Red Hat Enterprise Linux: Red Hat OpenShift Enterprise release 2.2.8, which fixes one security
issue, several bugs, and introduces feature enhancements, is now
available.

Red Hat Product Security has rated this update as having Important
security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
CVE-2015-3281

Redhat

RHSA-2015:2665-1: Important: chromium-browser security update

December 17, 2015 007admin

Red Hat Enterprise Linux: Updated chromium-browser packages that fix two security issues are now
available for Red Hat Enterprise Linux 6 Supplementary.

Red Hat Product Security has rated this update as having Important security
impact. Common Vulnerability Scoring System (CVSS) base scores, which give
detailed severity ratings, are available for each vulnerability from the
CVE links in the References section.
CVE-2015-6792

Redhat

RHBA-2015:2664-1: Red Hat Enterprise MRG Realtime 2.5 bug fix update

December 17, 2015 007admin

Red Hat Enterprise Linux: Updated Red Hat Enterprise MRG Realtime packages that provide one bug fix are
now available for Red Hat Enterprise MRG 2.5.

Debian

DSA-3427 blueman – security update

December 17, 2015 007admin

It was discovered that the Mechanism plugin of Blueman, a graphical
Bluetooth manager, allows local privilege escalation.

Debian

DSA-3428 tomcat8 – security update

December 17, 2015 007admin

It was discovered that malicious web applications could use the
Expression Language to bypass protections of a Security Manager as
expressions were evaluated within a privileged code section.

Security Focus

Vuln: GNU Wget CVE-2010-2252 Arbitrary File Overwrite Vulnerability

December 17, 2015 007admin

GNU Wget CVE-2010-2252 Arbitrary File Overwrite Vulnerability

Security Focus

Vuln: Microsoft Windows Environment Variable Expansion in PATH Security Bypass Weakness

December 17, 2015 007admin

Microsoft Windows Environment Variable Expansion in PATH Security Bypass Weakness

007 Software

Monthly Archives: December 2015

Bugtraq: [SECURITY] [DSA 3425-1] tryton-server security update

Bugtraq: [oCERT 2015-011] PyAMF input sanitization errors (XXE)

Bugtraq: ESA-2015-148: EMC Isilon OneFS Security Privilege Escalation Vulnerability

RHSA-2015:2666-1: Important: Red Hat OpenShift Enterprise 2.2.8 security, bug fix, and enhancement update

RHSA-2015:2665-1: Important: chromium-browser security update

RHBA-2015:2664-1: Red Hat Enterprise MRG Realtime 2.5 bug fix update

DSA-3427 blueman – security update

DSA-3428 tomcat8 – security update

Vuln: GNU Wget CVE-2010-2252 Arbitrary File Overwrite Vulnerability

Vuln: Microsoft Windows Environment Variable Expansion in PATH Security Bypass Weakness

Software and Security Information