Scientific Linux alert SLSA-2018:1199-1 (patch)


From:
    	       Scott Reid <svreid@fnal.gov> 
To:
    	       <scientific-linux-errata@listserv.fnal.gov> 
Subject:
    	       Security ERRATA Important: patch on SL6.x i386/x86_64 
Date:
    	       Mon, 23 Apr 2018 21:03:34 +0000
Message-ID:
    	       <20180423210334.980.77957@slpackages.fnal.gov>
Synopsis:          Important: patch security update
Advisory ID:       SLSA-2018:1199-1
Issue Date:        2018-04-23
CVE Numbers:       CVE-2018-1000156
--

Patch should be installed because it is a common way of upgrading
applications.

Security Fix(es):

* patch: Malicious patch files cause ed to execute arbitrary commands
(CVE-2018-1000156)
--

SL6
  x86_64
    patch-2.6-8.el6_9.x86_64.rpm
    patch-debuginfo-2.6-8.el6_9.x86_64.rpm
  i386
    patch-2.6-8.el6_9.i686.rpm
    patch-debuginfo-2.6-8.el6_9.i686.rpm

- Scientific Linux Development Team

From:		Scott Reid <svreid@fnal.gov>
To:		<scientific-linux-errata@listserv.fnal.gov>
Subject:		Security ERRATA Important: patch on SL6.x i386/x86_64
Date:		Mon, 23 Apr 2018 21:03:34 +0000
Message-ID:		<20180423210334.980.77957@slpackages.fnal.gov>