Android suffers from a race condition in the max86902 driver sysfs interfaces.
Monthly Archives: January 2017
EMC ScaleIO Privilege Escalation / Denial Of Service
EMC ScaleIO versions prior to 2.0.1.1 suffer from privilege escalation and denial of service vulnerabilities.
Ubuntu Security Notice USN-3164-1
Ubuntu Security Notice 3164-1 – Bjoern Jacke discovered that Exim incorrectly handled DKIM keys. In certain configurations, private DKIM signing keys could be leaked to the log files.
Debian Security Advisory 3753-1
Debian Linux Security Advisory 3753-1 – It was discovered that libvncserver, a collection of libraries used to implement VNC/RFB clients and servers, incorrectly processed incoming network packets. This resulted in several heap-based buffer overflows, allowing a rogue server to either cause a DoS by crashing the client, or potentially execute arbitrary code on the client side.
RHBA-2017:0017-1: Red Hat OpenShift Enterprise 2.2.11 bug fix and enhancement update
Red Hat Enterprise Linux: Red Hat OpenShift Enterprise release 2.2.11 is now available with updated
packages that fix several bugs and add various enhancements.
RHSA-2017:0025-1: Important: puppet-tripleo security update
Red Hat Enterprise Linux: An update for puppet-tripleo is now available for Red Hat OpenStack Platform
10.0 (Newton).
Red Hat Product Security has rated this update as having a security impact of
Important. A Common Vulnerability Scoring System (CVSS) base score, which gives
a detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.
CVE-2016-9599
RHSA-2017:0021-1: Moderate: gstreamer1-plugins-bad-free security update
Red Hat Enterprise Linux: An update for gstreamer1-plugins-bad-free is now available for Red Hat
Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of
Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a
detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.
CVE-2016-9445, CVE-2016-9809, CVE-2016-9812, CVE-2016-9813
RHSA-2017:0020-1: Moderate: gstreamer1-plugins-good security update
Red Hat Enterprise Linux: An update for gstreamer1-plugins-good is now available for Red Hat Enterprise
Linux 7.
Red Hat Product Security has rated this update as having a security impact of
Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a
detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.
CVE-2016-9634, CVE-2016-9635, CVE-2016-9636, CVE-2016-9807, CVE-2016-9808
RHSA-2017:0019-1: Moderate: gstreamer-plugins-good security update
Red Hat Enterprise Linux: An update for gstreamer-plugins-good is now available for Red Hat Enterprise
Linux 7.
Red Hat Product Security has rated this update as having a security impact of
Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a
detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.
CVE-2016-9634, CVE-2016-9635, CVE-2016-9636, CVE-2016-9807, CVE-2016-9808
RHSA-2017:0018-1: Moderate: gstreamer-plugins-bad-free security update
Red Hat Enterprise Linux: An update for gstreamer-plugins-bad-free is now available for Red Hat Enterprise
Linux 7.
Red Hat Product Security has rated this update as having a security impact of
Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a
detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.
CVE-2016-9445, CVE-2016-9447, CVE-2016-9809