Blog

Several vulnerabilities have been discovered in Exiv2, a C++ library anda command line utility to manage image metadata which could result indenial of service or the execution of arbitrary code if a malformed fileis parsed. More info: https://www.debian.org/security/2018/dsa-4238

Linux kernel vulnerability CVE-2017-9075. Security Advisory. Security Advisory Description. The sctp_v6_create_accept_sk ... More info: https://support.f5.com/csp/article/K02236463

Linux kernel vulnerability CVE-2017-6001. Security Advisory. Security Advisory Description. Race condition in kernel/events ... More info: https://support.f5.com/csp/article/K24578092

Red Hat Enterprise Linux: An update for python is now available for Red Hat Enterprise Linux 7.Red Hat Product Security has rated this update as having a security impact ofModerate. A Common Vulnerability Scoring System (CVSS) base score, which gives adetailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. CVE-2016-2183 More info: http://rhn.redhat.com/errata/RHSA-2018-2123.html

Linux kernel vulnerability CVE-2017-9076. Security Advisory. Security Advisory Description. The dccp_v6_request_recv_sock ... More info: https://support.f5.com/csp/article/K02613439

RSRE Variant 3a vulnerability CVE-2018-3640. Security Advisory. Security Advisory Description. Systems with microprocessors ... More info: https://support.f5.com/csp/article/K51801290

SBB Variant 4 vulnerability CVE-2018-3639. Security Advisory. Security Advisory Description. Systems with microprocessors ... More info: https://support.f5.com/csp/article/K29146534

Linux kernel vulnerability CVE-2016-6786. Security Advisory. Security Advisory Description. kernel/events/core.c in the performance ... More info: https://support.f5.com/csp/article/K20902096

Linux kernel vulnerability CVE-2017-9077. Security Advisory. Security Advisory Description. The tcp_v6_syn_recv_sock ... More info: https://support.f5.com/csp/article/K61429540

After several months of discussion on the mozilla.dev.security.policy mailing list, our Root Store Policy governing Certification Authorities (CAs) that are trusted in Mozilla products has been updated. Version 2.6 has an effective date of July 1st, 2018. More than one … Continue readingThe post Root Store Policy Updated appeared first on Mozilla Security Blog. More info: https://blog.mozilla.org/security/2018/07/02/root-store-policy-updated/