Linux security Advisories

An update that fixes one vulnerability is now available.

An update that fixes 5 vulnerabilities is now available.

Red Hat OpenShift Container Platform release 4.8.13 is now available with updates to packages and images that fix several bugs and add enhancements. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,

Several security issues were fixed in Apache HTTP Server.

Several security issues were fixed in Apache HTTP Server.

Apache Santuario, XML Security for Java, is vulnerable to an issue where the "secureValidation" property is not passed correctly when creating a KeyInfo from a KeyInfoReference element. This allows an attacker to abuse an XPath Transform to extract any local .xml files in a RetrievalMethod element.

Upstream details at : https://access.redhat.com/errata/RHSA-2021:3438

An update for the nodejs:14 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,

An issue has been found in openssl, a Secure Sockets Layer toolkit. Ingo Schwarze reported a buffer overrun flaw when processing ASN.1 strings, which can result in denial of service.

Update to latest in git.

update for sharpziplib 1.3.3 which contains a security fix

update for sharpziplib 1.3.3 which contains a security fix

An update that fixes 19 vulnerabilities is now available.

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks.

An update that fixes one vulnerability is now available.

Update to v1.41.1 Fix CVE-2021-39163, CVE-2021-39164

Cumulative bug-fix release from upstream.

- fix disclosure of HTTP auth credentials via SNI data (CVE-2021-38165)

Rebuild for CVE-2021-3672 in c-ares library

Update to 1.1.1l version