JasPer ‘jpc_qmfb.c’ Arbitrary Code Execution Vulnerability
Monthly Archives: January 2015
Vuln: Adobe Flash Player CVE-2015-0311 Unspecified Security Vulnerability
Adobe Flash Player CVE-2015-0311 Unspecified Security Vulnerability
Vuln: Squid CVE-2014-3609 Remote Denial of Service Vulnerability
Squid CVE-2014-3609 Remote Denial of Service Vulnerability
Fedora 20 Security Update: community-mysql-5.5.41-1.fc20
Update to MySQL 5.5.41, for various fixes described at http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-41.html. This update also fixes security issues CVE-2015-0411, CVE-2015-0382, CVE-2015-0381, CVE-2015-0432, CVE-2014-6568, CVE-2015-0374.
Fedora 20 Security Update: patch-2.7.3-1.fc20
Fedora 20 Security Update: jasper-1.900.1-28.fc20
Resolved Bugs
1184750 – CVE-2014-8157 CVE-2014-8158 jasper: various flaws [fedora-all]
1179282 – CVE-2014-8157 jasper: dec->numtiles off-by-one check in jpc_dec_process_sot() (oCERT-2015-001)
1179298 – CVE-2014-8158 jasper: unrestricted stack memory use in jpc_qmfb.c (oCERT-2015-001)<br
This update fixes two security flaws in jasper.
Fedora 21 Security Update: puppetlabs-stdlib-4.5.1-1.20150121git7a91f20.fc21
Fedora 20 Security Update: seamonkey-2.32-1.fc20
Resolved Bugs
1182009 – seamonkey-2.32 is available<br
Update to 2.32
Fixes various security issues, see http://www.mozilla.org/security/known-vulnerabilities/seamonkey.html for more info.
Fedora 21 Security Update: patch-2.7.3-1.fc21
Fedora 20 Security Update: java-1.8.0-openjdk-1.8.0.31-1.b13.fc20
Update to January, 2015 Critical Patch Update (CPU). See:
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html#AppendixJAVA