Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -3 articles for you...
172
security advisorycriticalremote code executionUbuntu 21.04 USN-4942-1 Critical: Firefox Crash Exploit Risk
Firefox could be made to crash or run programs as your login if it opened a malicious website.. =========================================================================Ubuntu Security Notice USN-4942-1 May 10, 2021 firefox vulnerability ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 21.04 - Ubuntu 20.10 - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS Summary: Firefox could be made to crash or run programs as your login if it opened a malicious website. Software Description: - firefox: Mozilla Open Source web browser Details: A race condition was discovered in Web Render Components. If a user were tricked into opening a specially crafted website, an attacker could potentially exploit this to execute arbitrary code. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 21.04: firefox 88.0.1+build1-0ubuntu0.21.04.2 Ubuntu 20.10: firefox 88.0.1+build1-0ubuntu0.20.10.2 Ubuntu 20.04 LTS: firefox 88.0.1+build1-0ubuntu0.20.04.2 Ubuntu 18.04 LTS: firefox 88.0.1+build1-0ubuntu0.18.04.2 After a standard system update you need to restart Firefox to make all the necessary changes. References: https://ubuntu.com/security/notices/USN-4942-1 CVE-2021-29952 Package Information: https://launchpad.net/ubuntu/+source/firefox/88.0.1+build1-0ubuntu0.21.04.2 https://launchpad.net/ubuntu/+source/firefox/88.0.1+build1-0ubuntu0.20.10.2 https://launchpad.net/ubuntu/+source/firefox/88.0.1+build1-0ubuntu0.20.04.2 https://launchpad.net/ubuntu/+source/firefox/88.0.1+build1-0ubuntu0.18.04.2 . Ubuntu 21.04: USN-4942-1 Urgent: Firefox Race Condition Vulnerability Poses Threat from Harmful Sites. Firefox Crash Threat, Ubuntu Security Notice, Critical Exploit Risk. . Severity: Critical.LinuxSecurity.com Team
May 10, 2021
•Critical
Ubuntu
98
security advisoryRed Hatsecurity fixRed Hat: RHSA-2021-0288-01 Critical: Firefox Cross-Origin Issue
An update for firefox is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: firefox security update Advisory ID: RHSA-2021:0288-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2021:0288 Issue date: 2021-01-27 CVE Names: CVE-2020-26976 CVE-2021-23953 CVE-2021-23954 CVE-2021-23960 CVE-2021-23964 ==================================================================== 1. Summary: An update for firefox is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream (v. 8) - aarch64, ppc64le, s390x, x86_64 3. Description: Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 78.7.0 ESR. Security Fix(es): * Mozilla: Cross-origin information leakage via redirected PDF requests (CVE-2021-23953) * Mozilla: Type confusion when using logical assignment operators in JavaScript switch statements (CVE-2021-23954) * Mozilla: Memory safety bugs fixed in Firefox 85 and Firefox ESR 78.7 (CVE-2021-23964) * Mozilla: HTTPS pages could have been intercepted by a registered service worker when they should not have been (CVE-2020-26976) * Mozilla: Use-after-poison for incorrectly redeclared JavaScriptvariables during GC (CVE-2021-23960) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 After installing the update, Firefox must be restarted for the changes to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1920646 - CVE-2021-23953 Mozilla: Cross-origin information leakage via redirected PDF requests 1920648 - CVE-2021-23954 Mozilla: Type confusion when using logical assignment operators in JavaScript switch statements 1920649 - CVE-2020-26976 Mozilla: HTTPS pages could have been intercepted by a registered service worker when they should not have been 1920650 - CVE-2021-23960 Mozilla: Use-after-poison for incorrectly redeclared JavaScript variables during GC 1920651 - CVE-2021-23964 Mozilla: Memory safety bugs fixed in Firefox 85 and Firefox ESR 78.7 6. Package List: Red Hat Enterprise Linux AppStream (v. 8): Source: firefox-78.7.0-2.el8_3.src.rpm aarch64: firefox-78.7.0-2.el8_3.aarch64.rpm firefox-debuginfo-78.7.0-2.el8_3.aarch64.rpm firefox-debugsource-78.7.0-2.el8_3.aarch64.rpm ppc64le: firefox-78.7.0-2.el8_3.ppc64le.rpm firefox-debuginfo-78.7.0-2.el8_3.ppc64le.rpm firefox-debugsource-78.7.0-2.el8_3.ppc64le.rpm s390x: firefox-78.7.0-2.el8_3.s390x.rpm firefox-debuginfo-78.7.0-2.el8_3.s390x.rpm firefox-debugsource-78.7.0-2.el8_3.s390x.rpm x86_64: firefox-78.7.0-2.el8_3.x86_64.rpm firefox-debuginfo-78.7.0-2.el8_3.x86_64.rpm firefox-debugsource-78.7.0-2.el8_3.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7.References: https://access.redhat.com/security/cve/CVE-2020-26976 https://access.redhat.com/security/cve/CVE-2021-23953 https://access.redhat.com/security/cve/CVE-2021-23954 https://access.redhat.com/security/cve/CVE-2021-23960 https://access.redhat.com/security/cve/CVE-2021-23964 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYBGpQtzjgjWX9erEAQgrmBAAjapKLqRXTN59bEkgwM4+BXs1q22w23gk xFwuSqLIM8613OtBKGCKpr+c6AJ9I/VeDaQC7ksgIdz6mruGG83ZKrEwv1cgzHws pe94UvSnUiTlhubTLvF/oFw1mFM8L+651d+GH/T2Mgdhx2yKVn/tNjpL/LV4YW0T hk66oz3vrWlCSUBzsiGin3vFv4XwHlzVcSLOzAuQ1Lch2EC/FGKBiDNR4EWdSb1r XvRj/Y/SrRSnAkwVQJpBfUpaLyUE+TLJ9h1L2KXCRsOuaHx11Q+Ef9t9LRUT0TDr MjNy3fFesMYPoRACmzBV6A5NhSnYH7T+83mMh6XoqoT0frIBBAj2J08uhCRS5sCa leVlH/ftbvR3dLS94y5DC6bsp5ZA9KFQ5gMMXQ6mibc/nAbtd6mC4lQlY8xziUj0 KuJAfEWdq1eFLtjpqo+Fm47Zk9/Xz5QRLr2KY+eNFmXoBEG4W4x511PmP3sDsgd2 n1YjFHLZvQTQIbJks0CtVBqQ4PxjVUUG1xsM7LWceI8OWiAyRSxnwCX9U0fuzzRT WWVEIXkWSzbj/zfYtAGcPfSSUWNhETM6z7y8nAq+3zUyMPgWx8zEy9bpq813WT+2 Pxv8sDx8BPp0fdU/DfGH03qfNi0gb7V6TpOSxGWvLPSVBJnGBQHYO20+zOBl6TZy V7oGb4erhfA=I1Yi -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Jan 27, 2021
•Important
Red Hat
98
security advisoryRed Hat Enterprisecritical severityRed Hat Enterprise Linux: RHSA-2015-0766-01 Critical Firefox Issue
Updated firefox packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System (CVSS) base scores, which give. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Critical: firefox security update Advisory ID: RHSA-2015:0766-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2015:0766.html Issue date: 2015-04-01 CVE Names: CVE-2015-0801 CVE-2015-0807 CVE-2015-0813 CVE-2015-0815 CVE-2015-0816 ==================================================================== 1. Summary: Updated firefox packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux (v. 5 server) - i386, ia64, ppc, s390x, x86_64 Red Hat Enterprise Linux Client (v. 7) - x86_64 Red Hat Enterprise Linux Client Optional (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64 Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64 Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux Desktop Optional (v. 6) - x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 6) - ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, s390x, x86_64 RedHat Enterprise Linux Workstation (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation (v. 7) - x86_64 Red Hat Enterprise Linux Workstation Optional (v. 6) - x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64 3. Description: Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. (CVE-2015-0813, CVE-2015-0815, CVE-2015-0801) A flaw was found in the way documents were loaded via resource URLs in, for example, Mozilla's PDF.js PDF file viewer. An attacker could use this flaw to bypass certain restrictions and under certain conditions even execute arbitrary code with the privileges of the user running Firefox. (CVE-2015-0816) A flaw was found in the Beacon interface implementation in Firefox. A web page containing malicious content could allow a remote attacker to conduct a Cross-Site Request Forgery (CSRF) attack. (CVE-2015-0807) Red Hat would like to thank the Mozilla project for reporting these issues. Upstream acknowledges Christian Holler, Byron Campen, Steve Fink, Mariusz Mlynski, Christoph Kerschbaumer, Muneaki Nishimura, Olli Pettay, Boris Zbarsky, and Aki Helin as the original reporters of these issues. All Firefox users should upgrade to these updated packages, which contain Firefox version 31.6.0 ESR, which corrects these issues. After installing the update, Firefox must be restarted for the changes to take effect. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1207068 - CVE-2015-0815 Mozilla: Miscellaneous memory safety hazards (rv:31.6) (MFSA 2015-30) 1207072 -CVE-2015-0816 Mozilla: resource:// documents can load privileged pages (MFSA 2015-33) 1207076 - CVE-2015-0807 Mozilla: CORS requests should not follow 30x redirections after preflight (MFSA 2015-36) 1207084 - CVE-2015-0801 Mozilla: Same-origin bypass through anchor navigation (MFSA 2015-40) 1207088 - CVE-2015-0813 Mozilla: Use-after-free when using the Fluendo MP3 GStreamer plugin (MFSA 2015-31) 6. Package List: Red Hat Enterprise Linux Desktop (v. 5 client): Source: firefox-31.6.0-2.el5_11.src.rpm i386: firefox-31.6.0-2.el5_11.i386.rpm firefox-debuginfo-31.6.0-2.el5_11.i386.rpm x86_64: firefox-31.6.0-2.el5_11.i386.rpm firefox-31.6.0-2.el5_11.x86_64.rpm firefox-debuginfo-31.6.0-2.el5_11.i386.rpm firefox-debuginfo-31.6.0-2.el5_11.x86_64.rpm Red Hat Enterprise Linux (v. 5 server): Source: firefox-31.6.0-2.el5_11.src.rpm i386: firefox-31.6.0-2.el5_11.i386.rpm firefox-debuginfo-31.6.0-2.el5_11.i386.rpm ia64: firefox-31.6.0-2.el5_11.ia64.rpm firefox-debuginfo-31.6.0-2.el5_11.ia64.rpm ppc: firefox-31.6.0-2.el5_11.ppc.rpm firefox-debuginfo-31.6.0-2.el5_11.ppc.rpm s390x: firefox-31.6.0-2.el5_11.s390.rpm firefox-31.6.0-2.el5_11.s390x.rpm firefox-debuginfo-31.6.0-2.el5_11.s390.rpm firefox-debuginfo-31.6.0-2.el5_11.s390x.rpm x86_64: firefox-31.6.0-2.el5_11.i386.rpm firefox-31.6.0-2.el5_11.x86_64.rpm firefox-debuginfo-31.6.0-2.el5_11.i386.rpm firefox-debuginfo-31.6.0-2.el5_11.x86_64.rpm Red Hat Enterprise Linux Desktop (v. 6): Source: firefox-31.6.0-2.el6_6.src.rpm i386: firefox-31.6.0-2.el6_6.i686.rpm firefox-debuginfo-31.6.0-2.el6_6.i686.rpm x86_64: firefox-31.6.0-2.el6_6.x86_64.rpm firefox-debuginfo-31.6.0-2.el6_6.x86_64.rpm Red Hat Enterprise Linux Desktop Optional (v. 6): x86_64: firefox-31.6.0-2.el6_6.i686.rpm firefox-debuginfo-31.6.0-2.el6_6.i686.rpm Red Hat Enterprise Linux HPC Node Optional (v.6): Source: firefox-31.6.0-2.el6_6.src.rpm x86_64: firefox-31.6.0-2.el6_6.i686.rpm firefox-31.6.0-2.el6_6.x86_64.rpm firefox-debuginfo-31.6.0-2.el6_6.i686.rpm firefox-debuginfo-31.6.0-2.el6_6.x86_64.rpm Red Hat Enterprise Linux Server (v. 6): Source: firefox-31.6.0-2.el6_6.src.rpm i386: firefox-31.6.0-2.el6_6.i686.rpm firefox-debuginfo-31.6.0-2.el6_6.i686.rpm ppc64: firefox-31.6.0-2.el6_6.ppc64.rpm firefox-debuginfo-31.6.0-2.el6_6.ppc64.rpm s390x: firefox-31.6.0-2.el6_6.s390x.rpm firefox-debuginfo-31.6.0-2.el6_6.s390x.rpm x86_64: firefox-31.6.0-2.el6_6.x86_64.rpm firefox-debuginfo-31.6.0-2.el6_6.x86_64.rpm Red Hat Enterprise Linux Server Optional (v. 6): ppc64: firefox-31.6.0-2.el6_6.ppc.rpm firefox-debuginfo-31.6.0-2.el6_6.ppc.rpm s390x: firefox-31.6.0-2.el6_6.s390.rpm firefox-debuginfo-31.6.0-2.el6_6.s390.rpm x86_64: firefox-31.6.0-2.el6_6.i686.rpm firefox-debuginfo-31.6.0-2.el6_6.i686.rpm Red Hat Enterprise Linux Workstation (v. 6): Source: firefox-31.6.0-2.el6_6.src.rpm i386: firefox-31.6.0-2.el6_6.i686.rpm firefox-debuginfo-31.6.0-2.el6_6.i686.rpm x86_64: firefox-31.6.0-2.el6_6.x86_64.rpm firefox-debuginfo-31.6.0-2.el6_6.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 6): x86_64: firefox-31.6.0-2.el6_6.i686.rpm firefox-debuginfo-31.6.0-2.el6_6.i686.rpm Red Hat Enterprise Linux Client (v. 7): Source: firefox-31.6.0-2.el7_1.src.rpm xulrunner-31.6.0-2.el7_1.src.rpm x86_64: firefox-31.6.0-2.el7_1.x86_64.rpm firefox-debuginfo-31.6.0-2.el7_1.x86_64.rpm xulrunner-31.6.0-2.el7_1.i686.rpm xulrunner-31.6.0-2.el7_1.x86_64.rpm xulrunner-debuginfo-31.6.0-2.el7_1.i686.rpm xulrunner-debuginfo-31.6.0-2.el7_1.x86_64.rpm Red Hat Enterprise Linux Client Optional (v. 7): x86_64: firefox-31.6.0-2.el7_1.i686.rpm firefox-debuginfo-31.6.0-2.el7_1.i686.rpm xulrunner-debuginfo-31.6.0-2.el7_1.i686.rpm xulrunner-debuginfo-31.6.0-2.el7_1.x86_64.rpm xulrunner-devel-31.6.0-2.el7_1.i686.rpm xulrunner-devel-31.6.0-2.el7_1.x86_64.rpm Red Hat Enterprise Linux ComputeNode Optional (v.7): Source: xulrunner-31.6.0-2.el7_1.src.rpm x86_64: xulrunner-31.6.0-2.el7_1.i686.rpm xulrunner-31.6.0-2.el7_1.x86_64.rpm xulrunner-debuginfo-31.6.0-2.el7_1.i686.rpm xulrunner-debuginfo-31.6.0-2.el7_1.x86_64.rpm xulrunner-devel-31.6.0-2.el7_1.i686.rpm xulrunner-devel-31.6.0-2.el7_1.x86_64.rpm Red Hat Enterprise Linux Server (v. 7): Source: firefox-31.6.0-2.el7_1.src.rpm xulrunner-31.6.0-2.el7_1.src.rpm ppc64: firefox-31.6.0-2.el7_1.ppc64.rpm firefox-debuginfo-31.6.0-2.el7_1.ppc64.rpm xulrunner-31.6.0-2.el7_1.ppc.rpm xulrunner-31.6.0-2.el7_1.ppc64.rpm xulrunner-debuginfo-31.6.0-2.el7_1.ppc.rpm xulrunner-debuginfo-31.6.0-2.el7_1.ppc64.rpm s390x: firefox-31.6.0-2.el7_1.s390x.rpm firefox-debuginfo-31.6.0-2.el7_1.s390x.rpm x86_64: firefox-31.6.0-2.el7_1.x86_64.rpm firefox-debuginfo-31.6.0-2.el7_1.x86_64.rpm xulrunner-31.6.0-2.el7_1.i686.rpm xulrunner-31.6.0-2.el7_1.x86_64.rpm xulrunner-debuginfo-31.6.0-2.el7_1.i686.rpm xulrunner-debuginfo-31.6.0-2.el7_1.x86_64.rpm Red Hat Enterprise Linux Server (v. 7): Source: firefox-31.6.0-2.ael7b_1.src.rpm xulrunner-31.6.0-2.ael7b_1.src.rpm ppc64le: firefox-31.6.0-2.ael7b_1.ppc64le.rpm firefox-debuginfo-31.6.0-2.ael7b_1.ppc64le.rpm xulrunner-31.6.0-2.ael7b_1.ppc64le.rpm xulrunner-debuginfo-31.6.0-2.ael7b_1.ppc64le.rpm Red Hat Enterprise Linux Server Optional (v.7): Source: xulrunner-31.6.0-2.el7_1.src.rpm ppc64: firefox-31.6.0-2.el7_1.ppc.rpm firefox-debuginfo-31.6.0-2.el7_1.ppc.rpm xulrunner-debuginfo-31.6.0-2.el7_1.ppc.rpm xulrunner-debuginfo-31.6.0-2.el7_1.ppc64.rpm xulrunner-devel-31.6.0-2.el7_1.ppc.rpm xulrunner-devel-31.6.0-2.el7_1.ppc64.rpm s390x: firefox-31.6.0-2.el7_1.s390.rpm firefox-debuginfo-31.6.0-2.el7_1.s390.rpm xulrunner-31.6.0-2.el7_1.s390.rpm xulrunner-31.6.0-2.el7_1.s390x.rpm xulrunner-debuginfo-31.6.0-2.el7_1.s390.rpm xulrunner-debuginfo-31.6.0-2.el7_1.s390x.rpm xulrunner-devel-31.6.0-2.el7_1.s390.rpm xulrunner-devel-31.6.0-2.el7_1.s390x.rpm x86_64: firefox-31.6.0-2.el7_1.i686.rpm firefox-debuginfo-31.6.0-2.el7_1.i686.rpm xulrunner-debuginfo-31.6.0-2.el7_1.i686.rpm xulrunner-debuginfo-31.6.0-2.el7_1.x86_64.rpm xulrunner-devel-31.6.0-2.el7_1.i686.rpm xulrunner-devel-31.6.0-2.el7_1.x86_64.rpm Red Hat Enterprise Linux Server Optional (v. 7): ppc64le: xulrunner-debuginfo-31.6.0-2.ael7b_1.ppc64le.rpm xulrunner-devel-31.6.0-2.ael7b_1.ppc64le.rpm Red Hat Enterprise Linux Workstation (v. 7): Source: firefox-31.6.0-2.el7_1.src.rpm xulrunner-31.6.0-2.el7_1.src.rpm x86_64: firefox-31.6.0-2.el7_1.x86_64.rpm firefox-debuginfo-31.6.0-2.el7_1.x86_64.rpm xulrunner-31.6.0-2.el7_1.i686.rpm xulrunner-31.6.0-2.el7_1.x86_64.rpm xulrunner-debuginfo-31.6.0-2.el7_1.i686.rpm xulrunner-debuginfo-31.6.0-2.el7_1.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 7): x86_64: firefox-31.6.0-2.el7_1.i686.rpm firefox-debuginfo-31.6.0-2.el7_1.i686.rpm xulrunner-debuginfo-31.6.0-2.el7_1.i686.rpm xulrunner-debuginfo-31.6.0-2.el7_1.x86_64.rpm xulrunner-devel-31.6.0-2.el7_1.i686.rpm xulrunner-devel-31.6.0-2.el7_1.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7.References: https://access.redhat.com/security/cve/CVE-2015-0801 https://access.redhat.com/security/cve/CVE-2015-0807 https://access.redhat.com/security/cve/CVE-2015-0813 https://access.redhat.com/security/cve/CVE-2015-0815 https://access.redhat.com/security/cve/CVE-2015-0816 https://access.redhat.com/security/updates/classification/#critical https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-esr/#firefoxesr31.6 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2015 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iD8DBQFVG6otXlSAg2UNWIIRAm9SAJ9kT83FquyCrcKqm9zDzVvZt8cWBwCgmAGm WeGIVo5AKY++dQxX+jcZ7sI=zpih -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list
Apr 01, 2015
•Critical
Red Hat
172
security advisorydenial of serviceUbuntuUbuntu 14.04 LTS USN-2320-1 Critical Oxide Denial Of Service Issues
Several security issues were fixed in Oxide.. =========================================================================Ubuntu Security Notice USN-2320-1 August 20, 2014 oxide-qt vulnerabilities ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 14.04 LTS Summary: Several security issues were fixed in Oxide. Software Description: - oxide-qt: Web browser engine library for Qt (QML plugin) Details: A use-after-free was discovered in the websockets implementation in Blink. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via renderer crash. (CVE-2014-3165) An issue was discovered in the Public Key Pinning implementation in Chromium. An attacker could potentially exploit this to obtain sensitive information. (CVE-2014-3166) Multiple security issues were discovered in Chromium. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service via application crash or execute arbitrary code with the privileges of the user invoking the program. (CVE-2014-3167) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 14.04 LTS: liboxideqtcore0 1.0.5-0ubuntu0.14.04.1 oxideqt-codecs 1.0.5-0ubuntu0.14.04.1 oxideqt-codecs-extra 1.0.5-0ubuntu0.14.04.1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-2320-1 CVE-2014-3165, CVE-2014-3166, CVE-2014-3167, https://bugs.launchpad.net/ubuntu/+source/oxide-qt/+bug/1356372 Package Information: https://launchpad.net/ubuntu/+source/oxide-qt/1.0.5-0ubuntu0.14.04.1 . Ubuntu's security team warns of critical Oxide vulnerabilities leading to potential denial of serviceand information leakage risks, urging immediate updates and monitoring. Ubuntu Advisory, Oxide Security, Web Browser Issues, Update Instructions. . Severity: Critical. LinuxSecurity.com Team
Aug 20, 2014
•Critical
Ubuntu
98
security advisorysecurity updateRed HatRed Hat: RHSA-2011:1344-01 Critical: SeaMonkey Integer Underflow
Updated seamonkey packages that fix two security issues are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having critical [More...]. ==================================================================== Red Hat Security Advisory Synopsis: Critical: seamonkey security update Advisory ID: RHSA-2011:1344-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2011:1344.html Issue date: 2011-09-28 CVE Names: CVE-2011-2998 CVE-2011-2999 ==================================================================== 1. Summary: Updated seamonkey packages that fix two security issues are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Enterprise Linux Desktop version 4 - i386, x86_64 Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64 3. Description: SeaMonkey is an open source web browser, email and newsgroup client, IRC chat client, and HTML editor. A flaw was found in the way SeaMonkey handled frame objects with certain names. An attacker could use this flaw to cause a plug-in to grant its content access to another site or the local file system, violating the same-origin policy. (CVE-2011-2999) An integer underflow flaw was found in the way SeaMonkey handled large JavaScript regular expressions. A web page containing malicious JavaScript could cause SeaMonkey to access already freed memory, causing SeaMonkey to crash or, potentially, execute arbitrary code with the privileges of the user running SeaMonkey.(CVE-2011-2998) All SeaMonkey users should upgrade to these updated packages, which correct these issues. After installing the update, SeaMonkey must be restarted for the changes to take effect. 4. Solution: Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/kb/docs/DOC-11259 5. Bugs fixed (http://bugzilla.redhat.com/): 741904 - CVE-2011-2999 Mozilla: XSS via plugins and shadowed window.location object (MFSA 2011-38) 741924 - CVE-2011-2998 Mozilla: Integer underflow when using JavaScript RegExp (MFSA 2011-37) 6. Package List: Red Hat Enterprise Linux AS version4: Source: i386: seamonkey-1.0.9-76.el4.i386.rpm seamonkey-chat-1.0.9-76.el4.i386.rpm seamonkey-debuginfo-1.0.9-76.el4.i386.rpm seamonkey-devel-1.0.9-76.el4.i386.rpm seamonkey-dom-inspector-1.0.9-76.el4.i386.rpm seamonkey-js-debugger-1.0.9-76.el4.i386.rpm seamonkey-mail-1.0.9-76.el4.i386.rpm ia64: seamonkey-1.0.9-76.el4.ia64.rpm seamonkey-chat-1.0.9-76.el4.ia64.rpm seamonkey-debuginfo-1.0.9-76.el4.ia64.rpm seamonkey-devel-1.0.9-76.el4.ia64.rpm seamonkey-dom-inspector-1.0.9-76.el4.ia64.rpm seamonkey-js-debugger-1.0.9-76.el4.ia64.rpm seamonkey-mail-1.0.9-76.el4.ia64.rpm ppc: seamonkey-1.0.9-76.el4.ppc.rpm seamonkey-chat-1.0.9-76.el4.ppc.rpm seamonkey-debuginfo-1.0.9-76.el4.ppc.rpm seamonkey-devel-1.0.9-76.el4.ppc.rpm seamonkey-dom-inspector-1.0.9-76.el4.ppc.rpm seamonkey-js-debugger-1.0.9-76.el4.ppc.rpm seamonkey-mail-1.0.9-76.el4.ppc.rpm s390: seamonkey-1.0.9-76.el4.s390.rpm seamonkey-chat-1.0.9-76.el4.s390.rpm seamonkey-debuginfo-1.0.9-76.el4.s390.rpm seamonkey-devel-1.0.9-76.el4.s390.rpm seamonkey-dom-inspector-1.0.9-76.el4.s390.rpm seamonkey-js-debugger-1.0.9-76.el4.s390.rpm seamonkey-mail-1.0.9-76.el4.s390.rpm s390x: seamonkey-1.0.9-76.el4.s390x.rpm seamonkey-chat-1.0.9-76.el4.s390x.rpm seamonkey-debuginfo-1.0.9-76.el4.s390x.rpm seamonkey-devel-1.0.9-76.el4.s390x.rpm seamonkey-dom-inspector-1.0.9-76.el4.s390x.rpm seamonkey-js-debugger-1.0.9-76.el4.s390x.rpm seamonkey-mail-1.0.9-76.el4.s390x.rpm x86_64: seamonkey-1.0.9-76.el4.x86_64.rpm seamonkey-chat-1.0.9-76.el4.x86_64.rpm seamonkey-debuginfo-1.0.9-76.el4.x86_64.rpm seamonkey-devel-1.0.9-76.el4.x86_64.rpm seamonkey-dom-inspector-1.0.9-76.el4.x86_64.rpm seamonkey-js-debugger-1.0.9-76.el4.x86_64.rpm seamonkey-mail-1.0.9-76.el4.x86_64.rpm Red Hat Enterprise Linux Desktop version4: Source: i386: seamonkey-1.0.9-76.el4.i386.rpm seamonkey-chat-1.0.9-76.el4.i386.rpm seamonkey-debuginfo-1.0.9-76.el4.i386.rpm seamonkey-devel-1.0.9-76.el4.i386.rpm seamonkey-dom-inspector-1.0.9-76.el4.i386.rpm seamonkey-js-debugger-1.0.9-76.el4.i386.rpm seamonkey-mail-1.0.9-76.el4.i386.rpm x86_64: seamonkey-1.0.9-76.el4.x86_64.rpm seamonkey-chat-1.0.9-76.el4.x86_64.rpm seamonkey-debuginfo-1.0.9-76.el4.x86_64.rpm seamonkey-devel-1.0.9-76.el4.x86_64.rpm seamonkey-dom-inspector-1.0.9-76.el4.x86_64.rpm seamonkey-js-debugger-1.0.9-76.el4.x86_64.rpm seamonkey-mail-1.0.9-76.el4.x86_64.rpm Red Hat Enterprise Linux ES version 4: Source: i386: seamonkey-1.0.9-76.el4.i386.rpm seamonkey-chat-1.0.9-76.el4.i386.rpm seamonkey-debuginfo-1.0.9-76.el4.i386.rpm seamonkey-devel-1.0.9-76.el4.i386.rpm seamonkey-dom-inspector-1.0.9-76.el4.i386.rpm seamonkey-js-debugger-1.0.9-76.el4.i386.rpm seamonkey-mail-1.0.9-76.el4.i386.rpm ia64: seamonkey-1.0.9-76.el4.ia64.rpm seamonkey-chat-1.0.9-76.el4.ia64.rpm seamonkey-debuginfo-1.0.9-76.el4.ia64.rpm seamonkey-devel-1.0.9-76.el4.ia64.rpm seamonkey-dom-inspector-1.0.9-76.el4.ia64.rpm seamonkey-js-debugger-1.0.9-76.el4.ia64.rpm seamonkey-mail-1.0.9-76.el4.ia64.rpm x86_64: seamonkey-1.0.9-76.el4.x86_64.rpm seamonkey-chat-1.0.9-76.el4.x86_64.rpm seamonkey-debuginfo-1.0.9-76.el4.x86_64.rpm seamonkey-devel-1.0.9-76.el4.x86_64.rpm seamonkey-dom-inspector-1.0.9-76.el4.x86_64.rpm seamonkey-js-debugger-1.0.9-76.el4.x86_64.rpm seamonkey-mail-1.0.9-76.el4.x86_64.rpm Red Hat Enterprise Linux WS version4: Source: i386: seamonkey-1.0.9-76.el4.i386.rpm seamonkey-chat-1.0.9-76.el4.i386.rpm seamonkey-debuginfo-1.0.9-76.el4.i386.rpm seamonkey-devel-1.0.9-76.el4.i386.rpm seamonkey-dom-inspector-1.0.9-76.el4.i386.rpm seamonkey-js-debugger-1.0.9-76.el4.i386.rpm seamonkey-mail-1.0.9-76.el4.i386.rpm ia64: seamonkey-1.0.9-76.el4.ia64.rpm seamonkey-chat-1.0.9-76.el4.ia64.rpm seamonkey-debuginfo-1.0.9-76.el4.ia64.rpm seamonkey-devel-1.0.9-76.el4.ia64.rpm seamonkey-dom-inspector-1.0.9-76.el4.ia64.rpm seamonkey-js-debugger-1.0.9-76.el4.ia64.rpm seamonkey-mail-1.0.9-76.el4.ia64.rpm x86_64: seamonkey-1.0.9-76.el4.x86_64.rpm seamonkey-chat-1.0.9-76.el4.x86_64.rpm seamonkey-debuginfo-1.0.9-76.el4.x86_64.rpm seamonkey-devel-1.0.9-76.el4.x86_64.rpm seamonkey-dom-inspector-1.0.9-76.el4.x86_64.rpm seamonkey-js-debugger-1.0.9-76.el4.x86_64.rpm seamonkey-mail-1.0.9-76.el4.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package 7. References: https://access.redhat.com/security/cve/CVE-2011-2998 https://access.redhat.com/security/cve/CVE-2011-2999 https://access.redhat.com/security/updates/classification/#critical 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2011 Red Hat, Inc. . Important SeaMonkey security patch released for Red Hat Enterprise Linux 4, resolving significant vulnerabilities for end users.. SeaMonkey Update, Red Hat Enterprise, Security Patch, Critical Advisory. . Severity: Critical. LinuxSecurity.com Team
Sep 28, 2011
•Critical
Red Hat
98
security advisoryarbitrary code executionRed Hat Enterprise LinuxRed Hat: RHSA-2010:0861-02 Critical: Firefox Security Issue
Updated firefox packages that fix several security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System (CVSS) base scores,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Critical: firefox security update Advisory ID: RHSA-2010:0861-02 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2010:0861.html Issue date: 2010-11-10 CVE Names: CVE-2010-3175 CVE-2010-3176 CVE-2010-3177 CVE-2010-3178 CVE-2010-3179 CVE-2010-3180 CVE-2010-3182 CVE-2010-3183 CVE-2010-3765 ==================================================================== 1. Summary: Updated firefox packages that fix several security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 6) - i386, x86_64 3. Description: Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. A race condition flaw was found in the way Firefox handled Document Object Model (DOM) element properties. Malicious HTMLcontent could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. (CVE-2010-3765) Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. (CVE-2010-3175, CVE-2010-3176, CVE-2010-3179, CVE-2010-3183, CVE-2010-3180) A flaw was found in the way the Gopher parser in Firefox converted text into HTML. A malformed file name on a Gopher server could, when accessed by a victim running Firefox, allow arbitrary JavaScript to be executed in the context of the Gopher domain. (CVE-2010-3177) A same-origin policy bypass flaw was found in Firefox. An attacker could create a malicious web page that, when viewed by a victim, could steal private data from a different website the victim had loaded with Firefox. (CVE-2010-3178) A flaw was found in the script that launches Firefox. The LD_LIBRARY_PATH variable was appending a "." character, which could allow a local attacker to execute arbitrary code with the privileges of a different user running Firefox, if that user ran Firefox from within an attacker-controlled directory. (CVE-2010-3182) For technical details regarding these flaws, refer to the Mozilla security advisories for Firefox 3.6.11 and 3.6.12. You can find links to the Mozilla advisories in the References section of this erratum. All Firefox users should upgrade to these updated packages, which contain Firefox version 3.6.12, which corrects these issues. After installing the update, Firefox must be restarted for the changes to take effect. 4. Solution: Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at 5. Bugs fixed (http://bugzilla.redhat.com/): 642272 - CVE-2010-3176 Mozilla miscellaneousmemory safety hazards 642275 - CVE-2010-3175 Mozilla miscellaneous memory safety hazards 642277 - CVE-2010-3179 Mozilla buffer overflow and memory corruption using document.write 642283 - CVE-2010-3180 Mozilla use-after-free error in nsBarProp 642286 - CVE-2010-3183 Mozilla dangling pointer vulnerability in LookupGetterOrSetter 642290 - CVE-2010-3177 Mozilla XSS in gopher parser when parsing hrefs 642294 - CVE-2010-3178 Mozilla cross-site information disclosure via modal calls 642300 - CVE-2010-3182 Mozilla unsafe library loading flaw 646997 - CVE-2010-3765 Firefox race condition flaw (MFSA 2010-73) 6. Package List: Red Hat Enterprise Linux Desktop (v. 6): Source: i386: firefox-3.6.12-1.el6_0.i686.rpm firefox-debuginfo-3.6.12-1.el6_0.i686.rpm xulrunner-1.9.2.12-1.el6_0.i686.rpm xulrunner-debuginfo-1.9.2.12-1.el6_0.i686.rpm x86_64: firefox-3.6.12-1.el6_0.x86_64.rpm firefox-debuginfo-3.6.12-1.el6_0.x86_64.rpm xulrunner-1.9.2.12-1.el6_0.i686.rpm xulrunner-1.9.2.12-1.el6_0.x86_64.rpm xulrunner-debuginfo-1.9.2.12-1.el6_0.i686.rpm xulrunner-debuginfo-1.9.2.12-1.el6_0.x86_64.rpm Red Hat Enterprise Linux Desktop Optional (v. 6): Source: i386: xulrunner-debuginfo-1.9.2.12-1.el6_0.i686.rpm xulrunner-devel-1.9.2.12-1.el6_0.i686.rpm x86_64: xulrunner-debuginfo-1.9.2.12-1.el6_0.i686.rpm xulrunner-debuginfo-1.9.2.12-1.el6_0.x86_64.rpm xulrunner-devel-1.9.2.12-1.el6_0.i686.rpm xulrunner-devel-1.9.2.12-1.el6_0.x86_64.rpm Red Hat Enterprise Linux HPC Node Optional (v. 6): x86_64: firefox-3.6.12-1.el6_0.x86_64.rpm firefox-debuginfo-3.6.12-1.el6_0.x86_64.rpm xulrunner-1.9.2.12-1.el6_0.i686.rpm xulrunner-1.9.2.12-1.el6_0.x86_64.rpm xulrunner-debuginfo-1.9.2.12-1.el6_0.i686.rpm xulrunner-debuginfo-1.9.2.12-1.el6_0.x86_64.rpm xulrunner-devel-1.9.2.12-1.el6_0.i686.rpm xulrunner-devel-1.9.2.12-1.el6_0.x86_64.rpm Red Hat Enterprise Linux Server (v.6): Source: i386: firefox-3.6.12-1.el6_0.i686.rpm firefox-debuginfo-3.6.12-1.el6_0.i686.rpm xulrunner-1.9.2.12-1.el6_0.i686.rpm xulrunner-debuginfo-1.9.2.12-1.el6_0.i686.rpm ppc64: firefox-3.6.12-1.el6_0.ppc64.rpm firefox-debuginfo-3.6.12-1.el6_0.ppc64.rpm xulrunner-1.9.2.12-1.el6_0.ppc.rpm xulrunner-1.9.2.12-1.el6_0.ppc64.rpm xulrunner-debuginfo-1.9.2.12-1.el6_0.ppc.rpm xulrunner-debuginfo-1.9.2.12-1.el6_0.ppc64.rpm s390x: firefox-3.6.12-1.el6_0.s390x.rpm firefox-debuginfo-3.6.12-1.el6_0.s390x.rpm xulrunner-1.9.2.12-1.el6_0.s390.rpm xulrunner-1.9.2.12-1.el6_0.s390x.rpm xulrunner-debuginfo-1.9.2.12-1.el6_0.s390.rpm xulrunner-debuginfo-1.9.2.12-1.el6_0.s390x.rpm x86_64: firefox-3.6.12-1.el6_0.x86_64.rpm firefox-debuginfo-3.6.12-1.el6_0.x86_64.rpm xulrunner-1.9.2.12-1.el6_0.i686.rpm xulrunner-1.9.2.12-1.el6_0.x86_64.rpm xulrunner-debuginfo-1.9.2.12-1.el6_0.i686.rpm xulrunner-debuginfo-1.9.2.12-1.el6_0.x86_64.rpm Red Hat Enterprise Linux Server Optional (v. 6): Source: i386: xulrunner-debuginfo-1.9.2.12-1.el6_0.i686.rpm xulrunner-devel-1.9.2.12-1.el6_0.i686.rpm ppc64: xulrunner-debuginfo-1.9.2.12-1.el6_0.ppc.rpm xulrunner-debuginfo-1.9.2.12-1.el6_0.ppc64.rpm xulrunner-devel-1.9.2.12-1.el6_0.ppc.rpm xulrunner-devel-1.9.2.12-1.el6_0.ppc64.rpm s390x: xulrunner-debuginfo-1.9.2.12-1.el6_0.s390.rpm xulrunner-debuginfo-1.9.2.12-1.el6_0.s390x.rpm xulrunner-devel-1.9.2.12-1.el6_0.s390.rpm xulrunner-devel-1.9.2.12-1.el6_0.s390x.rpm x86_64: xulrunner-debuginfo-1.9.2.12-1.el6_0.i686.rpm xulrunner-debuginfo-1.9.2.12-1.el6_0.x86_64.rpm xulrunner-devel-1.9.2.12-1.el6_0.i686.rpm xulrunner-devel-1.9.2.12-1.el6_0.x86_64.rpm Red Hat Enterprise Linux Workstation (v.6): Source: i386: firefox-3.6.12-1.el6_0.i686.rpm firefox-debuginfo-3.6.12-1.el6_0.i686.rpm xulrunner-1.9.2.12-1.el6_0.i686.rpm xulrunner-debuginfo-1.9.2.12-1.el6_0.i686.rpm x86_64: firefox-3.6.12-1.el6_0.x86_64.rpm firefox-debuginfo-3.6.12-1.el6_0.x86_64.rpm xulrunner-1.9.2.12-1.el6_0.i686.rpm xulrunner-1.9.2.12-1.el6_0.x86_64.rpm xulrunner-debuginfo-1.9.2.12-1.el6_0.i686.rpm xulrunner-debuginfo-1.9.2.12-1.el6_0.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 6): Source: i386: xulrunner-debuginfo-1.9.2.12-1.el6_0.i686.rpm xulrunner-devel-1.9.2.12-1.el6_0.i686.rpm x86_64: xulrunner-debuginfo-1.9.2.12-1.el6_0.i686.rpm xulrunner-debuginfo-1.9.2.12-1.el6_0.x86_64.rpm xulrunner-devel-1.9.2.12-1.el6_0.i686.rpm xulrunner-devel-1.9.2.12-1.el6_0.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7. References: https://access.redhat.com/security/cve/CVE-2010-3175 https://access.redhat.com/security/cve/CVE-2010-3176 https://access.redhat.com/security/cve/CVE-2010-3177 https://access.redhat.com/security/cve/CVE-2010-3178 https://access.redhat.com/security/cve/CVE-2010-3179 https://access.redhat.com/security/cve/CVE-2010-3180 https://access.redhat.com/security/cve/CVE-2010-3182 https://access.redhat.com/security/cve/CVE-2010-3183 https://access.redhat.com/security/cve/CVE-2010-3765 https://access.redhat.com/security/updates/classification#critical https://website-archive.mozilla.org/ https://website-archive.mozilla.org/ https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-3.6/ https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-3.6/ 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2010 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4(GNU/Linux) iD8DBQFM2vMWXlSAg2UNWIIRApOkAJsHsYKuJS6rZV/wiB/t3rVMmXCSCQCfdcZe msXDY+N3K39YWrJoxpY7dLM=xA4/ -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list
Nov 10, 2010
•Critical
Red Hat
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!