Red Hat Security Advisory 2021-2027-01 - Red Hat Identity Management is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Issues addressed include a denial of service vulnerability.
7724024d261f156145058ca79301153422e968574921531a34c3f06e0a3891a4
Red Hat Security Advisory 2021-2039-01 - This release of Red Hat Integration - Service registry 1.1.1.GA serves as a replacement for 1.1.0.GA, and includes the below security fixes. Issues addressed include XML injection and remote SQL injection vulnerabilities.
016baf810f0fc092f71233e8a3a373f15cd931df73eb2a65bb7e42e8e6050a8a
Ubuntu Security Notice 4945-2 - USN-4945-1 fixed vulnerabilities in the Linux kernel for Ubuntu 20.04 LTS and Ubuntu 18.04 LTS. This update provides the corresponding Linux kernel updates targeted specifically for Raspberry Pi devices in those same Ubuntu Releases. It was discovered that the Nouveau GPU driver in the Linux kernel did not properly handle error conditions in some situations. A local attacker could use this to cause a denial of service. Various other issues were also addressed.
b7d2e192331fc5eeec68d356aef0b7b1f58186fdabc93af9473f0e7868618fd2
Red Hat Security Advisory 2021-2021-01 - Red Hat OpenShift Serverless 1.10.2 is a generally available release of the OpenShift Serverless Operator. This version of the OpenShift Serverless Operator is supported on Red Hat OpenShift Container Platform version 4.5. Issues addressed include a code execution vulnerability.
cea1cf00dcdae1e8f10b304383784974afe87eafeed9543bfd8952847505e233
Red Hat Security Advisory 2021-1989-01 - The Berkeley Internet Name Domain is an implementation of the Domain Name System protocols. BIND includes a DNS server ; a resolver library ; and tools for verifying that the DNS server is operating correctly.
64a66ea18fea84ef27571f2cd8b668522be25a05e9942e1d641f8ec431519096
Red Hat Security Advisory 2021-1979-01 - Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Issues addressed include a HTTP request smuggling vulnerability.
145f1357b9fcaba420f9a1f2e1c30b4c676680f2b205e72fac61b654000b0a4d
Red Hat Security Advisory 2021-1983-01 - Red Hat Identity Management is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Issues addressed include a denial of service vulnerability.
58f997e6b5d7fbffd3868e93018e0b08ce5aa9b6952803648651cbe83be3fd04
Red Hat Security Advisory 2021-1600-01 - The OpenSC set of libraries and utilities provides support for working with smart cards. OpenSC focuses on cards that support cryptographic operations and enables their use for authentication, mail encryption, or digital signatures. Issues addressed include a buffer overflow vulnerability.
ea042d188cee89c2dc9f437d3c23a4652e29a08604879f32eb926a2818622549
Red Hat Security Advisory 2021-1586-01 - GNOME is the default desktop environment of Red Hat Enterprise Linux. Issues addressed include code execution, insecure permissions, out of bounds write, and use-after-free vulnerabilities.
83850ab16175a11b58bb98d158fec9786cbf3c1014ed6eabb5bf6fd703ec9fd0
Red Hat Security Advisory 2021-1702-01 - Brotli is a generic-purpose lossless compression algorithm that compresses data using a combination of a modern variant of the LZ77 algorithm, Huffman coding and 2nd order context modeling, with a compression ratio comparable to the best currently available general-purpose compression methods. It is similar in speed with deflate but offers more dense compression. Issues addressed include a buffer overflow vulnerability.
92cfb0438d432779dede8f6e150073fc8b1a657afd297a4f8c10d71f372116ce
Red Hat Security Advisory 2021-1758-01 - The exiv2 packages provide a command line utility which can display and manipulate image metadata such as EXIF, LPTC, and JPEG comments. Issues addressed include an out of bounds read vulnerability.
e4682c43d85593964b6d82ee764e2a2a2531392c35063353dbb8761bed37812d
Whitepaper that discusses improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up that allows for arbitrary code execution when parsing a malicious image.
0517fcbf4b8f3c300d297bd3f60618a661d06f0ec5760f4909a67a4c5ac00216
Red Hat Security Advisory 2021-1723-01 - The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root.
eaac6a74857744887bf4d8f981f85c15222e7de2df1bae9d31b5fd2386f285f3
Red Hat Security Advisory 2021-1783-01 - Virtual Network Computing is a remote display system which allows users to view a computing desktop environment not only on the machine where it is running, but from anywhere on the Internet and from a wide variety of machine architectures. TigerVNC is a suite of VNC servers and clients.
2976cd13b135853831ffbc8a3cab885923c1027271cc7b8c75252935808455ad
Red Hat Security Advisory 2021-1679-01 - The bash packages provide Bash, which is the default shell for Red Hat Enterprise Linux.
bedd180f89519978a938efa7386b96d2a29ca03aa105a237c7520eed9b71134e
Red Hat Security Advisory 2021-1811-01 - LibVNCServer is a C library that enables you to implement VNC server functionality into own programs. Issues addressed include buffer overflow, denial of service, information leakage, and null pointer vulnerabilities.
989c7c7a8b862491fda2080a22ef46eea64cdd2291abf9a2c70ec3dde79b59f1
Red Hat Security Advisory 2021-1756-01 - Qt is a software toolkit for developing applications. The qt5-base packages contain base tools for string, xml, and network handling in Qt. Issues addressed include a buffer over-read vulnerability.
eaa46f888ace08e3209689467faa4c28e3c246c296da78700fcb1d6b55b27334
Backdoor.Win32.RMFdoor.c malware suffers from bypass and code execution vulnerabilities.
107ad28331b4ab861dc4cb9d59d629178c8cd98bc9f71c9038e458fcee131887
Red Hat Security Advisory 2021-1881-01 - Poppler is a Portable Document Format rendering library, used by applications such as Evince. The evince packages provide a simple multi-page document viewer for Portable Document Format, PostScript, Encapsulated PostScript files, and, with additional back-ends, also the Device Independent File format files. Issues addressed include a denial of service vulnerability.
7902b715881e48c06c7d7ab6b18f69dfb182487614057345e4cc0d534c8b8262
Red Hat Security Advisory 2021-1887-01 - Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3 server, and supports e-mail in either the maildir or mbox format. The SQL drivers and authentication plug-ins are provided as subpackages. Issues addressed include a denial of service vulnerability.
045796f3b8418b5d1ac6859ee2713ae9bc1a6fe4c33f84ee2b09f1874015aaf9
Red Hat Security Advisory 2021-1972-01 - Pandoc is a Haskell library for converting from one markup format to another, and a command-line tool that uses this library. Issues addressed include a denial of service vulnerability.
667547749f96ff11e87ec9a262c02e7a9bba2575db365e5e14b6b0bc446f5c5f
Red Hat Security Advisory 2021-1796-01 - The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc.
17e4148f715fcdfc5e42a3ba824d6297565714fa4d9e2d205fb63e5f46b32bed
Backdoor.Win32.Psychward.ds malware suffers from a weak hardcoded password issue.
0ab64808842591d301acbc2d58147a30b71905e5e45c00c9650e6911343e47d3
Backdoor.Win32.Psychward.c malware suffers from a code execution vulnerability.
f0a8ca9925ac7417a795e36198758a4789aab87dd2411a49d22a556a72702a1d
Red Hat Security Advisory 2021-1734-01 - The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments. Issues addressed include buffer overflow, out of bounds write, and use-after-free vulnerabilities.
dcedb24de00b5d9719c9c7f64315132bbca8814439dcc86339e598a30b79e84d