|
|
Subscribe / Log in / New account

Security updates for Thursday

[Posted March 19, 2015 by jake]

Security updates for Thursday

[Security] Posted Mar 19, 2015 15:28 UTC (Thu) by jake

OpenSSL has updates released today, with two vulnerabilities of "High" severity, as described in its advisory. One of the High vulnerabilities is a reclassification of the FREAK vulnerability due to the prevalence of servers with RSA export ciphers available, the other is a denial of service in OpenSSL 1.0.2.

CentOS has updated freetype (C6: multiple vulnerabilities) and unzip (C6: multiple vulnerabilities).

Debian has updated file (denial of service).

Debian-LTS has updated mono (three SSL/TLS vulnerabilities).

Gentoo has updated python (multiple vulnerabilities, two from 2013).

Mageia has updated moodle (multiple vulnerabilities).

openSUSE has updated gdm (13.2: screen lock bypass), glusterfs (13.2: denial of service), and libssh2_org (13.2, 13.1: information leak).

Oracle has updated unzip (OL7; OL6: multiple vulnerabilities).

Red Hat has updated postgresql92-postgresql (RHSC1: multiple vulnerabilities) and unzip (RHEL6&7: multiple vulnerabilities).

SUSE has updated kernel (SLE12: multiple vulnerabilities).

Comments (2 posted)


Copyright © 2015, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds