21.09.2019 03:30 This update of `expat` fixes the following security issue: * **CVE-2019-15903** -- Fix heap overflow triggered by `XML_GetCurrentLineNumber` , and deny internal entities closing the doctype The following bug fixes are also included: * Fix cases where `XML_StopParser` did not have any effect when called from inside of an end element handler *
21.09.2019 03:30 - double free due to subsequent call of realloc - fix heap buffer overflow in function tftp_receive_packet ---- - avoid reporting spurious error in the HTTP2 framing layer
21.09.2019 03:30 Patch for CVE-2018-0737, CVE-2018-0732, CVE-2018-0734, CVE-2019-1552, CVE-2019-1559. https://www.openssl.org/news/vulnerabilities.html
21.09.2019 01:30 An update that fixes one vulnerability is now available.
21.09.2019 01:30 An update that fixes one vulnerability is now available.
21.09.2019 01:30 An update that fixes two vulnerabilities is now available.
20.09.2019 23:30 A vulnerability has been discovered in php-pecl-http, the pecl_http module for PHP 5 Extended HTTP Support. A type confusion vulnerability in the merge_param function allows attackers to crash PHP and possibly
20.09.2019 21:00 Multiple security issues were found in PHP, a widely-used open source general purpose scripting language: Missing sanitising in the EXIF extension and the iconv_mime_decode_headers function could result in information disclosure or denial of service.
20.09.2019 19:00 dovecot: improper NULL byte handling in IMAP and ManageSieve protocol parsers leads to out of bounds writes For more details about the security issue , including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. SL7 x86_64 dovecot-2.2.36-3.el7_7.1.i686.rpm
20.09.2019 19:00 A buffer overflow flaw was found in the way Linux kernel's vhost functionality that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this flaw to increase their privileges on the host. SL7 x86
20.09.2019 17:01 An update that fixes 35 vulnerabilities is now available.
20.09.2019 17:01 An update that fixes 35 vulnerabilities is now available.
20.09.2019 15:00 An update for kernel-alt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System base score, which gives a detailed severity rating, is available for each vulnerability
20.09.2019 15:00 An update for qpid-proton is now available for Satellite Tools 6.3. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System base score, which gives a detailed severity rating, is available for each vulnerability
20.09.2019 15:00 An update for qpid-proton is now available for Satellite Tools 6.4. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System base score, which gives a detailed severity rating, is available for each vulnerability
