------------------------------------------------------------- Update Information: Fix for remote vulnerabilities against OpenPrinting cups-filters -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 26 2024 Justin M. Forbes - 1:2.1~b1-3 - Fix for CVE-2024-47076 * Thu Aug 22 2024 Marek Kasik - 1:2.1~b1-2 - Rebuild for poppler 24.08.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2314996 - [Major Incident] CVE-2024-47176 cups-browsed: cups-browsed binds on UDP INADDR_ANY:631 trusting any packet from any source [fedora-39] https://bugzilla.redhat.com/show_bug.cgi?id=2314996 [ 2 ] Bug #2314999 - [Major Incident] CVE-2024-47076 libcupsfilters: `cfGetPrinterAttributes` API does not perform sanitization on returned IPP attributes [fedora-39] https://bugzilla.redhat.com/show_bug.cgi?id=2314999 [ 3 ] Bug #2315002 - [Major Incident] CVE-2024-47175 libppd: remote command injection via attacker controlled data in PPD file [fedora-39] https://bugzilla.redhat.com/show_bug.cgi?id=2315002 [ 4 ] Bug #2315003 - [Major Incident] CVE-2024-47177 cups-filters:foomatic-rip in cups-filters allows arbitrary command execution via the FoomaticRIPCommandLine PPD parameter [fedora-39] https://bugzilla.redhat.com/show_bug.cgi?id=2315003 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-cf6ab63871' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
An update for kernel is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: kernel security update Advisory ID: RHSA-2022:1589-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2022:1589 Issue date: 2022-04-26 CVE Names: CVE-2022-0435 ==================================================================== 1. Summary: An update for kernel is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux BaseOS E4S (v. 8.1) - aarch64, noarch, ppc64le, s390x, x86_64 3. Description: The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: remote stack overflow via kernel panic on systems using TIPC may lead to DoS (CVE-2022-0435) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 The system must be rebooted for this update to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 2048738 - CVE-2022-0435 kernel: remote stack overflow via kernel panic on systems usingTIPC may lead to DoS 6. Package List: Red Hat Enterprise Linux BaseOS E4S (v.8.1): Source: kernel-4.18.0-147.65.1.el8_1.src.rpm aarch64: bpftool-4.18.0-147.65.1.el8_1.aarch64.rpm bpftool-debuginfo-4.18.0-147.65.1.el8_1.aarch64.rpm kernel-4.18.0-147.65.1.el8_1.aarch64.rpm kernel-core-4.18.0-147.65.1.el8_1.aarch64.rpm kernel-cross-headers-4.18.0-147.65.1.el8_1.aarch64.rpm kernel-debug-4.18.0-147.65.1.el8_1.aarch64.rpm kernel-debug-core-4.18.0-147.65.1.el8_1.aarch64.rpm kernel-debug-debuginfo-4.18.0-147.65.1.el8_1.aarch64.rpm kernel-debug-devel-4.18.0-147.65.1.el8_1.aarch64.rpm kernel-debug-modules-4.18.0-147.65.1.el8_1.aarch64.rpm kernel-debug-modules-extra-4.18.0-147.65.1.el8_1.aarch64.rpm kernel-debuginfo-4.18.0-147.65.1.el8_1.aarch64.rpm kernel-debuginfo-common-aarch64-4.18.0-147.65.1.el8_1.aarch64.rpm kernel-devel-4.18.0-147.65.1.el8_1.aarch64.rpm kernel-headers-4.18.0-147.65.1.el8_1.aarch64.rpm kernel-modules-4.18.0-147.65.1.el8_1.aarch64.rpm kernel-modules-extra-4.18.0-147.65.1.el8_1.aarch64.rpm kernel-tools-4.18.0-147.65.1.el8_1.aarch64.rpm kernel-tools-debuginfo-4.18.0-147.65.1.el8_1.aarch64.rpm kernel-tools-libs-4.18.0-147.65.1.el8_1.aarch64.rpm perf-4.18.0-147.65.1.el8_1.aarch64.rpm perf-debuginfo-4.18.0-147.65.1.el8_1.aarch64.rpm python3-perf-4.18.0-147.65.1.el8_1.aarch64.rpm python3-perf-debuginfo-4.18.0-147.65.1.el8_1.aarch64.rpm noarch: kernel-abi-whitelists-4.18.0-147.65.1.el8_1.noarch.rpm kernel-doc-4.18.0-147.65.1.el8_1.noarch.rpm ppc64le: bpftool-4.18.0-147.65.1.el8_1.ppc64le.rpm bpftool-debuginfo-4.18.0-147.65.1.el8_1.ppc64le.rpm kernel-4.18.0-147.65.1.el8_1.ppc64le.rpm kernel-core-4.18.0-147.65.1.el8_1.ppc64le.rpm kernel-cross-headers-4.18.0-147.65.1.el8_1.ppc64le.rpm kernel-debug-4.18.0-147.65.1.el8_1.ppc64le.rpm kernel-debug-core-4.18.0-147.65.1.el8_1.ppc64le.rpm kernel-debug-debuginfo-4.18.0-147.65.1.el8_1.ppc64le.rpm kernel-debug-devel-4.18.0-147.65.1.el8_1.ppc64le.rpm kernel-debug-modules-4.18.0-147.65.1.el8_1.ppc64le.rpm kernel-debug-modules-extra-4.18.0-147.65.1.el8_1.ppc64le.rpm kernel-debuginfo-4.18.0-147.65.1.el8_1.ppc64le.rpm kernel-debuginfo-common-ppc64le-4.18.0-147.65.1.el8_1.ppc64le.rpm kernel-devel-4.18.0-147.65.1.el8_1.ppc64le.rpm kernel-headers-4.18.0-147.65.1.el8_1.ppc64le.rpm kernel-modules-4.18.0-147.65.1.el8_1.ppc64le.rpm kernel-modules-extra-4.18.0-147.65.1.el8_1.ppc64le.rpm kernel-tools-4.18.0-147.65.1.el8_1.ppc64le.rpm kernel-tools-debuginfo-4.18.0-147.65.1.el8_1.ppc64le.rpm kernel-tools-libs-4.18.0-147.65.1.el8_1.ppc64le.rpm perf-4.18.0-147.65.1.el8_1.ppc64le.rpm perf-debuginfo-4.18.0-147.65.1.el8_1.ppc64le.rpm python3-perf-4.18.0-147.65.1.el8_1.ppc64le.rpm python3-perf-debuginfo-4.18.0-147.65.1.el8_1.ppc64le.rpm s390x: bpftool-4.18.0-147.65.1.el8_1.s390x.rpm bpftool-debuginfo-4.18.0-147.65.1.el8_1.s390x.rpm kernel-4.18.0-147.65.1.el8_1.s390x.rpm kernel-core-4.18.0-147.65.1.el8_1.s390x.rpm kernel-cross-headers-4.18.0-147.65.1.el8_1.s390x.rpm kernel-debug-4.18.0-147.65.1.el8_1.s390x.rpm kernel-debug-core-4.18.0-147.65.1.el8_1.s390x.rpm kernel-debug-debuginfo-4.18.0-147.65.1.el8_1.s390x.rpm kernel-debug-devel-4.18.0-147.65.1.el8_1.s390x.rpm kernel-debug-modules-4.18.0-147.65.1.el8_1.s390x.rpm kernel-debug-modules-extra-4.18.0-147.65.1.el8_1.s390x.rpm kernel-debuginfo-4.18.0-147.65.1.el8_1.s390x.rpm kernel-debuginfo-common-s390x-4.18.0-147.65.1.el8_1.s390x.rpm kernel-devel-4.18.0-147.65.1.el8_1.s390x.rpm kernel-headers-4.18.0-147.65.1.el8_1.s390x.rpm kernel-modules-4.18.0-147.65.1.el8_1.s390x.rpm kernel-modules-extra-4.18.0-147.65.1.el8_1.s390x.rpm kernel-tools-4.18.0-147.65.1.el8_1.s390x.rpm kernel-tools-debuginfo-4.18.0-147.65.1.el8_1.s390x.rpm kernel-zfcpdump-4.18.0-147.65.1.el8_1.s390x.rpm kernel-zfcpdump-core-4.18.0-147.65.1.el8_1.s390x.rpm kernel-zfcpdump-debuginfo-4.18.0-147.65.1.el8_1.s390x.rpm kernel-zfcpdump-devel-4.18.0-147.65.1.el8_1.s390x.rpm kernel-zfcpdump-modules-4.18.0-147.65.1.el8_1.s390x.rpm kernel-zfcpdump-modules-extra-4.18.0-147.65.1.el8_1.s390x.rpm perf-4.18.0-147.65.1.el8_1.s390x.rpm perf-debuginfo-4.18.0-147.65.1.el8_1.s390x.rpm python3-perf-4.18.0-147.65.1.el8_1.s390x.rpm python3-perf-debuginfo-4.18.0-147.65.1.el8_1.s390x.rpm x86_64: bpftool-4.18.0-147.65.1.el8_1.x86_64.rpm bpftool-debuginfo-4.18.0-147.65.1.el8_1.x86_64.rpm kernel-4.18.0-147.65.1.el8_1.x86_64.rpm kernel-core-4.18.0-147.65.1.el8_1.x86_64.rpm kernel-cross-headers-4.18.0-147.65.1.el8_1.x86_64.rpm kernel-debug-4.18.0-147.65.1.el8_1.x86_64.rpm kernel-debug-core-4.18.0-147.65.1.el8_1.x86_64.rpm kernel-debug-debuginfo-4.18.0-147.65.1.el8_1.x86_64.rpm kernel-debug-devel-4.18.0-147.65.1.el8_1.x86_64.rpm kernel-debug-modules-4.18.0-147.65.1.el8_1.x86_64.rpm kernel-debug-modules-extra-4.18.0-147.65.1.el8_1.x86_64.rpm kernel-debuginfo-4.18.0-147.65.1.el8_1.x86_64.rpm kernel-debuginfo-common-x86_64-4.18.0-147.65.1.el8_1.x86_64.rpm kernel-devel-4.18.0-147.65.1.el8_1.x86_64.rpm kernel-headers-4.18.0-147.65.1.el8_1.x86_64.rpm kernel-modules-4.18.0-147.65.1.el8_1.x86_64.rpm kernel-modules-extra-4.18.0-147.65.1.el8_1.x86_64.rpm kernel-tools-4.18.0-147.65.1.el8_1.x86_64.rpm kernel-tools-debuginfo-4.18.0-147.65.1.el8_1.x86_64.rpm kernel-tools-libs-4.18.0-147.65.1.el8_1.x86_64.rpm perf-4.18.0-147.65.1.el8_1.x86_64.rpm perf-debuginfo-4.18.0-147.65.1.el8_1.x86_64.rpm python3-perf-4.18.0-147.65.1.el8_1.x86_64.rpm python3-perf-debuginfo-4.18.0-147.65.1.el8_1.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2022-0435 https://access.redhat.com/security/updates/classification/#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBYmhvfNzjgjWX9erEAQjiCg//bzHS5MLjE3N6PlJrIoxkrfated/FZp2z sVcrTujeUaiGm1xziy5VlRzLfUc64miv8Y71RXhmWmT/KrvDuA/03W5U1XSvU58T IdL+mFq0MD9cCPGxYw6Izmdg6rbi7nJ5sMvto8l9/VNWx226r2g/gxKUIGViPRy1 XNZ3fWd0b9HBGrwfGOBju7l3JkUVmWGP5JRZuk5KXRnwBik48jNEq8s9ljv9cRIa 7hsz+BF8kt9MwM1/6qeVQXyShJWOZ6yXGJxo0d5IBnn0x5ImV7fITIovyJ80PErv 41Y2ByAUSvdAcVPTUomNpRFRxm5wl2zkrZss2eyJRgEgBpB8i0JoD7ZzWeKY8Qhu uVEpo0ugDJD04bpzXtSLyZVvWDzWkkSKKr8ZXVVtgOkMooWco8GaNbeZhUZ5yZzG 6/e//vpPlxRMoWt4CphCbBNYSbjAEM+lQ42cUy7SdTUc9rKAOJee7gI6MMimfBio d5AW6bliOxez9oQ2JYDgYN1PlZF2z8RmHG0DB9kR2resgBsESCNLU+VKLn+XHJFy QEz6RjkV4co5bRa+RW63Kxnr45rGMx/Ap6t94kRRcxEKhMI3pBel8qLpo0v55h9W o0AoEMxscdjw93y9ijXwaB0+C7EmCOsXXmGnWoKxUg8HU+pknJxuDLh+J0UW2phR YOEd57P8tU0=JFLF -----END PGP SIGNATURE----- -- RHSA-announce mailing list
It was discovered that the IPv6 support code in Squid does not properly handle certain DNS responses, resulting in deallocation of an invalid pointer and a daemon crash. . -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA1 - -------------------------------------------------------------------------Debian Security Advisory DSA-2381-1
An update for httpd is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: httpd security update Advisory ID: RHSA-2017:2882-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2017:2882 Issue date: 2017-10-11 CVE Names: CVE-2017-9798 ==================================================================== 1. Summary: An update for httpd is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Client Optional (v. 7) - noarch, x86_64 Red Hat Enterprise Linux ComputeNode Optional (v. 7) - noarch, x86_64 Red Hat Enterprise Linux Server (v. 7) - aarch64, noarch, ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - aarch64, ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 7) - noarch, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64 3. Description: The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fix(es): * A use-after-free flaw was found in the way httpd handled invalid and previously unregistered HTTP methods specified in the Limit directive used in an .htaccess file. A remote attacker could possibly use this flaw to disclose portions of the server memory, or cause httpd child processto crash. (CVE-2017-9798) Red Hat would like to thank Hanno Böck for reporting this issue. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 After installing the updated packages, the httpd daemon will be restarted automatically. 5. Bugs fixed (https://bugzilla.redhat.com/): 1490344 - CVE-2017-9798 httpd: Use-after-free by limiting unregistered HTTP method (Optionsbleed) 6. Package List: Red Hat Enterprise Linux Client Optional (v. 7): Source: httpd-2.4.6-67.el7_4.5.src.rpm noarch: httpd-manual-2.4.6-67.el7_4.5.noarch.rpm x86_64: httpd-2.4.6-67.el7_4.5.x86_64.rpm httpd-debuginfo-2.4.6-67.el7_4.5.x86_64.rpm httpd-devel-2.4.6-67.el7_4.5.x86_64.rpm httpd-tools-2.4.6-67.el7_4.5.x86_64.rpm mod_ldap-2.4.6-67.el7_4.5.x86_64.rpm mod_proxy_html-2.4.6-67.el7_4.5.x86_64.rpm mod_session-2.4.6-67.el7_4.5.x86_64.rpm mod_ssl-2.4.6-67.el7_4.5.x86_64.rpm Red Hat Enterprise Linux ComputeNode Optional (v. 7): Source: httpd-2.4.6-67.el7_4.5.src.rpm noarch: httpd-manual-2.4.6-67.el7_4.5.noarch.rpm x86_64: httpd-2.4.6-67.el7_4.5.x86_64.rpm httpd-debuginfo-2.4.6-67.el7_4.5.x86_64.rpm httpd-devel-2.4.6-67.el7_4.5.x86_64.rpm httpd-tools-2.4.6-67.el7_4.5.x86_64.rpm mod_ldap-2.4.6-67.el7_4.5.x86_64.rpm mod_proxy_html-2.4.6-67.el7_4.5.x86_64.rpm mod_session-2.4.6-67.el7_4.5.x86_64.rpm mod_ssl-2.4.6-67.el7_4.5.x86_64.rpm Red Hat Enterprise Linux Server (v.7): Source: httpd-2.4.6-67.el7_4.5.src.rpm aarch64: httpd-2.4.6-67.el7_4.5.aarch64.rpm httpd-debuginfo-2.4.6-67.el7_4.5.aarch64.rpm httpd-devel-2.4.6-67.el7_4.5.aarch64.rpm httpd-tools-2.4.6-67.el7_4.5.aarch64.rpm mod_session-2.4.6-67.el7_4.5.aarch64.rpm mod_ssl-2.4.6-67.el7_4.5.aarch64.rpm noarch: httpd-manual-2.4.6-67.el7_4.5.noarch.rpm ppc64: httpd-2.4.6-67.el7_4.5.ppc64.rpm httpd-debuginfo-2.4.6-67.el7_4.5.ppc64.rpm httpd-devel-2.4.6-67.el7_4.5.ppc64.rpm httpd-tools-2.4.6-67.el7_4.5.ppc64.rpm mod_session-2.4.6-67.el7_4.5.ppc64.rpm mod_ssl-2.4.6-67.el7_4.5.ppc64.rpm ppc64le: httpd-2.4.6-67.el7_4.5.ppc64le.rpm httpd-debuginfo-2.4.6-67.el7_4.5.ppc64le.rpm httpd-devel-2.4.6-67.el7_4.5.ppc64le.rpm httpd-tools-2.4.6-67.el7_4.5.ppc64le.rpm mod_session-2.4.6-67.el7_4.5.ppc64le.rpm mod_ssl-2.4.6-67.el7_4.5.ppc64le.rpm s390x: httpd-2.4.6-67.el7_4.5.s390x.rpm httpd-debuginfo-2.4.6-67.el7_4.5.s390x.rpm httpd-devel-2.4.6-67.el7_4.5.s390x.rpm httpd-tools-2.4.6-67.el7_4.5.s390x.rpm mod_session-2.4.6-67.el7_4.5.s390x.rpm mod_ssl-2.4.6-67.el7_4.5.s390x.rpm x86_64: httpd-2.4.6-67.el7_4.5.x86_64.rpm httpd-debuginfo-2.4.6-67.el7_4.5.x86_64.rpm httpd-devel-2.4.6-67.el7_4.5.x86_64.rpm httpd-tools-2.4.6-67.el7_4.5.x86_64.rpm mod_session-2.4.6-67.el7_4.5.x86_64.rpm mod_ssl-2.4.6-67.el7_4.5.x86_64.rpm Red Hat Enterprise Linux Server Optional (v. 7): aarch64: httpd-debuginfo-2.4.6-67.el7_4.5.aarch64.rpm mod_ldap-2.4.6-67.el7_4.5.aarch64.rpm mod_proxy_html-2.4.6-67.el7_4.5.aarch64.rpm ppc64: httpd-debuginfo-2.4.6-67.el7_4.5.ppc64.rpm mod_ldap-2.4.6-67.el7_4.5.ppc64.rpm mod_proxy_html-2.4.6-67.el7_4.5.ppc64.rpm ppc64le: httpd-debuginfo-2.4.6-67.el7_4.5.ppc64le.rpm mod_ldap-2.4.6-67.el7_4.5.ppc64le.rpm mod_proxy_html-2.4.6-67.el7_4.5.ppc64le.rpm s390x: httpd-debuginfo-2.4.6-67.el7_4.5.s390x.rpm mod_ldap-2.4.6-67.el7_4.5.s390x.rpm mod_proxy_html-2.4.6-67.el7_4.5.s390x.rpm x86_64: httpd-debuginfo-2.4.6-67.el7_4.5.x86_64.rpm mod_ldap-2.4.6-67.el7_4.5.x86_64.rpm mod_proxy_html-2.4.6-67.el7_4.5.x86_64.rpm Red Hat EnterpriseLinux Workstation (v. 7): Source: httpd-2.4.6-67.el7_4.5.src.rpm noarch: httpd-manual-2.4.6-67.el7_4.5.noarch.rpm x86_64: httpd-2.4.6-67.el7_4.5.x86_64.rpm httpd-debuginfo-2.4.6-67.el7_4.5.x86_64.rpm httpd-devel-2.4.6-67.el7_4.5.x86_64.rpm httpd-tools-2.4.6-67.el7_4.5.x86_64.rpm mod_session-2.4.6-67.el7_4.5.x86_64.rpm mod_ssl-2.4.6-67.el7_4.5.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 7): x86_64: httpd-debuginfo-2.4.6-67.el7_4.5.x86_64.rpm mod_ldap-2.4.6-67.el7_4.5.x86_64.rpm mod_proxy_html-2.4.6-67.el7_4.5.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2017-9798 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2017 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iD8DBQFZ3j/PXlSAg2UNWIIRAjj4AJ9aWm7uMM+VXJwqPhBAgru0NzgV7gCfc5c/ 5M8zBAvRPM2JGUVh7UDQOu0=R+Vp -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Fix CVE-2017-11368 (remote triggerable assertion failure in krb5kdc). --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-71c47e1e82 2017-07-25 15:00:33.871985 --------------------------------------------------------------------------------Name : krb5 Product : Fedora 24 Version : 1.14.4 Release : 5.fc24 URL : http://web.mit.edu/kerberos/www/ Summary : The Kerberos network authentication system Description : Kerberos V5 is a trusted-third-party network authentication system, which can improve your network's security by eliminating the insecure practice of sending passwords over the network in unencrypted form. --------------------------------------------------------------------------------Update Information: Fix CVE-2017-11368 (remote triggerable assertion failure in krb5kdc) --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade krb5' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
An update that fixes one vulnerability is now available. An update that fixes one vulnerability is now available. An update that fixes one vulnerability is now available.. openSUSE Security Update: Security update for karchive ______________________________________________________________________________ Announcement ID: openSUSE-SU-2016:1884-1 Rating: important References: #989698 Cross-References: CVE-2016-6232 Affected Products: openSUSE Leap 42.1 openSUSE 13.2 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for karchive fixes the following issues: - CVE-2016-6232: A remote attacker could have been able to overwrite arbitrary files when tricking the user into downloading KDE extras such as wallpapers or Plasma Applets (boo#989698) Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE Leap 42.1: zypper in -t patch openSUSE-2016-904=1 - openSUSE 13.2: zypper in -t patch openSUSE-2016-904=1 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE Leap 42.1 (i586 x86_64): karchive-debugsource-5.21.0-15.1 karchive-devel-5.21.0-15.1 libKF5Archive5-5.21.0-15.1 libKF5Archive5-debuginfo-5.21.0-15.1 - openSUSE Leap 42.1 (x86_64): karchive-devel-32bit-5.21.0-15.1 libKF5Archive5-32bit-5.21.0-15.1 libKF5Archive5-debuginfo-32bit-5.21.0-15.1 - openSUSE 13.2 (i586 x86_64): karchive-debugsource-5.11.0-27.1 karchive-devel-5.11.0-27.1 libKF5Archive5-5.11.0-27.1 libKF5Archive5-debuginfo-5.11.0-27.1 - openSUSE 13.2 (x86_64): karchive-devel-32bit-5.11.0-27.1 libKF5Archive5-32bit-5.11.0-27.1 libKF5Archive5-debuginfo-32bit-5.11.0-27.1 References: https://www.suse.com/security/cve/CVE-2016-6232.html https://bugzilla.suse.com/989698 . openSUSE has released a critical security patch for karchive to mitigate potential risks of unauthorized file overwrite via remote means. Detailed instructions are provided.. openSUSE Security,karchive Update,remote access risk,vulnerability fix. . Severity: Important. LinuxSecurity.com Team
Get the latest Linux and open source security news straight to your inbox.