Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 29 articles for you...
217
security advisorymoderatesecurity updateOracle Linux 9 ELSA-2024-0811 Moderate: Sudo Control Character Update
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2024-0811 https://linux.oracle.com/errata/ELSA-2024-0811.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: sudo-1.9.5p2-10.el9_3.x86_64.rpm sudo-python-plugin-1.9.5p2-10.el9_3.x86_64.rpm aarch64: sudo-1.9.5p2-10.el9_3.aarch64.rpm sudo-python-plugin-1.9.5p2-10.el9_3.aarch64.rpm SRPMS: https://oss.oracle.com:443/ol9/SRPMS-updates//sudo-1.9.5p2-10.el9_3.src.rpm Related CVEs: CVE-2023-28486 CVE-2023-28487 CVE-2023-42465 Description of changes: RHEL 9.3.0.Z ERRATUM [1.9.5p2-10] - CVE-2023-28487 sudo: Sudo does not escape control characters in sudoreplay output Resolves: RHEL-21834 - CVE-2023-28486 sudo: Sudo does not escape control characters in log messages Resolves: RHEL-21828 - CVE-2023-42465 sudo: Targeted Corruption of Register and Stack Variables Resolves: RHEL-21821 RHEL 8.9.0.Z ERRATUM [1.9.5p2-1] - Rebase to 1.9.5p2 - CVE-2023-28486 sudo: Sudo does not escape control characters in log messages Resolves: RHEL-21825 - CVE-2023-28487 sudo: Sudo does not escape control characters in sudoreplay output Resolves: RHEL-21831 - CVE-2023-42465 sudo: Targeted Corruption of Register and Stack Variables Resolves: RHEL-21820 _______________________________________________ El-errata mailing list
Feb 16, 2024
Oracle
217
security advisorysudoModerateOracle Linux 8 ELSA-2024-0812 Low: Sudo Privilege Escalation
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2024-0811 https://linux.oracle.com/errata/ELSA-2024-0811.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network: x86_64: sudo-1.9.5p2-1.el8_9.x86_64.rpm aarch64: sudo-1.9.5p2-1.el8_9.aarch64.rpm SRPMS: https://oss.oracle.com:443/ol8/SRPMS-updates//sudo-1.9.5p2-1.el8_9.src.rpm Related CVEs: CVE-2023-28486 CVE-2023-28487 CVE-2023-42465 Description of changes: RHEL 9.3.0.Z ERRATUM [1.9.5p2-10] - CVE-2023-28487 sudo: Sudo does not escape control characters in sudoreplay output Resolves: RHEL-21834 - CVE-2023-28486 sudo: Sudo does not escape control characters in log messages Resolves: RHEL-21828 - CVE-2023-42465 sudo: Targeted Corruption of Register and Stack Variables Resolves: RHEL-21821 RHEL 8.9.0.Z ERRATUM [1.9.5p2-1] - Rebase to 1.9.5p2 - CVE-2023-28486 sudo: Sudo does not escape control characters in log messages Resolves: RHEL-21825 - CVE-2023-28487 sudo: Sudo does not escape control characters in sudoreplay output Resolves: RHEL-21831 - CVE-2023-42465 sudo: Targeted Corruption of Register and Stack Variables Resolves: RHEL-21820 _______________________________________________ El-errata mailing list
Feb 16, 2024
Oracle
89
security advisorycriticalFedoraFedora 39: FEDORA-2024-cdccda4f62 critical: sudo stack corruption issue
Rabase to 1.9.15p5. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-cdccda4f62 2024-01-28 03:07:02.755047 -------------------------------------------------------------------------------- Name : sudo Product : Fedora 39 Version : 1.9.15 Release : 1.p5.fc39 URL : Summary : Allows restricted root access for specified users Description : Sudo (superuser do) allows a system administrator to give certain users (or groups of users) the ability to run some (or all) commands as root while logging all commands and arguments. Sudo operates on a per-command basis. It is not a replacement for the shell. Features include: the ability to restrict what commands a user may run on a per-host basis, copious logging of each command (providing a clear audit trail of who did what), a configurable timeout of the sudo command, and the ability to use the same configuration file (sudoers) on many different machines. -------------------------------------------------------------------------------- Update Information: Rabase to 1.9.15p5 -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 24 2024 Radovan Sroka - 1.9.15-1 - Rabase to 1.9.15p5 - sudo-1_9_15p5 is available Resolves: rhbz#2248505 - TRIAGE CVE-2023-42465 sudo: Targeted Corruption of Register and Stack Variables Resolves: rhbz#2255569 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2248505 - sudo-1_9_15p5 is available https://bugzilla.redhat.com/show_bug.cgi?id=2248505 [ 2 ] Bug #2255569 - TRIAGE CVE-2023-42465 sudo: Targeted Corruption of Register and Stack Variables [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2255569 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade--advisory FEDORA-2024-cdccda4f62' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Jan 28, 2024
•Critical
Fedora
98
security advisoryRed Hatbuffer overflowRed Hat Enterprise Linux 7.6 RHSA-2021-3315-1 Moderate: glibc Security Flaw
An update for glibc is now available for Red Hat Enterprise Linux 7.6 Advanced Update Support, Red Hat Enterprise Linux 7.6 Telco Extended Update Support, and Red Hat Enterprise Linux 7.6 Update Services for SAP Solutions.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: glibc security and bug fix update Advisory ID: RHSA-2021:3315-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2021:3315 Issue date: 2021-08-31 CVE Names: CVE-2020-10029 CVE-2020-29573 ==================================================================== 1. Summary: An update for glibc is now available for Red Hat Enterprise Linux 7.6 Advanced Update Support, Red Hat Enterprise Linux 7.6 Telco Extended Update Support, and Red Hat Enterprise Linux 7.6 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Server AUS (v. 7.6) - x86_64 Red Hat Enterprise Linux Server E4S (v. 7.6) - ppc64le, x86_64 Red Hat Enterprise Linux Server Optional AUS (v. 7.6) - x86_64 Red Hat Enterprise Linux Server Optional E4S (v. 7.6) - ppc64le, x86_64 Red Hat Enterprise Linux Server Optional TUS (v. 7.6) - x86_64 Red Hat Enterprise Linux Server TUS (v. 7.6) - x86_64 3. Description: The glibc packages provide the standard C libraries (libc), POSIX thread libraries (libpthread), standard math libraries (libm), and the name service cache daemon (nscd) used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fix(es): * glibc: stack corruption from crafted input in cosl, sinl,sincosl, and tanl functions (CVE-2020-10029) * glibc: stack-based buffer overflow if the input to any of the printf family of functions is an 80-bit long double with a non-canonical bit pattern (CVE-2020-29573) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * glibc: Adjust to rpm's find-debuginfo.sh changes, to keep stripping binaries (BZ#1982317) 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 For the update to take effect, all services linked to the glibc library must be restarted, or the system rebooted. 5. Bugs fixed (https://bugzilla.redhat.com/): 1810670 - CVE-2020-10029 glibc: stack corruption from crafted input in cosl, sinl, sincosl, and tanl functions 1905213 - CVE-2020-29573 glibc: stack-based buffer overflow if the input to any of the printf family of functions is an 80-bit long double with a non-canonical bit pattern 1982317 - glibc: Adjust to rpm's find-debuginfo.sh changes, to keep stripping binaries [rhel-7.7] [rhel-7.6.0.z] 6. Package List: Red Hat Enterprise Linux Server AUS (v. 7.6): Source: glibc-2.17-260.el7_6.9.src.rpm x86_64: glibc-2.17-260.el7_6.9.i686.rpm glibc-2.17-260.el7_6.9.x86_64.rpm glibc-common-2.17-260.el7_6.9.x86_64.rpm glibc-debuginfo-2.17-260.el7_6.9.i686.rpm glibc-debuginfo-2.17-260.el7_6.9.x86_64.rpm glibc-debuginfo-common-2.17-260.el7_6.9.i686.rpm glibc-debuginfo-common-2.17-260.el7_6.9.x86_64.rpm glibc-devel-2.17-260.el7_6.9.i686.rpm glibc-devel-2.17-260.el7_6.9.x86_64.rpm glibc-headers-2.17-260.el7_6.9.x86_64.rpm glibc-utils-2.17-260.el7_6.9.x86_64.rpm nscd-2.17-260.el7_6.9.x86_64.rpm Red Hat Enterprise Linux Server E4S (v.7.6): Source: glibc-2.17-260.el7_6.9.src.rpm ppc64le: glibc-2.17-260.el7_6.9.ppc64le.rpm glibc-common-2.17-260.el7_6.9.ppc64le.rpm glibc-debuginfo-2.17-260.el7_6.9.ppc64le.rpm glibc-debuginfo-common-2.17-260.el7_6.9.ppc64le.rpm glibc-devel-2.17-260.el7_6.9.ppc64le.rpm glibc-headers-2.17-260.el7_6.9.ppc64le.rpm glibc-utils-2.17-260.el7_6.9.ppc64le.rpm nscd-2.17-260.el7_6.9.ppc64le.rpm x86_64: glibc-2.17-260.el7_6.9.i686.rpm glibc-2.17-260.el7_6.9.x86_64.rpm glibc-common-2.17-260.el7_6.9.x86_64.rpm glibc-debuginfo-2.17-260.el7_6.9.i686.rpm glibc-debuginfo-2.17-260.el7_6.9.x86_64.rpm glibc-debuginfo-common-2.17-260.el7_6.9.i686.rpm glibc-debuginfo-common-2.17-260.el7_6.9.x86_64.rpm glibc-devel-2.17-260.el7_6.9.i686.rpm glibc-devel-2.17-260.el7_6.9.x86_64.rpm glibc-headers-2.17-260.el7_6.9.x86_64.rpm glibc-utils-2.17-260.el7_6.9.x86_64.rpm nscd-2.17-260.el7_6.9.x86_64.rpm Red Hat Enterprise Linux Server TUS (v. 7.6): Source: glibc-2.17-260.el7_6.9.src.rpm x86_64: glibc-2.17-260.el7_6.9.i686.rpm glibc-2.17-260.el7_6.9.x86_64.rpm glibc-common-2.17-260.el7_6.9.x86_64.rpm glibc-debuginfo-2.17-260.el7_6.9.i686.rpm glibc-debuginfo-2.17-260.el7_6.9.x86_64.rpm glibc-debuginfo-common-2.17-260.el7_6.9.i686.rpm glibc-debuginfo-common-2.17-260.el7_6.9.x86_64.rpm glibc-devel-2.17-260.el7_6.9.i686.rpm glibc-devel-2.17-260.el7_6.9.x86_64.rpm glibc-headers-2.17-260.el7_6.9.x86_64.rpm glibc-utils-2.17-260.el7_6.9.x86_64.rpm nscd-2.17-260.el7_6.9.x86_64.rpm Red Hat Enterprise Linux Server Optional AUS (v. 7.6): x86_64: glibc-debuginfo-2.17-260.el7_6.9.i686.rpm glibc-debuginfo-2.17-260.el7_6.9.x86_64.rpm glibc-debuginfo-common-2.17-260.el7_6.9.i686.rpm glibc-debuginfo-common-2.17-260.el7_6.9.x86_64.rpm glibc-static-2.17-260.el7_6.9.i686.rpm glibc-static-2.17-260.el7_6.9.x86_64.rpm Red Hat Enterprise Linux Server Optional E4S (v.7.6): ppc64le: glibc-debuginfo-2.17-260.el7_6.9.ppc64le.rpm glibc-debuginfo-common-2.17-260.el7_6.9.ppc64le.rpm glibc-static-2.17-260.el7_6.9.ppc64le.rpm x86_64: glibc-debuginfo-2.17-260.el7_6.9.i686.rpm glibc-debuginfo-2.17-260.el7_6.9.x86_64.rpm glibc-debuginfo-common-2.17-260.el7_6.9.i686.rpm glibc-debuginfo-common-2.17-260.el7_6.9.x86_64.rpm glibc-static-2.17-260.el7_6.9.i686.rpm glibc-static-2.17-260.el7_6.9.x86_64.rpm Red Hat Enterprise Linux Server Optional TUS (v. 7.6): x86_64: glibc-debuginfo-2.17-260.el7_6.9.i686.rpm glibc-debuginfo-2.17-260.el7_6.9.x86_64.rpm glibc-debuginfo-common-2.17-260.el7_6.9.i686.rpm glibc-debuginfo-common-2.17-260.el7_6.9.x86_64.rpm glibc-static-2.17-260.el7_6.9.i686.rpm glibc-static-2.17-260.el7_6.9.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2020-10029 https://access.redhat.com/security/cve/CVE-2020-29573 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBYS3nZdzjgjWX9erEAQg1pQ//b985l5bbo8kobfm3dxfALR+sHiqijKii 5KnFvqQnU9Y8gpNbMVTsjVoRegDj05VaaKZi5/MI8wJXuGIJCvt4JtqFy4jqtu9O TGrQH6pApRJdjXN7shNgszWY0r3pNxS4BdOkt5n4dvpTpUxDTBf1kpc/bSzV7wCE gXV1WRlI6wpVdAp9u1kyIhZuSngN7zKBvsHfPXY6c/TA+LsOqD/+nSyAQQZ+sUKL ERTriI2kRZzjKHdIZfZ3zGyNIlgHAVzWHSyk3uQVrbvj+NhrS0g4PEkaj//8FgOA +9QEMaxEItv9bEd5FAkpJJAnhrVtxKD4wKYFpgNa/CTd+r2/LKBtjT/A7SmWuw2L Xi8VwjLwad7U3eOA8weS3Rdo1Q2btB5HB8o5Zr+mdGwSFkMk00LOQpTfkl3AYu1e 4XUI8/yfxr/MrzSBh8LMlmNYrsaW0ezAkHZuya+xtJVrlD5hjus46hnZKK8rzwR8 X+jzZ8rX022fO3mnF77fl9ulPVJEw5RVxIjb/EmEShSpjrwRDIqppPzmNZ12JBF4 QsHGr4LiOYeThGCgwyTwHIUyjIennjyshPQuK0ckGAP+mkyu9hWOwEZ03IWqsGbf NCaAVzGVr+nddRcVcS0Etx/4hZVqjLSKQAm7QCDoy1MiXnPE8RQ6V2HhpM9KfSeE 5ssx7Cob0gE=pF7q -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Aug 31, 2021
Red Hat
98
security advisorysecurity updatebuffer overflowRed Hat 7.7: RHSA-2021-2998-01 Moderate: glibc Buffer Overflow
An update for glibc is now available for Red Hat Enterprise Linux 7.7 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: glibc security update Advisory ID: RHSA-2021:2998-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2021:2998 Issue date: 2021-08-03 CVE Names: CVE-2020-10029 CVE-2020-29573 ==================================================================== 1. Summary: An update for glibc is now available for Red Hat Enterprise Linux 7.7 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux ComputeNode EUS (v. 7.7) - x86_64 Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7) - x86_64 Red Hat Enterprise Linux Server EUS (v. 7.7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional EUS (v. 7.7) - ppc64, ppc64le, s390x, x86_64 3. Description: The glibc packages provide the standard C libraries (libc), POSIX thread libraries (libpthread), standard math libraries (libm), and the name service cache daemon (nscd) used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fix(es): * glibc: stack corruption from crafted input in cosl, sinl, sincosl, and tanl functions (CVE-2020-10029) * glibc: stack-based buffer overflow if the input to any of the printf family of functions is an 80-bit long double with a non-canonical bit pattern(CVE-2020-29573) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 For the update to take effect, all services linked to the glibc library must be restarted, or the system rebooted. 5. Bugs fixed (https://bugzilla.redhat.com/): 1810670 - CVE-2020-10029 glibc: stack corruption from crafted input in cosl, sinl, sincosl, and tanl functions 1905213 - CVE-2020-29573 glibc: stack-based buffer overflow if the input to any of the printf family of functions is an 80-bit long double with a non-canonical bit pattern 6. Package List: Red Hat Enterprise Linux ComputeNode EUS (v. 7.7): Source: glibc-2.17-292.el7_7.2.src.rpm x86_64: glibc-2.17-292.el7_7.2.i686.rpm glibc-2.17-292.el7_7.2.x86_64.rpm glibc-common-2.17-292.el7_7.2.x86_64.rpm glibc-debuginfo-2.17-292.el7_7.2.i686.rpm glibc-debuginfo-2.17-292.el7_7.2.x86_64.rpm glibc-debuginfo-common-2.17-292.el7_7.2.i686.rpm glibc-debuginfo-common-2.17-292.el7_7.2.x86_64.rpm glibc-devel-2.17-292.el7_7.2.i686.rpm glibc-devel-2.17-292.el7_7.2.x86_64.rpm glibc-headers-2.17-292.el7_7.2.x86_64.rpm glibc-utils-2.17-292.el7_7.2.x86_64.rpm nscd-2.17-292.el7_7.2.x86_64.rpm Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7): x86_64: glibc-debuginfo-2.17-292.el7_7.2.i686.rpm glibc-debuginfo-2.17-292.el7_7.2.x86_64.rpm glibc-debuginfo-common-2.17-292.el7_7.2.i686.rpm glibc-debuginfo-common-2.17-292.el7_7.2.x86_64.rpm glibc-static-2.17-292.el7_7.2.i686.rpm glibc-static-2.17-292.el7_7.2.x86_64.rpm Red Hat Enterprise Linux Server EUS (v.7.7): Source: glibc-2.17-292.el7_7.2.src.rpm ppc64: glibc-2.17-292.el7_7.2.ppc.rpm glibc-2.17-292.el7_7.2.ppc64.rpm glibc-common-2.17-292.el7_7.2.ppc64.rpm glibc-debuginfo-2.17-292.el7_7.2.ppc.rpm glibc-debuginfo-2.17-292.el7_7.2.ppc64.rpm glibc-debuginfo-common-2.17-292.el7_7.2.ppc.rpm glibc-debuginfo-common-2.17-292.el7_7.2.ppc64.rpm glibc-devel-2.17-292.el7_7.2.ppc.rpm glibc-devel-2.17-292.el7_7.2.ppc64.rpm glibc-headers-2.17-292.el7_7.2.ppc64.rpm glibc-utils-2.17-292.el7_7.2.ppc64.rpm nscd-2.17-292.el7_7.2.ppc64.rpm ppc64le: glibc-2.17-292.el7_7.2.ppc64le.rpm glibc-common-2.17-292.el7_7.2.ppc64le.rpm glibc-debuginfo-2.17-292.el7_7.2.ppc64le.rpm glibc-debuginfo-common-2.17-292.el7_7.2.ppc64le.rpm glibc-devel-2.17-292.el7_7.2.ppc64le.rpm glibc-headers-2.17-292.el7_7.2.ppc64le.rpm glibc-utils-2.17-292.el7_7.2.ppc64le.rpm nscd-2.17-292.el7_7.2.ppc64le.rpm s390x: glibc-2.17-292.el7_7.2.s390.rpm glibc-2.17-292.el7_7.2.s390x.rpm glibc-common-2.17-292.el7_7.2.s390x.rpm glibc-debuginfo-2.17-292.el7_7.2.s390.rpm glibc-debuginfo-2.17-292.el7_7.2.s390x.rpm glibc-debuginfo-common-2.17-292.el7_7.2.s390.rpm glibc-debuginfo-common-2.17-292.el7_7.2.s390x.rpm glibc-devel-2.17-292.el7_7.2.s390.rpm glibc-devel-2.17-292.el7_7.2.s390x.rpm glibc-headers-2.17-292.el7_7.2.s390x.rpm glibc-utils-2.17-292.el7_7.2.s390x.rpm nscd-2.17-292.el7_7.2.s390x.rpm x86_64: glibc-2.17-292.el7_7.2.i686.rpm glibc-2.17-292.el7_7.2.x86_64.rpm glibc-common-2.17-292.el7_7.2.x86_64.rpm glibc-debuginfo-2.17-292.el7_7.2.i686.rpm glibc-debuginfo-2.17-292.el7_7.2.x86_64.rpm glibc-debuginfo-common-2.17-292.el7_7.2.i686.rpm glibc-debuginfo-common-2.17-292.el7_7.2.x86_64.rpm glibc-devel-2.17-292.el7_7.2.i686.rpm glibc-devel-2.17-292.el7_7.2.x86_64.rpm glibc-headers-2.17-292.el7_7.2.x86_64.rpm glibc-utils-2.17-292.el7_7.2.x86_64.rpm nscd-2.17-292.el7_7.2.x86_64.rpm Red Hat Enterprise Linux Server Optional EUS (v.7.7): ppc64: glibc-debuginfo-2.17-292.el7_7.2.ppc.rpm glibc-debuginfo-2.17-292.el7_7.2.ppc64.rpm glibc-debuginfo-common-2.17-292.el7_7.2.ppc.rpm glibc-debuginfo-common-2.17-292.el7_7.2.ppc64.rpm glibc-static-2.17-292.el7_7.2.ppc.rpm glibc-static-2.17-292.el7_7.2.ppc64.rpm ppc64le: glibc-debuginfo-2.17-292.el7_7.2.ppc64le.rpm glibc-debuginfo-common-2.17-292.el7_7.2.ppc64le.rpm glibc-static-2.17-292.el7_7.2.ppc64le.rpm s390x: glibc-debuginfo-2.17-292.el7_7.2.s390.rpm glibc-debuginfo-2.17-292.el7_7.2.s390x.rpm glibc-debuginfo-common-2.17-292.el7_7.2.s390.rpm glibc-debuginfo-common-2.17-292.el7_7.2.s390x.rpm glibc-static-2.17-292.el7_7.2.s390.rpm glibc-static-2.17-292.el7_7.2.s390x.rpm x86_64: glibc-debuginfo-2.17-292.el7_7.2.i686.rpm glibc-debuginfo-2.17-292.el7_7.2.x86_64.rpm glibc-debuginfo-common-2.17-292.el7_7.2.i686.rpm glibc-debuginfo-common-2.17-292.el7_7.2.x86_64.rpm glibc-static-2.17-292.el7_7.2.i686.rpm glibc-static-2.17-292.el7_7.2.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2020-10029 https://access.redhat.com/security/cve/CVE-2020-29573 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBYQlJT9zjgjWX9erEAQiw6w/9HhKP3tEuORNF+m+9GZZtfJSs5SUQ1ruB 9GBtXPDc34GEXata9TjOnfTG8E0ByfNxHF4smY/qbjaqR3yQWunluid1QbtY/EER DY9xxsUmDQiGGgHHQtYQvKtrSsPgtTtwGjgJuO7RiCk8O/dUPMRbicXvT2K2FEv4 OkMKL3wI82KHtCk9sXHvk96nCBIRzPKL4b72eBuYF5+LNw6hSUqd6632GHq2q0cO cTCTTIYZ7ZZjsLXTYQatCczP88L7a1jYt9P1cYgM8H0VIJG9rYYEG1Z+DIVYK4BX qFHf+i0dlWx7I1KIuumuyMv8NyJ78NGLzx4VjbDqj8tU08DLEGRtipPeK1wnlgPO uLANR+u312P7Eok8PulNT/6EYBUAzjqRkJExxAj4mCJTmGtrYsiF4zpmU3F+k17h N8jN9rlEF00oKhRdSvsIGXWQ1parELrV14izwVdeCV7ZFDInzaHM0XrPZz+LReSy 9yuymcpos1uiZL+hiqSkN6nu6MpcLFhqJS8k2OwlGnyvyTGF5OjVItWPa4f8twNq VZC7Yt+Pc29bM7YwqdEb8YavQyZfU8wMh/6E/r2YVAIsS4mP62vL3mF0Z/WQwLYS 7sSY4RRiAq1ITz8Lyc/fbo1ZFeFQrOw84hI3aJYkW3VFDGAmr9f+6QV9vV0/wdeL HJ8+B97qZf8=d7dm -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Aug 03, 2021
•Important
Red Hat
203
security advisorymoderateheap corruptionMageia: 2021-0187 Moderate: GStreamer Memory Access Threats
GStreamer before 1.18.4 might access already-freed memory in error code paths when demuxing certain malformed Matroska files (SA-2021-0002). GStreamer before 1.18.4 might cause heap corruption when parsing certain malformed Matroska files (SA-2021-0003). . MGASA-2021-0187 - Updated gstreamer1.0 packages fix security vulnerabilities Publication date: 15 Apr 2021 URL: https://advisories.mageia.org/MGASA-2021-0187.html Type: security Affected Mageia releases: 7, 8 GStreamer before 1.18.4 might access already-freed memory in error code paths when demuxing certain malformed Matroska files (SA-2021-0002). GStreamer before 1.18.4 might cause heap corruption when parsing certain malformed Matroska files (SA-2021-0003). GStreamer before 1.18.4 might do an out-of-bounds read when handling certain RealMedia files or streams (SA-2021-0004). GStreamer before 1.18.4 might cause stack corruptions with streams that have more than 64 audio channels (SA-2021-0005). It might be possible for a malicious third party to trigger a crash in the application, but possibly also an arbitrary code execution with the privileges of the target user. References: - https://bugs.mageia.org/show_bug.cgi?id=28685 - - - - - SRPMS: - 7/core/gstreamer1.0-libav-1.16.0-1.1.mga7 - 7/core/gstreamer1.0-plugins-good-1.16.0-1.1.mga7 - 7/core/gstreamer1.0-plugins-ugly-1.16.0-1.1.mga7 - 7/tainted/gstreamer1.0-plugins-ugly-1.16.0-1.1.mga7.tainted - 8/tainted/gstreamer1.0-plugins-ugly-1.18.3-1.1.mga8.tainted - 8/core/gstreamer1.0-libav-1.18.3-1.1.mga8 - 8/core/gstreamer1.0-plugins-good-1.18.3-1.2.mga8 - 8/core/gstreamer1.0-plugins-ugly-1.18.3-1.1.mga8 . Revised gstreamer1.0 packages address various security vulnerabilities in Mageia related to memory management and heap integrity.. GStreamer Security Update,Mageia 7 Security,Mageia 8 Security,Memory Access Issues,Heap Corruption. . Severity: Important. LinuxSecurity.com Team
Apr 15, 2021
•Important
Mageia
89
security advisorycriticalsoftware updateFedora 34: 2021-05-15 OpenSSH Vulnerability Severe: 8.4p1 Buffer Overflow
Update to Samba 4.13.7 - Security fixes for CVE-2020-27840 and CVE-2021-20277 ---- Update to Samba 4.13.6 - Security fixes for CVE-2020-27840 and CVE-2021-20277. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-1a8e93a285 2021-04-07 15:39:02.487939 --------------------------------------------------------------------------------Name : samba Product : Fedora 33 Version : 4.13.7 Release : 0.fc33 URL : Summary : Server and Client software to interoperate with Windows machines Description : Samba is the standard Windows interoperability suite of programs for Linux and Unix. --------------------------------------------------------------------------------Update Information: Update to Samba 4.13.7 - Security fixes for CVE-2020-27840 and CVE-2021-20277 ---- Update to Samba 4.13.6 - Security fixes for CVE-2020-27840 and CVE-2021-20277 --------------------------------------------------------------------------------ChangeLog: * Thu Mar 25 2021 Guenther Deschner - 4.13.7-0 - Update to Samba 4.13.7 - related: #1941400, #1942496 - Security fixes for CVE-2020-27840 - related: #1941402, #1942497 - Security fixes for CVE-2021-20277 * Wed Mar 24 2021 Guenther Deschner - 4.13.6-0 - Update to Samba 4.13.6 - resolves: #1941400, #1942496 - Security fixes for CVE-2020-27840 - resolves: #1941402, #1942497 - Security fixes for CVE-2021-20277 --------------------------------------------------------------------------------References: [ 1 ] Bug #1941400 - CVE-2020-27840 samba: Heap corruption via crafted DN strings https://bugzilla.redhat.com/show_bug.cgi?id=1941400 [ 2 ] Bug #1941402 - CVE-2021-20277 samba: Out of bounds read in AD DC LDAP server https://bugzilla.redhat.com/show_bug.cgi?id=1941402 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisoryFEDORA-2021-1a8e93a285' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Apr 07, 2021
•Important
Fedora
100
security advisoryDoScritical fixSUSE: 2020:14557-1 Important: Xen Security Update Summary
An update that solves 6 vulnerabilities and has one errata is now available. . SUSE Security Update: Security update for xen ______________________________________________________________________________ Announcement ID: SUSE-SU-2020:14557-1 Rating: important References: #1177409 #1177412 #1177413 #1177414 #1178591 #1178935 #1178963 Cross-References: CVE-2020-25723 CVE-2020-27670 CVE-2020-27671 CVE-2020-27672 CVE-2020-27674 CVE-2020-28368 Affected Products: SUSE Linux Enterprise Server 11-SP4-LTSS SUSE Linux Enterprise Debuginfo 11-SP4 ______________________________________________________________________________ An update that solves 6 vulnerabilities and has one errata is now available. Description: This update for xen fixes the following issues: - bsc#1178963 - stack corruption from XSA-346 change (XSA-355) - bsc#1178935 - CVE-2020-25723: assertion failure through usb_packet_unmap() in hw/usb/hcd-ehci.c - bsc#1177409 - CVE-2020-27674: x86 PV guest INVLPG-like flushes may leave stale TLB entries (XSA-286) - bsc#1177412 - CVE-2020-27672: Race condition in Xen mapping code (XSA-345) - bsc#1177413 - CVE-2020-27671: undue deferral of IOMMU TLB flushes (XSA-346) - bsc#1177414 - CVE-2020-27670: unsafe AMD IOMMU page table updates (XSA-347) - bsc#1178591 - CVE-2020-28368: Intel RAPL sidechannel attack aka PLATYPUS attack aka XSA-351 Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Server 11-SP4-LTSS: zypper in -t patch slessp4-xen-14557=1 - SUSE Linux Enterprise Debuginfo 11-SP4: zypper in -t patch dbgsp4-xen-14557=1 Package List: - SUSE Linux Enterprise Server 11-SP4-LTSS (i586 x86_64): xen-kmp-default-4.4.4_46_3.0.101_108.117-61.58.1 xen-libs-4.4.4_46-61.58.1 xen-tools-domU-4.4.4_46-61.58.1 - SUSE Linux Enterprise Server 11-SP4-LTSS (x86_64): xen-4.4.4_46-61.58.1 xen-doc-html-4.4.4_46-61.58.1 xen-libs-32bit-4.4.4_46-61.58.1 xen-tools-4.4.4_46-61.58.1 - SUSE Linux Enterprise Server 11-SP4-LTSS (i586): xen-kmp-pae-4.4.4_46_3.0.101_108.117-61.58.1 - SUSE Linux Enterprise Debuginfo 11-SP4 (i586 x86_64): xen-debuginfo-4.4.4_46-61.58.1 xen-debugsource-4.4.4_46-61.58.1 References: https://www.suse.com/security/cve/CVE-2020-25723.html https://www.suse.com/security/cve/CVE-2020-27670.html https://www.suse.com/security/cve/CVE-2020-27671.html https://www.suse.com/security/cve/CVE-2020-27672.html https://www.suse.com/security/cve/CVE-2020-27674.html https://www.suse.com/security/cve/CVE-2020-28368.html https://bugzilla.suse.com/show_bug.cgi?id=1177409 https://bugzilla.suse.com/show_bug.cgi?id=1177412 https://bugzilla.suse.com/show_bug.cgi?id=1177413 https://bugzilla.suse.com/show_bug.cgi?id=1177414 https://bugzilla.suse.com/show_bug.cgi?id=1178591 https://bugzilla.suse.com/show_bug.cgi?id=1178935 https://bugzilla.suse.com/show_bug.cgi?id=1178963 . Essential SUSE security patch for xen tackles multiple severe vulnerabilities. Uncover the problems and update information today.. SUSE Linux, Xen Security Update, Critical Patch Details. . Severity: Important. LinuxSecurity.com Team
Dec 08, 2020
•Important
SuSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!