The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Computer vulnerabilities of Red Hat Fedora

vulnerability announce CVE-2017-9374

QEMU: memory leak via the EHCI emulation

Synthesis of the vulnerability

A privileged attacker, inside a guest system, can create a memory leak via the EHCI emulation in QEMU, in order to trigger a denial of service on the host system.
Impacted products: Debian, Fedora, openSUSE Leap, QEMU, RHEL, SUSE Linux Enterprise Desktop, SLES, Ubuntu, WindRiver Linux.
Severity: 2/4.
Creation date: 07/06/2017.
Identifiers: CVE-2017-9374, DLA-1497-1, DSA-3920-1, FEDORA-2017-f941184db1, openSUSE-SU-2017:1872-1, RHSA-2017:2392-01, SUSE-SU-2017:1770-1, SUSE-SU-2017:1774-1, SUSE-SU-2017:1795-1, SUSE-SU-2017:1812-1, SUSE-SU-2017:2946-1, USN-3414-1, USN-3414-2, VIGILANCE-VUL-22912.

Description of the vulnerability

A privileged attacker, inside a guest system, can create a memory leak via the EHCI emulation in QEMU, in order to trigger a denial of service on the host system.
Complete Vigil@nce bulletin.... (Free trial)

computer vulnerability announce CVE-2017-5664

Apache Tomcat: error page tampering

Synthesis of the vulnerability

An attacker can trigger an HTTP error in Apache Tomcat, in order to corrupt the error page documents.
Impacted products: Tomcat, Blue Coat CAS, Debian, Fedora, HP-UX, Junos Space, MySQL Community, MySQL Enterprise, openSUSE Leap, Oracle Fusion Middleware, Solaris, Tuxedo, WebLogic, Percona Server, RHEL, JBoss EAP by Red Hat, SUSE Linux Enterprise Desktop, SLES, Symantec Content Analysis, Ubuntu.
Severity: 2/4.
Creation date: 06/06/2017.
Identifiers: bulletinjul2017, cpuapr2018, CVE-2017-5664, DLA-996-1, DSA-3891-1, DSA-3892-1, FEDORA-2017-63789c8c29, FEDORA-2017-e4638a345c, HPESBUX03828, JSA10838, openSUSE-SU-2017:3069-1, RHSA-2017:1801-01, RHSA-2017:1802-01, RHSA-2017:1809-01, RHSA-2017:2493-01, RHSA-2017:2494-01, RHSA-2017:2633-01, RHSA-2017:2635-01, RHSA-2017:2636-01, RHSA-2017:2637-01, RHSA-2017:2638-01, RHSA-2017:3080-01, RHSA-2017:3081-01, SA156, SUSE-SU-2017:3039-1, SUSE-SU-2017:3059-1, SUSE-SU-2017:3279-1, SUSE-SU-2018:1847-1, USN-3519-1, VIGILANCE-VUL-22907.

Description of the vulnerability

The Apache Tomcat product offers a web service.

HTTP error pages may be customized. However, when the page content is provided by a static document instead of a servlet output, Tomcat allows to tamper with this source document.

An attacker can therefore trigger an HTTP error in Apache Tomcat, in order to corrupt the error page documents.
Complete Vigil@nce bulletin.... (Free trial)

computer vulnerability CVE-2017-5070 CVE-2017-5071 CVE-2017-5072

Google Chrome: multiple vulnerabilities

Synthesis of the vulnerability

An attacker can use several vulnerabilities of Google Chrome.
Impacted products: Fedora, Chrome, openSUSE Leap, Opera, RHEL, SUSE Linux Enterprise Desktop, SLES.
Severity: 3/4.
Creation date: 06/06/2017.
Identifiers: 1232, CERTFR-2017-AVI-168, CVE-2017-5070, CVE-2017-5071, CVE-2017-5072, CVE-2017-5073, CVE-2017-5074, CVE-2017-5075, CVE-2017-5076, CVE-2017-5077, CVE-2017-5078, CVE-2017-5079, CVE-2017-5080, CVE-2017-5081, CVE-2017-5082, CVE-2017-5083, CVE-2017-5085, CVE-2017-5086, FEDORA-2017-1e34da27f3, FEDORA-2017-a66e2c5b62, FEDORA-2017-a7a488d8d0, FEDORA-2017-b8d76bef4e, openSUSE-SU-2017:1501-1, openSUSE-SU-2017:1502-1, RHSA-2017:1399-01, VIGILANCE-VUL-22905.

Description of the vulnerability

An attacker can use several vulnerabilities of Chrome.

A detailed analysis was not performed for this bulletin.
Complete Vigil@nce bulletin.... (Free trial)

computer vulnerability note CVE-2017-6512

Perl File-Path: permission tampering

Synthesis of the vulnerability

A local attacker can create a symbolic link, in order to change the access rights assigned to the pointed file, with the privileges of the process using the Perl module File::Path.
Impacted products: Debian, Fedora, Kubernetes, OpenBSD, openSUSE Leap, Ubuntu.
Severity: 2/4.
Creation date: 06/06/2017.
Identifiers: CVE-2017-6512, DLA-978-1, DSA-3873-1, FEDORA-2017-212f07c853, FEDORA-2017-4e981a51e6, FEDORA-2017-dd42592f9a, openSUSE-SU-2017:3101-1, USN-3625-1, USN-3625-2, VIGILANCE-VUL-22899.

Description of the vulnerability

A local attacker can create a symbolic link, in order to change the access rights assigned to the pointed file, with the privileges of the process using the Perl module File::Path.
Complete Vigil@nce bulletin.... (Free trial)

computer vulnerability alert CVE-2017-9343 CVE-2017-9344 CVE-2017-9345

Wireshark: multiple vulnerabilities

Synthesis of the vulnerability

An attacker can use several vulnerabilities of Wireshark.
Impacted products: Fedora, openSUSE Leap, Solaris, Wireshark.
Severity: 2/4.
Creation date: 02/06/2017.
Identifiers: bulletinjul2017, CVE-2017-9343, CVE-2017-9344, CVE-2017-9345, CVE-2017-9346, CVE-2017-9347, CVE-2017-9348, CVE-2017-9349, CVE-2017-9350, CVE-2017-9351, CVE-2017-9352, CVE-2017-9353, CVE-2017-9354, FEDORA-2017-5f15bf15cf, FEDORA-2017-f0509fbf37, openSUSE-SU-2017:1534-1, openSUSE-SU-2017:1958-1, VIGILANCE-VUL-22886, wnpa-sec-2017-22, wnpa-sec-2017-23, wnpa-sec-2017-24, wnpa-sec-2017-25, wnpa-sec-2017-26, wnpa-sec-2017-27, wnpa-sec-2017-28, wnpa-sec-2017-29, wnpa-sec-2017-30, wnpa-sec-2017-31, wnpa-sec-2017-32, wnpa-sec-2017-33.

Description of the vulnerability

Several vulnerabilities were announced in Wireshark.

An attacker can generate an infinite loop via Bazaar, in order to trigger a denial of service. [severity:2/4; CVE-2017-9352, wnpa-sec-2017-22]

An attacker can force a read at an invalid address via DOF, in order to trigger a denial of service, or to obtain sensitive information. [severity:2/4; CVE-2017-9348, wnpa-sec-2017-23]

An attacker can force a read at an invalid address via DHCP, in order to trigger a denial of service, or to obtain sensitive information. [severity:1/4; CVE-2017-9351, wnpa-sec-2017-24]

An attacker can generate an infinite loop via SoulSeek, in order to trigger a denial of service. [severity:2/4; CVE-2017-9346, wnpa-sec-2017-25]

An attacker can generate an infinite loop via DNS, in order to trigger a denial of service. [severity:2/4; CVE-2017-9345, wnpa-sec-2017-26]

An attacker can generate an infinite loop via DICOM, in order to trigger a denial of service. [severity:2/4; CVE-2017-9349, wnpa-sec-2017-27]

An attacker can create a memory leak via openSAFETY, in order to trigger a denial of service. [severity:2/4; CVE-2017-9350, wnpa-sec-2017-28]

An attacker can trigger a fatal error via BT L2CAP, in order to trigger a denial of service. [severity:2/4; CVE-2017-9344, wnpa-sec-2017-29]

An attacker can send malicious MSNIP packets, in order to trigger a denial of service. [severity:2/4; CVE-2017-9343, wnpa-sec-2017-30]

An attacker can send malicious ROS packets, in order to trigger a denial of service. [severity:2/4; CVE-2017-9347, wnpa-sec-2017-31]

An attacker can send malicious RGMP packets, in order to trigger a denial of service. [severity:2/4; CVE-2017-9354, wnpa-sec-2017-32]

An attacker can send malicious IPv6 packets, in order to trigger a denial of service. [severity:1/4; CVE-2017-9353, wnpa-sec-2017-33]
Complete Vigil@nce bulletin.... (Free trial)

vulnerability CVE-2017-9330

QEMU: infinite loop via the USB OHCI emulation

Synthesis of the vulnerability

An attacker, inside a guest system, can generate an infinite loop via the USB emulation, OHCI interface in QEMU, in order to trigger a denial of service on the host system.
Impacted products: Debian, Fedora, openSUSE Leap, QEMU, SUSE Linux Enterprise Desktop, SLES, Ubuntu, WindRiver Linux.
Severity: 2/4.
Creation date: 01/06/2017.
Identifiers: CVE-2017-9330, DLA-1497-1, DSA-3920-1, FEDORA-2017-b7f1197c23, FEDORA-2017-ed735463e3, FEDORA-2017-f941184db1, openSUSE-SU-2017:1826-1, openSUSE-SU-2017:1872-1, SUSE-SU-2017:1715-1, SUSE-SU-2017:1742-1, SUSE-SU-2017:1770-1, SUSE-SU-2017:1774-1, SUSE-SU-2017:1795-1, SUSE-SU-2017:1812-1, SUSE-SU-2017:2946-1, SUSE-SU-2017:2963-1, SUSE-SU-2017:2969-1, SUSE-SU-2017:3084-1, USN-3414-1, USN-3414-2, VIGILANCE-VUL-22880.

Description of the vulnerability

An attacker, inside a guest system, can generate an infinite loop via the USB emulation, OHCI interface in QEMU, in order to trigger a denial of service on the host system.

Technical details are unknown.
Complete Vigil@nce bulletin.... (Free trial)

computer vulnerability note CVE-2017-9310

QEMU: infinite loop in the emulator of the network device e1000e

Synthesis of the vulnerability

A privileged attacker, inside a guest system, can generate an endless loop in the QEMU emulator for the netword card 1000e, in order to trigger a denial of service on the host system.
Impacted products: Debian, Fedora, QEMU, RHEL, Ubuntu.
Severity: 2/4.
Creation date: 31/05/2017.
Identifiers: 1452620, CVE-2017-9310, DSA-3920-1, FEDORA-2017-f941184db1, RHSA-2017:2392-01, USN-3414-1, USN-3414-2, VIGILANCE-VUL-22869.

Description of the vulnerability

A privileged attacker, inside a guest system, can generate an endless loop in the QEMU emulator for the netword card 1000e, in order to trigger a denial of service on the host system.

A detailed analysis was not performed for this bulletin.
Complete Vigil@nce bulletin.... (Free trial)

vulnerability alert CVE-2017-9287

OpenLDAP: denial of service via the search option "Paged Results"

Synthesis of the vulnerability

An attacker can generate a fatal error via the search option "Paged Results" in OpenLDAP, in order to trigger a denial of service.
Impacted products: Debian, Fedora, OpenLDAP, openSUSE Leap, RHEL, Ubuntu.
Severity: 2/4.
Creation date: 30/05/2017.
Identifiers: 8655, CVE-2017-9287, DLA-972-1, DSA-3868-1, FEDORA-2017-1ca18683e4, openSUSE-SU-2017:2181-1, RHSA-2017:1852-01, USN-3307-1, USN-3307-2, VIGILANCE-VUL-22861.

Description of the vulnerability

An attacker can generate a fatal error via the search option "Paged Results" in OpenLDAP, in order to trigger a denial of service.

Technical details are unknown.
Complete Vigil@nce bulletin.... (Free trial)

vulnerability CVE-2017-9148

FreeRADIUS: bypass of TLS based flow protection

Synthesis of the vulnerability

An attacker can made FreeRADIUS restore a TLS session before the authentication process complete, in order to tamper with the EAP based authentication.
Impacted products: Debian, Fedora, FreeRADIUS, openSUSE Leap, RHEL, Ubuntu, WindRiver Linux.
Severity: 2/4.
Creation date: 29/05/2017.
Identifiers: CVE-2017-9148, DLA-977-1, FEDORA-2017-7ee5c17024, FEDORA-2017-e698bba980, openSUSE-SU-2017:1609-1, RHSA-2017:1581-01, USN-3316-1, VIGILANCE-VUL-22840.

Description of the vulnerability

An attacker can made FreeRADIUS restore a TLS session before the authentication process complete, in order to tamper with the EAP based authentication.

Technical details are unknown.
Complete Vigil@nce bulletin.... (Free trial)

computer vulnerability alert CVE-2017-9141 CVE-2017-9142 CVE-2017-9143

ImageMagick: four vulnerabilities

Synthesis of the vulnerability

An attacker can use several vulnerabilities of ImageMagick.
Impacted products: Debian, Fedora, openSUSE Leap, Ubuntu.
Severity: 2/4.
Creation date: 29/05/2017.
Identifiers: CVE-2017-9141, CVE-2017-9142, CVE-2017-9143, CVE-2017-9144, DLA-1081-1, DLA-960-1, DSA-3863-1, FEDORA-2017-3a568adb31, FEDORA-2017-8f27031c8f, openSUSE-SU-2017:1511-1, openSUSE-SU-2017:1560-1, USN-3302-1, VIGILANCE-VUL-22826.

Description of the vulnerability

Several vulnerabilities were announced in ImageMagick.

An attacker can force an assertion error via ReadDDSImage(), in order to trigger a denial of service. [severity:1/4; CVE-2017-9141]

An attacker can force an assertion error via ReadOneJNGImage(), in order to trigger a denial of service. [severity:1/4; CVE-2017-9142]

An attacker can create a memory leak via ReadARTImage(), in order to trigger a denial of service. [severity:2/4; CVE-2017-9143]

An attacker can trigger a fatal error via coders/rle.c, in order to trigger a denial of service. [severity:1/4; CVE-2017-9144]
Complete Vigil@nce bulletin.... (Free trial)
Our database contains other pages. You can request a free trial to read them.

Display information about Red Hat Fedora: