Thank you for reading the Linux Advisory Watch Security Newsletter.
The purpose of this document is to provide our readers with a quick
summary of each week's vendor security bulletins and pointers on
methods to improve the security posture of your open source system.
Vulnerabilities affect nearly every vendor virtually every week, so
be sure to read through to find the updates your distributor have
made available.
| |
(Oct 16) |
| |
Security Report Summary
|
| |
(Oct 16) |
| |
Security Report Summary
|
| |
(Oct 15) |
| |
Security Report Summary
|
| |
(Oct 14) |
| |
Security Report Summary
|
|
|
| |
(Oct 12) |
| |
Multiple vulnerabilities have been found in Perl Locale-Maketext module, allowing remote attackers to inject and execute arbitrary Perl code.
|
|
|
| |
Red Hat: 2014:1658-01: java-1.6.0-sun: Important Advisory (Oct 16) |
| |
Updated java-1.6.0-sun packages that fix several security issues are now available for Oracle Java for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Important security [More...]
|
| |
Red Hat: 2014:1657-01: java-1.7.0-oracle: Critical Advisory (Oct 16) |
| |
Updated java-1.7.0-oracle packages that fix several security issues are now available for Oracle Java for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Critical security [More...]
|
| |
Red Hat: 2014:1655-01: libxml2: Moderate Advisory (Oct 16) |
| |
Updated libxml2 packages that fix one security issue are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Moderate security [More...]
|
| |
Red Hat: 2014:1654-01: rsyslog7: Important Advisory (Oct 16) |
| |
Updated rsyslog7 packages that fix one security issue are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Important security [More...]
|
| |
Red Hat: 2014:1653-01: openssl: Moderate Advisory (Oct 16) |
| |
Updated openssl packages that contain a backported patch to mitigate the CVE-2014-3566 issue are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Moderate security [More...]
|
| |
Red Hat: 2014:1652-01: openssl: Important Advisory (Oct 16) |
| |
Updated openssl packages that contain a backported patch to mitigate the CVE-2014-3566 issue and fix two security issues are now available for Red Hat Enterprise Linux 6 and 7. [More...]
|
| |
Red Hat: 2014:1648-01: flash-plugin: Critical Advisory (Oct 15) |
| |
An updated Adobe Flash Player package that fixes multiple security issues is now available for Red Hat Enterprise Linux 5 and 6 Supplementary. Red Hat Product Security has rated this update as having Critical security [More...]
|
| |
Red Hat: 2014:1647-01: thunderbird: Important Advisory (Oct 15) |
| |
An updated thunderbird package that fixes multiple security issues is now available for Red Hat Enterprise Linux 5 and 6. Red Hat Product Security has rated this update as having Important security [More...]
|
| |
Red Hat: 2014:1635-01: firefox: Critical Advisory (Oct 14) |
| |
Updated firefox packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Critical security [More...]
|
| |
Red Hat: 2014:1636-01: java-1.8.0-openjdk: Important Advisory (Oct 14) |
| |
Updated java-1.8.0-openjdk packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Important security [More...]
|
| |
Red Hat: 2014:1634-01: java-1.6.0-openjdk: Important Advisory (Oct 14) |
| |
Updated java-1.6.0-openjdk packages that fix multiple security issues and one bug are now available for Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this update as having Important security [More...]
|
| |
Red Hat: 2014:1633-01: java-1.7.0-openjdk: Important Advisory (Oct 14) |
| |
Updated java-1.7.0-openjdk packages that fix multiple security issues and one bug are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Important security [More...]
|
| |
Red Hat: 2014:1620-01: java-1.7.0-openjdk: Important Advisory (Oct 14) |
| |
Updated java-1.7.0-openjdk packages that fix multiple security issues and one bug are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Important security [More...]
|
| |
Red Hat: 2014:1626-01: chromium-browser: Critical Advisory (Oct 14) |
| |
Updated chromium-browser packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having Critical security [More...]
|
| |
Red Hat: 2014:1606-02: file: Moderate Advisory (Oct 14) |
| |
Updated file packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security [More...]
|
| |
Red Hat: 2014:1507-02: trousers: Low Advisory (Oct 14) |
| |
Updated trousers packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Low security [More...]
|
| |
Red Hat: 2014:1552-02: openssh: Moderate Advisory (Oct 14) |
| |
Updated openssh packages that fix two security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security [More...]
|
| |
Red Hat: 2014:1436-02: X11 client libraries: Moderate Advisory (Oct 14) |
| |
Updated X11 client libraries packages that fix multiple security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. [More...]
|
| |
Red Hat: 2014:1391-02: glibc: Moderate Advisory (Oct 14) |
| |
Updated glibc packages that fix two security issues, several bugs, and add two enhancements are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security [More...]
|
| |
Red Hat: 2014:1392-01: kernel: Important Advisory (Oct 14) |
| |
Updated kernel packages that fix multiple security issues, address several hundred bugs, and add numerous enhancements are now available as part of the ongoing support and maintenance of Red Hat Enterprise Linux version 6. This is the sixth regular update. [More...]
|
| |
Red Hat: 2014:1388-02: cups: Moderate Advisory (Oct 14) |
| |
Updated cups packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security [More...]
|
| |
Red Hat: 2014:1389-02: krb5: Moderate Advisory (Oct 14) |
| |
Updated krb5 packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security [More...]
|
| |
Red Hat: 2014:1397-01: rsyslog: Important Advisory (Oct 13) |
| |
Updated rsyslog packages that fix one security issue are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security [More...]
|
| |
Red Hat: 2014:1371-01: nss: Important Advisory (Oct 10) |
| |
Updated nss packages that fix one security issue are now available for Red Hat Enterprise Linux 4 Extended Life Cycle Support, Red Hat Enterprise Linux 5.6 Long Life, Red Hat Enterprise Linux 5.9 Extended Update Support, Red Hat Enterprise Linux 6.2 Advanced Update Support, and Red Hat [More...]
|
|
|
| |
(Oct 15) |
| |
New openssl packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix security issues. [More Info...]
|
|
|
| |
Ubuntu: 2386-1: OpenJDK 6 vulnerabilities (Oct 16) |
| |
Several security issues were fixed in OpenJDK 6.
|
| |
Ubuntu: 2385-1: OpenSSL vulnerabilities (Oct 16) |
| |
Several security issues were fixed in OpenSSL.
|
| |
Ubuntu: 2384-1: MySQL vulnerabilities (Oct 15) |
| |
Several security issues were fixed in MySQL.
|
| |
Ubuntu: 2373-1: Thunderbird vulnerabilities (Oct 15) |
| |
Several security issues were fixed in Thunderbird.
|
| |
Ubuntu: 2383-1: wpa_supplicant vulnerability (Oct 14) |
| |
wpa_supplicant could be made to run programs if it received speciallycrafted network traffic.
|
| |
Ubuntu: 2372-1: Firefox vulnerabilities (Oct 14) |
| |
Firefox could be made to crash or run programs as your login if itopened a malicious website.
|
| |
Ubuntu: 2345-1: Oxide vulnerabilities (Oct 14) |
| |
Several security issues were fixed in Oxide.
|
| |
Ubuntu: 2382-1: Requests vulnerabilities (Oct 14) |
| |
Requests could be made to expose authentication credentials over thenetwork.
|
| |
Ubuntu: 2381-1: Rsyslog vulnerabilities (Oct 9) |
| |
Rsyslog could be made to crash if it received specially crafted input.
|
| |
Ubuntu: 2380-1: Bash vulnerabilities (Oct 9) |
| |
Several security issues were fixed in Bash.
|
| |
Ubuntu: 2378-1: Linux kernel (Trusty HWE) vulnerabilities (Oct 9) |
| |
Several security issues were fixed in the kernel.
|
| |
Ubuntu: 2379-1: Linux kernel vulnerabilities (Oct 9) |
| |
Several security issues were fixed in the kernel.
|
| |
Ubuntu: 2377-1: Linux kernel (OMAP4) vulnerabilities (Oct 9) |
| |
Several security issues were fixed in the kernel.
|
| |
Ubuntu: 2374-1: Linux kernel vulnerabilities (Oct 9) |
| |
Several security issues were fixed in the kernel.
|
| |
Ubuntu: 2375-1: Linux kernel (EC2) vulnerabilities (Oct 9) |
| |
Several security issues were fixed in the kernel.
|
| |
Ubuntu: 2376-1: Linux kernel vulnerabilities (Oct 9) |
| |
Several security issues were fixed in the kernel.
|
