Red Hat Security Advisory 2019-1762-01 - The Advanced Virtualization module provides the user-space component for running virtual machines that use KVM in environments managed by Red Hat products. An arbitrary file read/execution vulnerability was addressed.
e8303f999782435934c2039cd0eaae49aa372e2868245b3abd19e9fed04dc28a
Red Hat Security Advisory 2019-1734-01 - ironic-inspector is an auxiliary service for discovering hardware properties for a node managed by Ironic. Hardware introspection or hardware properties discovery is a process of getting hardware parameters required for scheduling from a bare metal node, given its power management credentials. Issues addressed include a remote SQL injection vulnerability.
5ad7434852adabb2b9f281bafc8e320ccd293f08775c1f1ce6667380ef125404
Red Hat Security Advisory 2019-1743-01 - KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provide the user-space component for running virtual machines that use KVM in environments managed by Red Hat products. Issues addressed include a buffer overflow vulnerability.
3eb1cd2623e8dbc9b546d5ce68addb395492da6eca53c80af062a34c68da6d75
Red Hat Security Advisory 2019-1742-01 - openstack-tripleo-common contains the python library for code common to the Red Hat OpenStack Platform director CLI and GUI.
83fbafd15a29cc325ec7b21c6a0cc0fa8a699c98d8450d49543b367fc9ffaf42
Debian Linux Security Advisory 4478-1 - Two vulnerabilities were discovered in the DOSBox emulator, which could result in the execution of arbitrary code on the host running DOSBox when running a malicious executable in the emulator.
e560aab410e65acc44d98e820033c3b5d44cfeae419ce988a4eaf4afa4d450b2
Microsoft DirectWrite / AFDKO suffers from a heap-baeed out-of-bounds read/write vulnerability in OpenType font handling due to empty ROS strings.
776e4d5cb07c5edc399a8c06b2c8fe7a2cb08c78b74a62a84252a02d5708c119
Microsoft DirectWrite / AFDKO suffers from having an insufficient integer overflow check in dnaGrow.
51c785aaeac307b6f004977e9dda66854c854edace9664c3df8a5c5e0aa2a972
Red Hat Security Advisory 2019-1764-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 60.8.0 ESR. Issues addressed include cross site scripting and use-after-free vulnerabilities.
768ed693e7c74e2676640e607e6a355752c46fd0c9afc506d38cf2e57716a098
Red Hat Security Advisory 2019-1765-01 - Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox to version 60.8.0 ESR. Issues addressed include cross site scripting and use-after-free vulnerabilities.
10fbe456c3e1222603940b5e1903cc74ff34bee81fe01285919838a4aa3be261
Microsoft DirectWrite / AFDKO suffers from an out-of-bounds read vulnerability in OpenType font handling due to undefined FontName index.
e3e7b0305f8432ddd997bdec2f0d5cacd36f1c9f6a99150af8de8f307cea29f4
Microsoft DirectWrite / AFDKO suffers from multiple bugs in OpenType font handling related to the "post" table.
6354ddf2c2a84f87b95ff67efeff3f139b9cc0c1d499d184289892fb322d4120
Slackware Security Advisory - New mozilla-firefox packages are available for Slackware 14.2 and -current to fix security issues.
4212bb26bd9ce93bc78d4a496fe33e72e013d31ce77b01561cd63c75f082fb92
Microsoft DirectWrite / AFDKO suffers from a NULL pointer dereferences vulnerability in OpenType font handling while accessing empty dynarrays.
4ec1a9e1b55b066d5ae525c5cd2a521b59c106b8837891bac4d6224817cffbca
Microsoft DirectWrite / AFDKO suffers from allowing a read of uninitialized BuildCharArray memory in OpenType font handling.
6bd13a875e56d5d9ee6b4e88a96b9bfc00297a1df5f42b95b9960166caf6299b
Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
3ec2243a50ab43126d1f7db879665fae4489c8914749b29a5fb4e43bb59aba12
pArAnoIA is a toolkit designed to surf the Internet. It's a browser with TOR built-in, spoofing of user-agent and other functions, ensures strict use of TLS, and more.
596622ec5b79835e726ea3ff21e328cb6819844cbbabb00d251f03e228303316
Microsoft DirectWrite / AFDKO suffers from a heap-based buffer overflow vulnerability in OpenType font handling in readEncoding.
18da01543383d44711f3953c7c081e706b908f64132617f3f3e209a9d3f3d24b