| The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them. |
|
 |
|
|
Computer vulnerabilities of Red Hat Enterprise Linux
QEMU: memory leak via the EHCI emulation
Synthesis of the vulnerability
A privileged attacker, inside a guest system, can create a memory leak via the EHCI emulation in QEMU, in order to trigger a denial of service on the host system.
Impacted products: Debian, Fedora, openSUSE Leap, QEMU, RHEL, SUSE Linux Enterprise Desktop, SLES, Ubuntu, WindRiver Linux.
Severity: 2/4.
Creation date: 07/06/2017.
Identifiers: CVE-2017-9374, DLA-1497-1, DSA-3920-1, FEDORA-2017-f941184db1, openSUSE-SU-2017:1872-1, RHSA-2017:2392-01, SUSE-SU-2017:1770-1, SUSE-SU-2017:1774-1, SUSE-SU-2017:1795-1, SUSE-SU-2017:1812-1, SUSE-SU-2017:2946-1, USN-3414-1, USN-3414-2, VIGILANCE-VUL-22912.
Description of the vulnerability
A privileged attacker, inside a guest system, can create a memory leak via the EHCI emulation in QEMU, in order to trigger a denial of service on the host system.
Complete Vigil@nce bulletin.... (Free trial) |
Apache Tomcat: error page tampering
Synthesis of the vulnerability
An attacker can trigger an HTTP error in Apache Tomcat, in order to corrupt the error page documents.
Impacted products: Tomcat, Blue Coat CAS, Debian, Fedora, HP-UX, Junos Space, MySQL Community, MySQL Enterprise, openSUSE Leap, Oracle Fusion Middleware, Solaris, Tuxedo, WebLogic, Percona Server, RHEL, JBoss EAP by Red Hat, SUSE Linux Enterprise Desktop, SLES, Symantec Content Analysis, Ubuntu.
Severity: 2/4.
Creation date: 06/06/2017.
Identifiers: bulletinjul2017, cpuapr2018, CVE-2017-5664, DLA-996-1, DSA-3891-1, DSA-3892-1, FEDORA-2017-63789c8c29, FEDORA-2017-e4638a345c, HPESBUX03828, JSA10838, openSUSE-SU-2017:3069-1, RHSA-2017:1801-01, RHSA-2017:1802-01, RHSA-2017:1809-01, RHSA-2017:2493-01, RHSA-2017:2494-01, RHSA-2017:2633-01, RHSA-2017:2635-01, RHSA-2017:2636-01, RHSA-2017:2637-01, RHSA-2017:2638-01, RHSA-2017:3080-01, RHSA-2017:3081-01, SA156, SUSE-SU-2017:3039-1, SUSE-SU-2017:3059-1, SUSE-SU-2017:3279-1, SUSE-SU-2018:1847-1, USN-3519-1, VIGILANCE-VUL-22907.
Description of the vulnerability
The Apache Tomcat product offers a web service.
HTTP error pages may be customized. However, when the page content is provided by a static document instead of a servlet output, Tomcat allows to tamper with this source document.
An attacker can therefore trigger an HTTP error in Apache Tomcat, in order to corrupt the error page documents.
Complete Vigil@nce bulletin.... (Free trial) |
Google Chrome: multiple vulnerabilities
Synthesis of the vulnerability
An attacker can use several vulnerabilities of Google Chrome.
Impacted products: Fedora, Chrome, openSUSE Leap, Opera, RHEL, SUSE Linux Enterprise Desktop, SLES.
Severity: 3/4.
Creation date: 06/06/2017.
Identifiers: 1232, CERTFR-2017-AVI-168, CVE-2017-5070, CVE-2017-5071, CVE-2017-5072, CVE-2017-5073, CVE-2017-5074, CVE-2017-5075, CVE-2017-5076, CVE-2017-5077, CVE-2017-5078, CVE-2017-5079, CVE-2017-5080, CVE-2017-5081, CVE-2017-5082, CVE-2017-5083, CVE-2017-5085, CVE-2017-5086, FEDORA-2017-1e34da27f3, FEDORA-2017-a66e2c5b62, FEDORA-2017-a7a488d8d0, FEDORA-2017-b8d76bef4e, openSUSE-SU-2017:1501-1, openSUSE-SU-2017:1502-1, RHSA-2017:1399-01, VIGILANCE-VUL-22905.
Description of the vulnerability
An attacker can use several vulnerabilities of Chrome.
A detailed analysis was not performed for this bulletin.
Complete Vigil@nce bulletin.... (Free trial) |
QEMU: memory leak via the AHCI emulation
Synthesis of the vulnerability
A privileged attacker, inside a guest system, can create a memory leak via the AHCI emulation in QEMU, in order to trigger a denial of service on the host system.
Impacted products: Debian, openSUSE Leap, QEMU, RHEL, SUSE Linux Enterprise Desktop, SLES, Ubuntu, WindRiver Linux.
Severity: 2/4.
Creation date: 06/06/2017.
Identifiers: CVE-2017-9373, DLA-1497-1, DSA-3920-1, openSUSE-SU-2017:1872-1, RHSA-2017:2392-01, SUSE-SU-2017:1774-1, SUSE-SU-2017:2946-1, SUSE-SU-2017:2963-1, SUSE-SU-2017:2969-1, SUSE-SU-2017:3084-1, USN-3414-1, USN-3414-2, VIGILANCE-VUL-22901.
Description of the vulnerability
A privileged attacker, inside a guest system, can create a memory leak via the AHCI emulation in QEMU, in order to trigger a denial of service on the host system.
Complete Vigil@nce bulletin.... (Free trial) |
QEMU: infinite loop in the emulator of the network device e1000e
Synthesis of the vulnerability
A privileged attacker, inside a guest system, can generate an endless loop in the QEMU emulator for the netword card 1000e, in order to trigger a denial of service on the host system.
Impacted products: Debian, Fedora, QEMU, RHEL, Ubuntu.
Severity: 2/4.
Creation date: 31/05/2017.
Identifiers: 1452620, CVE-2017-9310, DSA-3920-1, FEDORA-2017-f941184db1, RHSA-2017:2392-01, USN-3414-1, USN-3414-2, VIGILANCE-VUL-22869.
Description of the vulnerability
A privileged attacker, inside a guest system, can generate an endless loop in the QEMU emulator for the netword card 1000e, in order to trigger a denial of service on the host system.
A detailed analysis was not performed for this bulletin.
Complete Vigil@nce bulletin.... (Free trial) |
OpenLDAP: denial of service via the search option "Paged Results"
Synthesis of the vulnerability
An attacker can generate a fatal error via the search option "Paged Results" in OpenLDAP, in order to trigger a denial of service.
Impacted products: Debian, Fedora, OpenLDAP, openSUSE Leap, RHEL, Ubuntu.
Severity: 2/4.
Creation date: 30/05/2017.
Identifiers: 8655, CVE-2017-9287, DLA-972-1, DSA-3868-1, FEDORA-2017-1ca18683e4, openSUSE-SU-2017:2181-1, RHSA-2017:1852-01, USN-3307-1, USN-3307-2, VIGILANCE-VUL-22861.
Description of the vulnerability
An attacker can generate a fatal error via the search option "Paged Results" in OpenLDAP, in order to trigger a denial of service.
Technical details are unknown.
Complete Vigil@nce bulletin.... (Free trial) |
FreeRADIUS: bypass of TLS based flow protection
Synthesis of the vulnerability
An attacker can made FreeRADIUS restore a TLS session before the authentication process complete, in order to tamper with the EAP based authentication.
Impacted products: Debian, Fedora, FreeRADIUS, openSUSE Leap, RHEL, Ubuntu, WindRiver Linux.
Severity: 2/4.
Creation date: 29/05/2017.
Identifiers: CVE-2017-9148, DLA-977-1, FEDORA-2017-7ee5c17024, FEDORA-2017-e698bba980, openSUSE-SU-2017:1609-1, RHSA-2017:1581-01, USN-3316-1, VIGILANCE-VUL-22840.
Description of the vulnerability
An attacker can made FreeRADIUS restore a TLS session before the authentication process complete, in order to tamper with the EAP based authentication.
Technical details are unknown.
Complete Vigil@nce bulletin.... (Free trial) |
Linux kernel: use after free in the usb-audio driver
Synthesis of the vulnerability
An attacker can force a double free in the usb-audio driver of the Linux kernel, in order to trigger a denial of service, and possibly to run code.
Impacted products: Debian, Fedora, Linux, openSUSE, openSUSE Leap, RHEL, SUSE Linux Enterprise Desktop, SLES, Ubuntu.
Severity: 1/4.
Creation date: 15/02/2016.
Revision date: 15/05/2017.
Identifiers: CERTFR-2016-AVI-082, CERTFR-2016-AVI-099, CERTFR-2016-AVI-103, CERTFR-2016-AVI-110, CVE-2016-2384, DSA-3503-1, FEDORA-2016-7e12ae5359, FEDORA-2016-9fbe2c258b, FEDORA-2016-e7162262b0, openSUSE-SU-2016:1008-1, openSUSE-SU-2016:2144-1, openSUSE-SU-2016:2649-1, RHSA-2016:2574-02, RHSA-2016:2584-02, RHSA-2017:0817-01, SUSE-SU-2016:0785-1, SUSE-SU-2016:0911-1, SUSE-SU-2016:1019-1, SUSE-SU-2016:1102-1, SUSE-SU-2016:1203-1, SUSE-SU-2016:1764-1, SUSE-SU-2016:2074-1, USN-2928-1, USN-2928-2, USN-2929-1, USN-2929-2, USN-2930-1, USN-2930-2, USN-2930-3, USN-2931-1, USN-2932-1, VIGILANCE-VUL-18941.
Description of the vulnerability
The Linux kernel includes a generic device driver for devices that comply with the MIDI interface.
However, in case of error, the function snd_usbmidi_create() frees an objet describing the MIDI interface, although this freeing is already handled by a caller function. The net result is a double free.
An attacker can therefore force a double free in the usb-audio driver of the Linux kernel, in order to trigger a denial of service, and possibly to run code.
Complete Vigil@nce bulletin.... (Free trial) |
PostgreSQL: three vulnerabilities
Synthesis of the vulnerability
An attacker can use several vulnerabilities of PostgreSQL.
Impacted products: Debian, Fedora, openSUSE Leap, PostgreSQL, RHEL.
Severity: 2/4.
Creation date: 11/05/2017.
Identifiers: CVE-2017-7484, CVE-2017-7485, CVE-2017-7486, DLA-1051-1, DSA-3851-1, FEDORA-2017-0d5817efc0, FEDORA-2017-4de07172f4, FEDORA-2017-a8f4562bf5, openSUSE-SU-2017:1495-1, openSUSE-SU-2017:1772-1, RHSA-2017:1677-01, RHSA-2017:1678-01, RHSA-2017:1983-01, VIGILANCE-VUL-22714.
Description of the vulnerability
Several vulnerabilities were announced in PostgreSQL.
An attacker can bypass security features via Selectivity Estimators, in order to escalate his privileges. [severity:2/4; CVE-2017-7484]
An attacker can act as a Man-in-the-Middle via libpq, in order to read or write data in the session. [severity:2/4; CVE-2017-7485]
An attacker can bypass security features via pg_user_mappings, in order to obtain sensitive information. [severity:2/4; CVE-2017-7486]
Complete Vigil@nce bulletin.... (Free trial) |
IBM JDK: external XML entity injection
Synthesis of the vulnerability
An attacker can transmit malicious XML data to IBM JDK, in order to read a file, scan sites, or trigger a denial of service.
Impacted products: AIX, Tivoli System Automation, Domino, Notes, RHEL, SUSE Linux Enterprise Desktop, SLES.
Severity: 2/4.
Creation date: 10/05/2017.
Identifiers: 2005058, 2005160, 2005255, 2007242, CVE-2017-1289, RHSA-2017:1220-01, RHSA-2017:1221-01, RHSA-2017:1222-01, SUSE-SU-2017:1384-1, SUSE-SU-2017:1386-1, SUSE-SU-2017:1387-1, SUSE-SU-2017:1444-1, VIGILANCE-VUL-22701.
Description of the vulnerability
XML data can contain external entities (DTD):
<!ENTITY name SYSTEM "file">
<!ENTITY name SYSTEM "http://server/file">
A program which reads these XML data can replace these entities by data coming from the indicated file. When the program uses XML data coming from an untrusted source, this behavior leads to:
- content disclosure from files of the server
- private web site scan
- a denial of service by opening a blocking file
This feature must be disabled to process XML data coming from an untrusted source.
However, the IBM JDK parser allows external entities.
An attacker can therefore transmit malicious XML data to IBM JDK, in order to read a file, scan sites, or trigger a denial of service.
Complete Vigil@nce bulletin.... (Free trial) |
Our database contains other pages. You can request a free trial to read them.
Display information about Red Hat Enterprise Linux:
|