Red Hat Security Advisory 2018-0260-01 - The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes using Linux cgroups.
4ac69c2811c510395540bcc2723c9abe81f7fcdb13eead05595f16ce66d0dd85
Ubuntu Security Notice 3554-1 - It was discovered that curl incorrectly handled certain data. An attacker could possibly use this to cause a denial of service or even to get access to sensitive data. This issue only affected Ubuntu 16.04 LTS and Ubuntu 17.10. It was discovered that curl could accidentally leak authentication data. An attacker could possibly use this to get access to sensitive information. Various other issues were also addressed.
ee1405d654e5fc28965683ec21b5fffd34a6565643e1930d61b5f19285e4b446
Ubuntu Security Notice 3552-1 - Johann Hofmann discovered that HTML fragments created for chrome-privileged documents were not properly sanitized. An attacker could exploit this to execute arbitrary code.
cb75456f4685d4fe6714d772f734e3ad10cf43b211c3db184b609ae95eff2868
Ubuntu Security Notice 3554-2 - USN-3554-1 fixed vulnerabilities in curl. This update provides the corresponding update for Ubuntu 12.04 ESM. It was discovered that curl could accidentally leak authentication data. An attacker could possibly use this to get access to sensitive information. Various other issues were also addressed.
334231f948d727c2ea5c2f9f47d2ce007628d5ce9684f64828ba1a5e91153af9
Ubuntu Security Notice 3553-1 - It was discovered that Ruby failed to validate specification names. An attacker could possibly use a maliciously crafted gem to potentially overwrite any file on the filesystem. It was discovered that Ruby was vulnerable to a DNS hijacking vulnerability. An attacker could use this to possibly force the RubyGems client to download and install gems from a server that the attacker controls. Various other issues were also addressed.
5d7b3fe0f4c71c7da1067a7580faf6ed442b66169a1f2a91718bc27f05851223
Debian Linux Security Advisory 4094-2 - CA'me Chilliet from the FusionDirectory team detected a regression in the previously issued fix for CVE-2017-1000480. This regression only affects the Jessie version of the patch.
a4a4694e28ccfca5d8bf2d9ad772854d674221d653add527ca61b2490cdaaa18
Ubuntu Security Notice 3551-1 - Multiple security issues were discovered in the WebKitGTK+ Web and JavaScript engines. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, spoof the user interface, or execute arbitrary code.
6f58f2a8b58f4527b92e0b7288534ae7b923b86070b572e1d3898c0cc509a869
Red Hat Security Advisory 2018-0252-01 - collectd is a small C-language daemon, which reads various system metrics periodically and updates RRD files. Because the daemon does not start up each time it updates files, it has a low system footprint. Security Fix: The csnmp_read_table function in the SNMP plugin of collectd, before version 5.6.3, is susceptible to a double free in a certain error case. This could lead to a crash.
dbbca830478beafc286591cc7f67dc51b618e721437e463b27a755f246c3b920
Red Hat Security Advisory 2018-0242-01 - Erlang is a general-purpose programming language and runtime environment. Erlang has built-in support for concurrency, distribution and fault tolerance. Security Fix: An erlang TLS server configured with cipher suites using RSA key exchange, may be vulnerable to an Adaptive Chosen Ciphertext attack against RSA. This may result in plain-text recovery of encrypted messages and/or a man-in-the-middle attack, despite the attacker not having gained access to the serveras private key itself.
e3add1cb1128a45de26537048fd9f3350801d1970edd25209ab5d3fb8c55a0e3
Red Hat Security Advisory 2018-0241-01 - OpenStack Compute launches and schedules large networks of virtual machines, creating a redundant and scalable cloud computing platform. Compute provides the software, control panels, and APIs required to orchestrate a cloud, including running virtual machine instances and controlling access through users and projects. Security Fix: By rebuilding an instance using a new image, an authenticated user may be able to circumvent the Filter Scheduler, bypassing imposed filters.
007f6e9b5b301cd7db692db00f4249e0ef70f6ae5f31cf04b0f441d019657c72
Ubuntu Security Notice 3550-1 - It was discovered that ClamAV incorrectly handled parsing certain mail messages. A remote attacker could use this issue to cause ClamAV to crash, resulting in a denial of service, or possibly execute arbitrary code. It was discovered that ClamAV incorrectly handled parsing certain PDF files. A remote attacker could use this issue to cause ClamAV to crash, resulting in a denial of service, or possibly execute arbitrary code. Various other issues were also addressed.
7d9ee129e8aa9ff28684d890a0e222ae0fdaf7d6118ce4bec373d5b4a13c8986
Red Hat Security Advisory 2018-0239-01 - In accordance with the Red Hat Enterprise Linux Errata Support Policy, Advanced Mission Critical for Red Hat Enterprise Linux 6.2 was retired as of January 29, 2018, and active support will no longer be provided. Accordingly, Red Hat will no longer provide updated packages, including Critical Impact security patches or Urgent Priority bug fixes, for Red Hat Enterprise Linux 6.2 AMC after January 29, 2018.
f58ad3a5f00599eac9c83ca46f003cc929710f53c7230b4fe9b5a46981d166f8
The Microsoft Surface Hub Keyboard is a wireless keyboard that can be used in combination with the digital whiteboard/collaboration system Microsoft Surface Hub. Due to an insecure implementation of the encrypted data communication, the Microsoft Surface Hub Keyboard is vulnerable to replay attacks with certain restrictions.
8364fa77aadd264937546204517a2bd848213645555137ac544d87e691dc1ac1
LibRaw versions prior to 0.18.7 suffer from multiple denial of service vulnerabilities.
6f2fad3f5394bdde7e23e002cd783a40da990ed01f086dd079d4a423604f3b82
HPE Security Bulletin HPESBHF03811 1 - Security vulnerabilities have been identified in IMC PLAT 7.3 E0506P03. These vulnerabilities could be remotely exploited to allow unauthenticated command execution, arbitrary file write, and arbitrary file deletion as SYSTEM or root. Revision 1 of this advisory.
d0dffbdd0e7e19b13f6aa82eaf3ded269dd38142a6a47716dd414dd5b9347433
Debian Linux Security Advisory 4099-1 - Several vulnerabilities have been discovered in the FFmpeg multimedia framework, which could result in denial of service or potentially the execution of arbitrary code if malformed files/streams are processed.
7c2c9b17b62aa8ef5565df99acfa5c1edf51b5a9d3b937d6318b6088f4931693
Debian Linux Security Advisory 4100-1 - Multiple vulnerabilities have been discovered in the libtiff library and the included tools, which may result in denial of service or the execution of arbitrary code.
1c4ba021a4240c483e1a7e3fc270b43da4c7a10ed66c028077cbdf7272a33c8c
Ubuntu Security Notice 3529-1 - It was discovered that a From address encoded with a null character is cut off in the message header display. An attacker could potentially exploit this to spoof the sender address. It was discovered that it is possible to execute JavaScript in RSS feeds in some circumstances. If a user were tricked in to opening a specially crafted RSS feed, an attacker could potentially exploit this in combination with another vulnerability, in order to cause unspecified problems. Various other issues were also addressed.
718720eddc43ffd427e0bb22018bf540e10c1d9368bd32c4736cf3bca8bf3ad0
Ubuntu Security Notice 3549-1 - Jann Horn discovered that microprocessors utilizing speculative execution and branch prediction may allow unauthorized memory reads via sidechannel attacks. This flaw is known as Spectre. A local attacker could use this to expose sensitive information, including kernel memory.
6783ef5d60ebcdb96afbe1c101970db5c549d1aa6fd46874cef70bf326ff5247
Debian Linux Security Advisory 4101-1 - It was discovered that wireshark, a network protocol analyzer, contained several vulnerabilities in the dissectors/file parsers for IxVeriWave, WCP, JSON, XML, NTP, XMPP and GDB, which could result in denial of dervice or the execution of arbitrary code.
923013791f47f31154325705e177847c00116e212bbec54a1f62af5d52ceeb77
This Microsoft bulletin summary lists an advisory revision increment for ADV180002.
da39f909f3cffd1496186a9e8d619303a0d72a4214c9a7d7af3a04275c837aee
HPE Security Bulletin HPESBHF03812 1 - Security vulnerabilities have been identified in HPE Intelligent Management Center (iMC) PLAT with Apache Tomcat versions 9.0.0.M1 to 9.0.0, 8.5.0 to 8.5.22, 8.0.0.RC1 to 8.0.46 and 7.0.0 to 7.0.81 with HTTP PUTs enabled. The vulnerabilities could be remotely exploited to allow unauthorized disclosure of information, unauthorized modification, and disruption of service. Revision 1 of this advisory.
c07a89bc2e4fbc66ffca135e1735fb5058807697624ad2339147a266fb67c618
HPE Security Bulletin HPESBHF03814 1 - A security vulnerability has been identified in HPE Intelligent Management Center (iMC) PLAT 7.3 E0506. The vulnerability could be remotely exploited to allow remote unauthorized modification. Revision 1 of this advisory.
ef76a757127643e5e10968ecb8803cbc7a30f69d50d8650f2ecc4a3badced812
Debian Linux Security Advisory 4098-1 - Two vulnerabilities were discovered in cURL, an URL transfer library.
376ed0f70b86b9d1733f4b3f86cbfbef6a864d40c5ef179cca6809993ca03119
Slackware Security Advisory - New mozilla-thunderbird packages are available for Slackware 14.2 and -current to fix security issues.
ee463cd0e72de0175ed280d4fb9b2cb415b3b301296cb43a92f3cc8faf3f45f9