Fedora – Security Updates
This updates includes a rebase from tomcat 7.0.73 up to 7.0.75. The update resolves a single CVE and one bug:
* rhbz#1420223 – CVE-2016-6325 tomcat writable config files allow privilege escalation
* rhbz#1372789 – init script status gives incorrect results
Security fix for CVE-2016-8745
Security fix for CVE-2016-8745
memory leak when destroying guest without PT devices [XSA-207] (#1422492)
update patches for XSA-208 after upstream revision (no functional change)
—-
Qemu: net: mcf_fec: infinite loop while receiving data in mcf_fec_receive
[CVE-2016-9776]
Qemu: audio: memory leakage in ac97 [CVE-2017-5525] (#1414111)
Qemu: audio: memory leakage in es1370 device [CVE-2017-5526] (#1414211)
oob access in cirrus bitblt copy [XSA-208, CVE-2017-2615] (#1418243)
This is a new upstream feature and security release. Improvements include: bypass; pre-filter — fast packet keywords; TLS improvements; ICS protocol additions: DNP3 CIP/ENIP; SHA1/SHA256 for file matching, logging & extraction; NIC offloading disabled by default; unix socket enabled by default; and App Layer stats. Documentation: http://suricata.readthedocs.io/en/suricata-3.2/
This is a new upstream feature and security release. Improvements include: bypass; pre-filter — fast packet keywords; TLS improvements; ICS protocol additions: DNP3 CIP/ENIP; SHA1/SHA256 for file matching, logging & extraction; NIC offloading disabled by default; unix socket enabled by default; and App Layer stats. Documentation: http://suricata.readthedocs.io/en/suricata-3.2/
This is a new upstream feature and security release. Improvements include: bypass; pre-filter — fast packet keywords; TLS improvements; ICS protocol additions: DNP3 CIP/ENIP; SHA1/SHA256 for file matching, logging & extraction; NIC offloading disabled by default; unix socket enabled by default; and App Layer stats. Documentation: http://suricata.readthedocs.io/en/suricata-3.2/
The 4.9.10 stable kernel update contains a number of important fixes across the tree.
The 4.9.10 stable kernel update contains a number of important fixes across the tree.
This release fixes pcregrep multi-line matching with –only-matching option, a crash when JIT-compiling some patterns (CVE-2017-6004) and a possible buffer overflow when formatting a pcregrep error message.