Linux Security Roundup for Week 45, 2019

Security 10755 Published by

Even Linux need some security updates. Here's a roundup of last week's Linux updates and patches for Arch Linux, CentOS, Debian GNU/Linux, Fedora Linux, Gentoo Linux, Oracle Linux, Red Hat Enterprise Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.



Arch Linux

ASA-201911-1: chromium: arbitrary code execution
ASA-201911-2: qt5-webengine: arbitrary code execution
ASA-201911-2: qt5-webengine: arbitrary code execution
ASA-201911-3: glibc: information disclosure
ASA-201911-4: python2: information disclosure
ASA-201911-5: ghostscript: sandbox escape
ASA-201911-6: samba: multiple issues
ASA-201911-7: electron: arbitrary code execution
ASA-201911-8: squid: multiple issues
ASA-201911-9: linux-hardened: arbitrary code execution

CentOS

CESA-2019:3287 Critical CentOS 6 php Security Update
CEEA-2019:3280 CentOS 6 nss Enhancement Update
CEEA-2019:3280 CentOS 6 nss-softokn Enhancement Update
CEEA-2019:3280 CentOS 6 nss-util Enhancement Update
CEEA-2019:3280 CentOS 6 nspr Enhancement Update
CESA-2019:3281 Critical CentOS 6 firefox Security Update
CESA-2019:3286 Critical CentOS 7 php Security Update

Debian GNU/Linux

ELA-186-1: libssh2 security update
DSA 4558-1: webkit2gtk security update
DLA 1980-1: wordpress security update
DLA 1981-1: cpio security update
ELA-187-1: cpio security update
DLA 1982-1: openafs security update
DSA 4559-1: proftpd-dfsg security update
DLA 1983-1: simplesamlphp security update
DSA 4560-1: simplesamlphp security update
DSA 4561-1: fribidi security update
DLA 1985-1: djvulibre security update
DLA 1984-1: gdal security update

Fedora Linux

Fedora 30 Update: webkit2gtk3-2.26.1-3.fc30
Fedora 30 Update: file-5.36-5.fc30
Fedora 30 Update: nss-3.47.0-2.fc30
Fedora 30 Update: nspr-4.23.0-1.fc30
Fedora 30 Update: php-7.3.11-1.fc30
Fedora 29 Update: java-latest-openjdk-13.0.1.9-2.rolling.fc29
Fedora 29 Update: t1utils-1.41-1.fc29
Fedora 30 Update: t1utils-1.41-1.fc30
Fedora 31 Update: t1utils-1.41-1.fc31
Fedora 31 Update: chromium-78.0.3904.70-1.fc31
Fedora 31 Update: wpa_supplicant-2.9-2.fc31
Fedora 31 Update: libssh2-1.9.0-3.fc31
Fedora 31 Update: rssh-2.3.4-15.fc31
Fedora 31 Update: hostapd-2.9-2.fc31
Fedora 31 Update: chromium-78.0.3904.87-1.fc31
Fedora 30 Update: rssh-2.3.4-15.fc30
Fedora 30 Update: hostapd-2.9-2.fc30
Fedora 30 Update: gd-2.2.5-9.fc30
Fedora 29 Update: file-5.34-15.fc29
Fedora 29 Update: nspr-4.23.0-1.fc29
Fedora 29 Update: rssh-2.3.4-15.fc29
Fedora 29 Update: gd-2.2.5-8.fc29

Gentoo Linux

GLSA 201911-01: OpenSSH: Integer overflow
GLSA 201911-02: pump: User-assisted execution of arbitrary code
GLSA 201911-04: OpenSSL: Multiple vulnerabilities
GLSA 201911-03 : Oniguruma: Multiple vulnerabilities

Oracle Linux

ELEA-2019-3280: Oracle Linux 6 nss, nss-softokn, nss-util and nspr bug fix and enhancement update
ELEA-2019-3091: Oracle Linux 7 microcode_ctl enhancement update
ELEA-2019-3090: Oracle Linux 6 microcode_ctl enhancement update
ELEA-2019-3274: Oracle Linux 8 new package: kmod-redhat-btusb
ELEA-2019-3275: Oracle Linux 8 new package: kmod-redhat-iwlwifi
ELSA-2019-3755 Important: Oracle Linux 6 sudo security update

Red Hat Enterprise Linux

RHSA-2019:3698-01: Moderate: libarchive security and bug fix update
RHSA-2019:3694-01: Important: sudo security update
RHSA-2019:3706-01: Moderate: lua security and bug fix update
RHSA-2019:3705-01: Moderate: libjpeg-turbo security update
RHSA-2019:3699-01: Moderate: evolution security and bug fix update
RHSA-2019:3701-01: Moderate: curl security and bug fix update
RHSA-2019:3702-01: Moderate: openssh security, bug fix, and enhancement update
RHSA-2019:3704-01: Moderate: numpy security update
RHSA-2019:3700-01: Low: openssl security, bug fix, and enhancement update
RHSA-2019:3707-01: Moderate: dbus security update
RHSA-2019:3703-01: Low: libvorbis security update
RHSA-2019:3708-01: Moderate: mariadb:10.3 security and bug fix update
RHSA-2019:3643-01: Low: gettext security update
RHSA-2019:3335-01: Moderate: python27:2.7 security and bug fix update
RHSA-2019:3345-01: Low: virt:rhel security, bug fix, and enhancement update
RHSA-2019:3513-01: Moderate: glibc security, bug fix, and enhancement update
RHSA-2019:3352-01: Low: gdb security, bug fix, and enhancement update
RHSA-2019:3419-01: Moderate: libtiff security update
RHSA-2019:3391-01: Low: libreswan security and bug fix update
RHSA-2019:3600-01: Moderate: gnutls security, bug fix, and enhancement update
RHSA-2019:3553-01: Low: GNOME security, bug fix, and enhancement update
RHSA-2019:3552-01: Low: bind security and bug fix update
RHSA-2019:3575-01: Low: elfutils security, bug fix, and enhancement update
RHSA-2019:3497-01: Moderate: http-parser security and bug fix update
RHSA-2019:3467-01: Moderate: dovecot security and bug fix update
RHSA-2019:3583-01: Moderate: yum security, bug fix, and enhancement update
RHSA-2019:3476-01: Moderate: squid:4 security and bug fix update
RHSA-2019:3436-01: Moderate: httpd:2.4 security and bug fix update
RHSA-2019:3387-01: Low: osinfo-db and libosinfo security and bug fix update
RHSA-2019:3401-01: Important: 389-ds:1.4 security, bug fix, and enhancement update
RHSA-2019:3530-01: Moderate: glib2 security, bug fix, and enhancement update
RHSA-2019:3520-01: Moderate: python3 security and bug fix update
RHSA-2019:3651-01: Low: sssd security, bug fix, and enhancement update
RHSA-2019:3421-01: Moderate: mod_auth_mellon security, bug fix, and enhancement update
RHSA-2019:3338-01: Moderate: edk2 security, bug fix, and enhancement update
RHSA-2019:3353-01: Moderate: freeradius:3.0 security and bug fix update
RHSA-2019:3590-01: Moderate: python-urllib3 security update
RHSA-2019:3517-01: Important: kernel security, bug fix, and enhancement update
RHSA-2019:3464-01: Low: virt-manager security, bug fix, and enhancement update
RHSA-2019:3403-01: Important: container-tools:rhel8 security, bug fix, and enhancement update
RHSA-2019:3525-01: Moderate: dhcp security and bug fix update
RHSA-2019:3610-01: Moderate: libqb security and bug fix update
RHSA-2019:3673-01: Low: lldpad security and bug fix update
RHSA-2019:3309-01: Important: kernel-rt security and bug fix update
RHSA-2019:3433-01: Moderate: go-toolset:rhel8 security, bug fix, and enhancement update
RHSA-2019:3592-01: Moderate: systemd security, bug fix, and enhancement update
RHSA-2019:3390-01: Moderate: qt5-qtbase security and bug fix update
RHSA-2019:3624-01: Moderate: libseccomp security, bug fix, and enhancement update
RHSA-2019:3494-01: Important: container-tools:1.0 security and bug fix update
RHSA-2019:3582-01: Moderate: samba security, bug fix, and enhancement update
RHSA-2019:3724-01: Critical: rh-php70-php security update
RHSA-2019:3725-01: Moderate: rh-python36-python security, bug fix, and enhancement update
RHSA-2019:3736-01: Critical: php:7.3 security update
RHSA-2019:3735-01: Critical: php:7.2 security update
RHSA-2019:3759-01: Important: chromium-browser security update
RHSA-2019:3756-01: Important: thunderbird security update
RHSA-2019:3755-01: Important: sudo security update

Slackware Linux

libtiff (SSA:2019-308-01)
Slackware 14.2 kernel (SSA:2019-311-01)

SUSE Linux

openSUSE-SU-2019:2420-1: important: Security update for chromium, re2
openSUSE-SU-2019:2424-1: important: Security update for chromium, re2
openSUSE-SU-2019:2421-1: important: Security update for chromium
openSUSE-SU-2019:2425-1: important: Security update for chromium, re2
openSUSE-SU-2019:2426-1: important: Security update for chromium
openSUSE-SU-2019:2427-1: important: Security update for chromium
openSUSE-SU-2019:2438-1: moderate: Security update for python3
openSUSE-SU-2019:2441-1: important: Security update for php7
openSUSE-SU-2019:2444-1: important: Security update for the Linux Kernel
openSUSE-SU-2019:2435-1: moderate: Security update for nfs-utils
openSUSE-SU-2019:2442-1: important: Security update for samba
openSUSE-SU-2019:2432-1: moderate: Security update for binutils
openSUSE-SU-2019:2434-1: moderate: Security update for docker-runc
openSUSE-SU-2019:2447-1: important: Security update for chromium
openSUSE-SU-2019:2458-1: important: Security update for samba
openSUSE-SU-2019:2459-1: important: Security update for MozillaFirefox, MozillaFirefox-branding-SLE
openSUSE-SU-2019:2457-1: important: Security update for php7
openSUSE-SU-2019:2452-1: important: Recommended update for MozillaThunderbird
openSUSE-SU-2019:2464-1: important: Recommended update for MozillaThunderbird
openSUSE-SU-2019:2454-1: moderate: Security update for libtomcrypt
openSUSE-SU-2019:2453-1: moderate: Security update for python3
openSUSE-SU-2019:2451-1: important: Security update for MozillaFirefox, MozillaFirefox-branding-SLE
openSUSE-SU-2019:2466-1: moderate: Security update for gdal
openSUSE-SU-2019:2472-1: moderate: Security update for python-ecdsa
openSUSE-SU-2019:2474-1: moderate: Security update for python-ecdsa

Ubuntu Linux

USN-4172-2: file vulnerability
USN-4171-2: Apport vulnerabilities
USN-4170-3: Whoopsie regression
USN-4171-3: Apport regression
USN-4174-1: HAproxy vulnerability
USN-4171-4: Apport regression
USN-4175-1: Nokogiri vulnerability
USN-4165-2: Firefox regressions
USN-4176-1: GNU cpio vulnerability
USN-4177-1: Rygel vulnerability
USN-4178-1: WebKitGTK+ vulnerabilities
USN-4179-1: FriBidi vulnerability


Tuxrepair

digiKam 6.4.0 released

openSUSE-SU-2019:2477-1: moderate: Recommended update for bcm20702a1-firmware

Windows

Linux

macOS

Community

  • dhamu
    Hello Phil, I have a Linux Tutorial website that curre ...
  • StephanX
    Hi friends, i am new in the Linux universe but i try to ...
  • Philipp
    I would try the XanMod kernel: https://xanmod.orgĀ  I ...