Slackware Security Advisory – New mozilla-thunderbird packages are available for Slackware 14.1 and -current to fix security issues.
Monthly Archives: April 2015
Slackware Security Advisory – qt Updates
Slackware Security Advisory – New qt packages are available for Slackware 14.1, and -current to fix security issues.
Slackware Security Advisory – libssh Updates
Slackware Security Advisory – New libssh packages are available for Slackware 14.0, 14.1, and -current to fix security issues.
Slackware Security Advisory – mutt Updates
Slackware Security Advisory – New mutt packages are available for Slackware 13.37, 14.0, 14.1, and -current to fix a security issue.
Threat Intelligence Sharing Still Seen as a Challenge
SAN FRANCISCO–The discussion about information sharing has been going on in the security community since before there was a security community, but the tone and shape of the conversation have changed recently thanks to an executive order from the Obama administration and the relentless drumbeat of attacks and data breaches. The benefits of sharing threat intelligence are […]
Fedora 21 Security Update: qt3-3.3.8b-63.fc21
Resolved Bugs
1210675 – CVE-2015-1860 qt: segmentation fault in qgifhandler.cpp<br
This update fixes CVE-2015-1860, a buffer overflow when loading some specific invalid GIF image files, which could be exploited for denial of service (application crash) and possibly even arbitrary code execution attacks. The security patch is backported from Qt 4.
(Please note that Qt 3 is NOT vulnerable to the simultaneously published issues CVE-2015-1858 and CVE-2015-1859.)
Fedora 21 Security Update: xen-4.4.2-3.fc21
Fedora 22 Security Update: dpkg-1.16.16-3.fc22
Resolved Bugs
1210748 – CVE-2015-0840 dpkg: source package integrity verification bypass
1162166 – CVE-2014-8625 dpkg: format string vulnerability
1210749 – CVE-2015-0840 dpkg: source package integrity verification bypass [fedora-all]
1162168 – CVE-2014-8625 dpkg: format string vulnerability [fedora-all]<br
Security fix for CVE-2014-8625 and Security fix for CVE-2015-0840
Security fix for CVE-2014-8625 and Security fix for CVE-2015-0840
Fedora 22 Security Update: qt3-3.3.8b-63.fc22
Resolved Bugs
1210675 – CVE-2015-1860 qt: segmentation fault in qgifhandler.cpp<br
This update fixes CVE-2015-1860, a buffer overflow when loading some specific invalid GIF image files, which could be exploited for denial of service (application crash) and possibly even arbitrary code execution attacks. The security patch is backported from Qt 4.
(Please note that Qt 3 is NOT vulnerable to the simultaneously published issues CVE-2015-1858 and CVE-2015-1859.)
Fedora 21 Security Update: xulrunner-37.0.2-1.fc21,firefox-37.0.2-1.fc21
New upstream – 37.0.2