Linux Kernel CVE-2014-3687 Denial of Service Vulnerability
Monthly Archives: December 2014
Vuln: GNU glibc CVE-2014-7817 Arbitrary Command Execution Vulnerability
GNU glibc CVE-2014-7817 Arbitrary Command Execution Vulnerability
Vuln: QEMU Image Size Validation Integer Overflow Vulnerability
QEMU Image Size Validation Integer Overflow Vulnerability
Vuln: IBM WebSphere Application Server CVE-2014-3021 Unspecified Information Disclosure Vulnerability
IBM WebSphere Application Server CVE-2014-3021 Unspecified Information Disclosure Vulnerability
Vuln: Linux Kernel CVE-2014-9322 Local Privilege Escalation Vulnerability
Linux Kernel CVE-2014-9322 Local Privilege Escalation Vulnerability
Fedora EPEL 6 Security Update: unrtf-0.21.7-1.el6
Resolved Bugs
1175241 – unrtf-0.21.7 is available
1170233 – CVE-2014-9274 CVE-2014-9275 unrtf: out-of-bounds memory access vulnerability
1170236 – unrtf: out-of-bounds memory access vulnerability [epel-6]<br
Update to the latest upstream release. This fixes a couple of security problems. See also the [upstream changelog](http://hg.savannah.gnu.org/hgweb/unrtf/file/f5835113e0ed/ChangeLog).
Fedora EPEL 7 Security Update: mingw-jasper-1.900.1-25.el7
Resolved Bugs
1175764 – CVE-2014-8138 CVE-2014-8137 mingw-jasper: various flaws [epel-7]
1173157 – CVE-2014-8137 jasper: double-free in in jas_iccattrval_destroy() (oCERT-2014-012)
1173162 – CVE-2014-8138 jasper: heap overflow in jp2_decode() (oCERT-2014-012)<br
* Fixes for CVE-2014-8137 and CVE-2014-8138rnrn* Bring package up to date with all CVE fixes
Fedora EPEL 7 Security Update: rabbitmq-server-3.3.5-4.el7
Resolved Bugs
1174872 – rabbitmq-server: insufficient ‘X-Forwarded-For’ header validation
1174875 – rabbitmq-server: insufficient ‘X-Forwarded-For’ header validation [epel-all]
1144100 – rabbitmq restarts fail randomly<br
Security fix for: insufficient ‘X-Forwarded-For’ header validation
Rebase to 3.3.5
Fedora EPEL 7 Security Update: unrtf-0.21.7-1.el7
Resolved Bugs
1175241 – unrtf-0.21.7 is available
1170233 – CVE-2014-9274 CVE-2014-9275 unrtf: out-of-bounds memory access vulnerability
1170237 – unrtf: out-of-bounds memory access vulnerability [epel-7]<br
Update to the latest upstream release. This fixes a couple of security problems. See also the [upstream changelog](http://hg.savannah.gnu.org/hgweb/unrtf/file/f5835113e0ed/ChangeLog).
Fedora EPEL 6 Security Update: mediawiki119-1.19.23-1.el6
Update to 1.19.23
Security fix