exploit the possibilities

Red Hat Security Advisory 2019-2534-01

Red Hat Security Advisory 2019-2534-01
Posted Aug 21, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-2534-01 - Red Hat 3scale API Management delivers centralized API management features through a distributed, cloud-hosted layer. It includes built-in features to help in building a more successful API program, including access control, rate limits, payment gateway integration, and developer experience tools. This release of Red Hat 3scale API Management 2.6.0 replaces Red Hat 3scale API Management 2.5.1.

tags | advisory
systems | linux, redhat
advisories | CVE-2019-10216
MD5 | 9c5e706bb8911d6bc88a8c019dbd73c4

Red Hat Security Advisory 2019-2534-01

Change Mirror Download
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

====================================================================
Red Hat Security Advisory

Synopsis: Important: Red Hat 3scale API Management 2.6.0 release and security update
Advisory ID: RHSA-2019:2534-01
Product: 3scale API Management
Advisory URL: https://access.redhat.com/errata/RHSA-2019:2534
Issue date: 2019-08-21
CVE Names: CVE-2019-10216
====================================================================
1. Summary:

A security update for Red Hat 3scale API Management Platform is now
available from the Red Hat Container Catalog.

Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.

2. Description:

Red Hat 3scale API Management delivers centralized API management features
through a distributed, cloud-hosted layer. It includes built-in features to
help in building a more successful API program, including access control,
rate limits, payment gateway integration, and developer experience tools.

This release of Red Hat 3scale API Management 2.6.0 replaces Red Hat 3scale
API Management 2.5.1.

Security Fix(es):

* ghostscript: -dSAFER escape via .buildfont1 (CVE-2019-10216)

3. Solution:

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/documentation/en-us/red_hat_3scale_api_management
/2.6/html-single/installing_3scale/#onpremises-installation

4. Bugs fixed (https://bugzilla.redhat.com/):

1737080 - CVE-2019-10216 ghostscript: -dSAFER escape via .buildfont1 (701394)

5. JIRA issues fixed (https://issues.jboss.org/):

THREESCALE-2852 - Release 3scale AMP 2.6 - Container Images

6. References:

https://access.redhat.com/security/cve/CVE-2019-10216
https://access.redhat.com/security/updates/classification/#important

7. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact
details at https://access.redhat.com/security/team/contact/

Copyright 2019 Red Hat, Inc.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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9v+4
-----END PGP SIGNATURE-----

--
RHSA-announce mailing list
RHSA-announce@redhat.com
https://www.redhat.com/mailman/listinfo/rhsa-announce
Login or Register to add favorites

File Archive:

August 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    3 Files
  • 2
    Aug 2nd
    2 Files
  • 3
    Aug 3rd
    32 Files
  • 4
    Aug 4th
    22 Files
  • 5
    Aug 5th
    15 Files
  • 6
    Aug 6th
    19 Files
  • 7
    Aug 7th
    6 Files
  • 8
    Aug 8th
    1 Files
  • 9
    Aug 9th
    2 Files
  • 10
    Aug 10th
    27 Files
  • 11
    Aug 11th
    11 Files
  • 12
    Aug 12th
    11 Files
  • 13
    Aug 13th
    17 Files
  • 14
    Aug 14th
    0 Files
  • 15
    Aug 15th
    0 Files
  • 16
    Aug 16th
    0 Files
  • 17
    Aug 17th
    0 Files
  • 18
    Aug 18th
    0 Files
  • 19
    Aug 19th
    0 Files
  • 20
    Aug 20th
    0 Files
  • 21
    Aug 21st
    0 Files
  • 22
    Aug 22nd
    0 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close