Linux Kernel version 4.4.0 (Ubuntu) DCCP double-free privilege escalation exploit that includes a semi-reliable SMAP/SMEP bypass.
Monthly Archives: February 2017
drupal7-metatag-1.21-1.el6
* [7.x-1.21](https://www.drupal.org/project/metatag/releases/7.x-1.21)
* [Moderately Critical – Information disclosure – SA-CONTRIB-2017-019](https://www.drupal.org/node/2852937)
drupal7-metatag-1.21-1.el7
* [7.x-1.21](https://www.drupal.org/project/metatag/releases/7.x-1.21)
* [Moderately Critical – Information disclosure – SA-CONTRIB-2017-019](https://www.drupal.org/node/2852937)
drupal7-metatag-1.21-1.el5
* [7.x-1.21](https://www.drupal.org/project/metatag/releases/7.x-1.21)
* [Moderately Critical – Information disclosure – SA-CONTRIB-2017-019](https://www.drupal.org/node/2852937)
drupal7-metatag-1.21-1.fc25
* [7.x-1.21](https://www.drupal.org/project/metatag/releases/7.x-1.21)
* [Moderately Critical – Information disclosure – SA-CONTRIB-2017-019](https://www.drupal.org/node/2852937)
drupal7-metatag-1.21-1.fc24
* [7.x-1.21](https://www.drupal.org/project/metatag/releases/7.x-1.21)
* [Moderately Critical – Information disclosure – SA-CONTRIB-2017-019](https://www.drupal.org/node/2852937)
CVE-2017-0037
Microsoft Internet Explorer 11 and Microsoft Edge have a type confusion issue in the Layout::MultiColumnBoxBuilder::HandleColumnBreakOnColumnSpanningElement function in mshtml.dll, which allows remote attackers to execute arbitrary code via vectors involving a crafted Cascading Style Sheets (CSS) token sequence and crafted JavaScript code that operates on a TH element.
canl-c-2.1.8-1.el6
Security fix in CA certificate chain verification (better check untrusted CA certificates from peer, more strict error handling).
canl-c-2.1.8-1.fc25
Security fix in CA certificate chain verification (better check untrusted CA certificates from peer, more strict error handling).
canl-c-2.1.8-1.el5
Security fix in CA certificate chain verification (better check untrusted CA certificates from peer, more strict error handling).