Linux security Advisories

2021. január 19.

Fedora 32: dovecot 2021-c90cb486f7>

fix rundir location ---- - dovecot updated to 2.3.13, pigeonhole to 0.5.13 - CVE-2020-24386: Specially crafted command can cause IMAP hibernate to allow logged in user to access other people's emails and filesystem information. - Metric filter and global event filter variable syntax changed to a SQL-like format. - auth: Added new aliases for %{variables}. Usage of the old ones is
2021. január 19.

openSUSE: 2021:0121-1 important: vlc>

An update that solves two vulnerabilities and has one errata is now available.
2021. január 19.

openSUSE: 2021:0117-1 moderate: python-jupyter_notebook>

An update that fixes one vulnerability is now available.
2021. január 19.

openSUSE: 2021:0119-1 moderate: viewvc>

An update that fixes one vulnerability is now available.
2021. január 19.

Mageia 2021-0046: openldap security update>

It was discovered that OpenLDAP incorrectly handled certain malformed inputs. A remote attacker could possibly use this issue to cause OpenLDAP to crash, resulting in a denial of service (CVE-2020-25709, CVE-2020-25710). References:
2021. január 19.

Mageia 2021-0045: resource-agents security update>

Multiple vulnerabilities related to unsafe tempfile usage (bsc#1146690, bsc#1146691, bsc#1146692, bsc#1146766, bsc#1146776, bsc#1146784, bsc#1146785, bsc#1146787). Issues where the ocfmon user was created with a default password (bsc#1021689,
2021. január 19.

RedHat: RHSA-2021-0155:01 Moderate: dnsmasq security update>

An update for dnsmasq is now available for Red Hat Enterprise Linux 7.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
2021. január 19.

RedHat: RHSA-2021-0154:01 Moderate: dnsmasq security update>

An update for dnsmasq is now available for Red Hat Enterprise Linux 7.7 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
2021. január 19.

RedHat: RHSA-2021-0153:01 Moderate: dnsmasq security update>

An update for dnsmasq is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from
2021. január 19.

RedHat: RHSA-2021-0190:01 Moderate: OpenShift Container Platform 4.6>

An update for compliance-content-container, ose-compliance-openscap-container, ose-compliance-operator-container, and ose-compliance-operator-metadata-container is now available for Red Hat OpenShift Container Platform 4.6.
2021. január 19.

RedHat: RHSA-2021-0189:01 Important: kpatch-patch security update>

An update is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
2021. január 19.

RedHat: RHSA-2021-0183:01 Important: linux-firmware security update>

An update for linux-firmware is now available for Red Hat Enterprise Linux 8.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,
2021. január 19.

RedHat: RHSA-2021-0184:01 Important: kernel security and bug fix update>

An update for kernel is now available for Red Hat Enterprise Linux 8.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,
2021. január 19.

RedHat: RHSA-2021-0181:01 Moderate: kernel security update>

An update for kernel is now available for Red Hat Enterprise Linux 6 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
2021. január 18.

Debian LTS: DLA-2528-1: gst-plugins-bad1.0 security update>

Andrew Wesie discovered a buffer overflow in the H264 support of the GStreamer multimedia framework, which could potentially result in the execution of arbitrary code.
2021. január 18.

Fedora 32: flatpak 2021-f807eb480a>

This is a security update that fixes a sandbox escape where a malicious application can execute code outside the sandbox by controlling the environment of the "flatpak run" command when spawning a sub-sandbox. See the advisory for details: https://github.com/flatpak/flatpak/security/advisories/GHSA-4ppf- fxf6-vxg2
2021. január 18.

Debian: DSA-4833-1: gst-plugins-bad1.0 security update>

Andrew Wesie discovered a buffer overflow in the H264 support of the GStreamer multimedia framework, which could potentially result in the execution of arbitrary code.
2021. január 18.

RedHat: RHSA-2021-0037:01 Moderate: OpenShift Container Platform 4.6.12 bug>

Red Hat OpenShift Container Platform release 4.6.12 is now available with updates to packages and images that fix several bugs. This release includes a security update for Red Hat OpenShift Container Platform 4.6.
2021. január 18.

RedHat: RHSA-2021-0039:01 Moderate: OpenShift Container Platform 4.6.12>

Red Hat OpenShift Container Platform release 4.6.12 is now available with updates to packages and images that fix several bugs and add enhancements. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score,
2021. január 18.

RedHat: RHSA-2021-0167:01 Important: postgresql:9.6 security update>

An update for the postgresql:9.6 module is now available for Red Hat Enterprise Linux 8.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,