Linux security Advisories

2019. február 26.

SUSE: 2019:0495-1 important: containerd, docker, docker-runc, golang-github-docker-libnetwork, runc

LinuxSecurity.com: An update that solves four vulnerabilities and has four fixes is now available.
2019. február 26.

SUSE: 2019:0499-1 important: ceph

LinuxSecurity.com: An update that solves three vulnerabilities and has one errata is now available.
2019. február 26.

SciLinux: Moderate: java-1.8.0-openjdk on SL6.x i386/x86_64

LinuxSecurity.com: OpenJDK: memory disclosure in FileChannelImpl (Libraries, 8206290) (CVE-2019-2422) SL6 x86_64 java-1.8.0-openjdk-1.8.0.201.b09-1.el6_10.x86_64.rpm java-1.8.0-openjdk-debuginfo-1.8.0.201.b09-1.el6_10.x86_64.rpm java-1.8.0-openjdk-headless-1.8.0.201.b09-1.el6_10.x86_64.rpm java-1.8.0-openjdk-debug-1.8.0.201.b09-1.el6_10.x86_64.rpm java-1.8.0-openjdk-demo-1.8.0.201.b09-1.el [More...]
2019. február 26.

SciLinux: Important: polkit on SL6.x i386/x86_64

LinuxSecurity.com: polkit: Temporary auth hijacking via PID reuse and non-atomic fork (CVE-2019-6133) SL6 x86_64 polkit-0.96-11.el6_10.1.i686.rpm polkit-0.96-11.el6_10.1.x86_64.rpm polkit-debuginfo-0.96-11.el6_10.1.i686.rpm polkit-debuginfo-0.96-11.el6_10.1.x86_64.rpm polkit-devel-0.96-11.el6_10.1.i686.rpm polkit-devel-0.96-11.el6_10.1.x86_64.rpm polkit-docs-0.96-11.el6_10.1.x86_64 [More...]
2019. február 26.

SciLinux: Important: kernel on SL6.x i386/x86_64

LinuxSecurity.com: kernel: MIDI driver race condition leads to a double-free (CVE-2018-10902) Bug Fix(es): * Previously backported upstream patch caused a change in the behavior of page fault handler. As a consequence, applications compiled through GNU Compiler Collection (GCC) version 4.4.7 sometimes generated stack access exceeding the 64K limit. Running such applications subsequently triggered a segmentatio [More...]
2019. február 26.

CentOS: CESA-2019-0420: Important CentOS 6 polkit

LinuxSecurity.com: Upstream details at : https://access.redhat.com/errata/RHSA-2019:0420
2019. február 26.

Ubuntu 3897-1: Thunderbird vulnerabilities

LinuxSecurity.com: Several security issues were fixed in Thunderbird.
2019. február 26.

Ubuntu 3896-1: Firefox vulnerabilities

LinuxSecurity.com: Firefox could be made to crash or run programs as your login if itopened a malicious website.
2019. február 26.

CentOS: CESA-2019-0415: Important CentOS 6 kernel

LinuxSecurity.com: Upstream details at : https://access.redhat.com/errata/RHSA-2019:0415
2019. február 26.

CentOS: CESA-2019-0416: Moderate CentOS 6 java-1.8.0-openjdk

LinuxSecurity.com: Upstream details at : https://access.redhat.com/errata/RHSA-2019:0416
2019. február 26.

ArchLinux: 201902-28: logstash: information disclosure

LinuxSecurity.com: The package logstash before version 6.6.1-1 is vulnerable to information disclosure.
2019. február 26.

ArchLinux: 201902-27: elasticsearch: privilege escalation

LinuxSecurity.com: The package elasticsearch before version 6.6.1-1 is vulnerable to privilege escalation.
2019. február 26.

RedHat: RHSA-2019-0420:01 Important: polkit security update

LinuxSecurity.com: An update for polkit is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
2019. február 26.

Ubuntu 3895-1: LDB vulnerability

LinuxSecurity.com: LDB could be made to crash if it received specially crafted network traffic.
2019. február 26.

Ubuntu 3866-3: Ghostscript regression

LinuxSecurity.com: USN-3866-2 introduced a regression in Ghostscript.
2019. február 26.

Ubuntu 3894-1: GNOME Keyring vulnerability

LinuxSecurity.com: GNOME Keyring could be made to expose sensitive information.
2019. február 26.

openSUSE: 2019:0250-1: important: MozillaThunderbird

LinuxSecurity.com: An update that fixes four vulnerabilities is now available.
2019. február 26.

openSUSE: 2019:0248-1: important: MozillaFirefox

LinuxSecurity.com: An update that fixes two vulnerabilities is now available.
2019. február 26.

Debian LTS: DLA-1690-1: liblivemedia security update

LinuxSecurity.com: ultiple vulnerabilities have been discovered in liblivemedia, the LIVE555 RTSP server library: CVE-2019-6256
2019. február 26.

openSUSE: 2019:0247-1: moderate: kauth

LinuxSecurity.com: An update that fixes one vulnerability is now available.