Category: Security

USN-4882-1: Ruby vulnerabilities

It was discovered that the Ruby JSON gem incorrectly handled certain JSON
files. If a user or automated system were tricked into parsing a specially
crafted JSON file, a remote attacker could use this issue to execute
arbitrary code. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.04
LTS. (CVE-2020-10663)

It was discovered that Ruby incorrectly handled certain socket memory
operations. A remote attacker could possibly use this issue to obtain
sensitive information. This issue only affected Ubuntu 18.04 LTS and
Ubuntu 20.04 LTS. (CVE-2020-10933)

It was discovered that Ruby incorrectly handled certain transfer-encoding
headers when using Webrick. A remote attacker could possibly use this issue
to bypass a reverse proxy. (CVE-2020-25613)

Smash a Button
[Total: 0 Average: 0]
About Me: I'm just some retired dude with a little bit more free time on my hands. If you want to support the site, why not help yourself out too by ordering some inexpensive web hosting so that you can start your own site?

[CentOS-announce] CEBA-2021:0854 CentOS 7 dmidecode BugFix Update

CentOS Errata and Bugfix Advisory 2021:0854

Upstream details at : https://access.redhat.com/errata/RHBA-2021:0854

The following updated files have been uploaded and are currently

syncing to the mirrors: ( sha256sum Filename )

x86_64:

7b812c97766f36c2e477c31f7c5cfaabf34e7bfaf746d34a7f6971d6abc3e95c  dmidecode-3.2-5.el7_9.1.x86_64.rpm

Source:

e98ba3314e7c5f7b5631d03bb72f3ce929cedaf3fd5386ef71cc432e2bf3c1f7  dmidecode-3.2-5.el7_9.1.src.rpm



Johnny Hughes

CentOS Project { http://www.centos.org/ }

irc: hughesjr, #[hidden email]

Twitter: @JohnnyCentOS

_______________________________________________

CentOS-announce mailing list

[hidden email]

https://lists.centos.org/mailman/listinfo/centos-announce

Smash a Button
[Total: 0 Average: 0]
About Me: I'm just some retired dude with a little bit more free time on my hands. If you want to support the site, why not help yourself out too by ordering some inexpensive web hosting so that you can start your own site?

[CentOS-announce] CEBA-2021:0861 CentOS 7 slapi-nis BugFix Update

CentOS Errata and Bugfix Advisory 2021:0861

Upstream details at : https://access.redhat.com/errata/RHBA-2021:0861

The following updated files have been uploaded and are currently

syncing to the mirrors: ( sha256sum Filename )

x86_64:

406370b48821a02c6cd77913d2bbfb9b1c8a38d584ee789492dbdbda1796c482  slapi-nis-0.56.5-3.el7_9.x86_64.rpm

Source:

0199a9051530c26a95f4b6454e9d3a2ad18715f01785cf9d51976a55fc3b3a9b  slapi-nis-0.56.5-3.el7_9.src.rpm



Johnny Hughes

CentOS Project { http://www.centos.org/ }

irc: hughesjr, #[hidden email]

Twitter: @JohnnyCentOS

_______________________________________________

CentOS-announce mailing list

[hidden email]

https://lists.centos.org/mailman/listinfo/centos-announce

Smash a Button
[Total: 0 Average: 0]
About Me: I'm just some retired dude with a little bit more free time on my hands. If you want to support the site, why not help yourself out too by ordering some inexpensive web hosting so that you can start your own site?

[CentOS-announce] CESA-2021:0808 Important CentOS 7 wpa_supplicant Security Update

CentOS Errata and Security Advisory 2021:0808 Important

Upstream details at : https://access.redhat.com/errata/RHSA-2021:0808

The following updated files have been uploaded and are currently

syncing to the mirrors: ( sha256sum Filename )

x86_64:

274694000767f81dd075fa9b55a09e5e143824fe75c13fb69a510889a95f7f25  wpa_supplicant-2.6-12.el7_9.2.x86_64.rpm

Source:

b261ffacff431bd6616224f98faed8eff963aae0e8a3232c5454ce41cfc4d77b  wpa_supplicant-2.6-12.el7_9.2.src.rpm



Johnny Hughes

CentOS Project { http://www.centos.org/ }

irc: hughesjr, #[hidden email]

Twitter: @JohnnyCentOS

_______________________________________________

CentOS-announce mailing list

[hidden email]

https://lists.centos.org/mailman/listinfo/centos-announce

Smash a Button
[Total: 0 Average: 0]
About Me: I'm just some retired dude with a little bit more free time on my hands. If you want to support the site, why not help yourself out too by ordering some inexpensive web hosting so that you can start your own site?

[CentOS-announce] CEBA-2021:0863 CentOS 7 lvm2 BugFix Update

CentOS Errata and Bugfix Advisory 2021:0863

Upstream details at : https://access.redhat.com/errata/RHBA-2021:0863

The following updated files have been uploaded and are currently

syncing to the mirrors: ( sha256sum Filename )

x86_64:

71f20a3e8a0bfe010564d4b6ff77d4b2647ba8383e62e64a557c131359fff889  cmirror-2.02.187-6.el7_9.4.x86_64.rpm

2ed2fcd8e79d8a62a374c054083792b657cb4d4668e39188deeb1ad3d72c948f  device-mapper-1.02.170-6.el7_9.4.x86_64.rpm

88e796afa3934d3cefb09a6a575714bdc8aede8ee6a3c6b7be0bb59a130d5efd  device-mapper-devel-1.02.170-6.el7_9.4.i686.rpm

39c70285432c56fe5dd79f0d155069d48956d10fcdcac838a4590c4a44b0b521  device-mapper-devel-1.02.170-6.el7_9.4.x86_64.rpm

96abc02747879aa68bd335dadad5f1e2d5ea64c519db929820194757e80af933  device-mapper-event-1.02.170-6.el7_9.4.x86_64.rpm

3feced91f7391352cfca0debae0c2aa43febbeee7d24929c75cd8d1d5a6b782e  device-mapper-event-devel-1.02.170-6.el7_9.4.i686.rpm

0986dce8e3a59471cabc7ed457e23c3f0fdc81e3cbab4093eaa0426e2d5d26ef  device-mapper-event-devel-1.02.170-6.el7_9.4.x86_64.rpm

12fb546150a8175c1aa95419a75e512972cb4c6c8eea1ade84e3319b1cfadaea  device-mapper-event-libs-1.02.170-6.el7_9.4.i686.rpm

68e1429d8531b268902804fdf15f6eb8ffcadc2d36315c6090a3edb14eb2ab13  device-mapper-event-libs-1.02.170-6.el7_9.4.x86_64.rpm

85c0d75554f340d99942609a8488c0ad5b2e4ddc0e40c1192056ab8ab8395492  device-mapper-libs-1.02.170-6.el7_9.4.i686.rpm

40ebdc19d1f43fa0892059019bcdba4bd97351c6d146ef74e530e00dc4732c4c  device-mapper-libs-1.02.170-6.el7_9.4.x86_64.rpm

9d34ca3784c0b623e48bc95dca03187a3404a69dd41baa19138db561f25be0f9  lvm2-2.02.187-6.el7_9.4.x86_64.rpm

14b4703549cb70dba8871814b76da451a63a067a0c48cbf78c90a94b528e8071  lvm2-cluster-2.02.187-6.el7_9.4.x86_64.rpm

75f984b4cdee8c054416401d8e1a4f00cb8d0fa104e54d12456f8884c58d7db5  lvm2-devel-2.02.187-6.el7_9.4.i686.rpm

06d86e24f67250850372882170efd7d12d041a90b28a72fb952a0f3d10141825  lvm2-devel-2.02.187-6.el7_9.4.x86_64.rpm

bd945872965d8eeb4accc4fc087400341b7ecfd21918499fa21ff68810cb4194  lvm2-libs-2.02.187-6.el7_9.4.i686.rpm

fdbf4bfe28188e74649c64f6a210cdce1aec37dafe82324cc4a7403e012e4c4f  lvm2-libs-2.02.187-6.el7_9.4.x86_64.rpm

a1e667c441a340c5ac1f0544c4a3d934fde4bf968688af42f5d33e773f092b5b  lvm2-lockd-2.02.187-6.el7_9.4.x86_64.rpm

bff2adfbc894a60df24055ab573b81c8128737c5d8b2530955f48d64f1c121b5  lvm2-python-boom-1.2-2.el7_9.4.noarch.rpm

c3b133e5f06890f86c2c918c35177dfe1000500cfee3fc5ff248faab874324f1  lvm2-python-libs-2.02.187-6.el7_9.4.x86_64.rpm

76398082a1500552d12445932d6e5689e02b1ebdced0a38e4003a7fa56871ce1  lvm2-sysvinit-2.02.187-6.el7_9.4.x86_64.rpm

Source:

e524f3b8629d666bb07fca6db6c4cf645fade58651dee4ccbe851534259adf17  lvm2-2.02.187-6.el7_9.4.src.rpm



Johnny Hughes

CentOS Project { http://www.centos.org/ }

irc: hughesjr, #[hidden email]

Twitter: @JohnnyCentOS

_______________________________________________

CentOS-announce mailing list

[hidden email]

https://lists.centos.org/mailman/listinfo/centos-announce

Smash a Button
[Total: 0 Average: 0]
About Me: I'm just some retired dude with a little bit more free time on my hands. If you want to support the site, why not help yourself out too by ordering some inexpensive web hosting so that you can start your own site?

Get PDFPrint This
Linux Tips
Creative Commons License
This work is licensed under a Creative Commons Attribution 4.0 International License.
SITEMAP