2016-04-21
ALT-BU-2016-2702-1
Branch p7 update bulletin.
Package NetworkManager updated to version 0.9.8.10-alt1.M70P.2.git20150519 for branch p7 in task 163202.
Closed vulnerabilities
Published: 2017-07-17
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2016-0764
Race condition in Network Manager before 1.0.12 as packaged in Red Hat Enterprise Linux Desktop 7, Red Hat Enterprise Linux HPC Node 7, Red Hat Enterprise Linux Server 7, and Red Hat Enterprise Linux Workstation 7 allows local users to obtain sensitive connection information by reading temporary files during ifcfg and keyfile changes.
Severity: MEDIUM (6.2)
Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
References:
Closed vulnerabilities
Published: 2016-08-07
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2016-1951
Multiple integer overflows in io/prprf.c in Mozilla Netscape Portable Runtime (NSPR) before 4.12 allow remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a long string to a PR_*printf function.
Severity: HIGH (8.6)
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
References:
- 92385
- 92385
- 1036590
- 1036590
- USN-3023-1
- USN-3023-1
- https://bugzilla.mozilla.org/show_bug.cgi?id=1174015
- https://bugzilla.mozilla.org/show_bug.cgi?id=1174015
- [dev-tech-nspr] 20160217 [ANNOUNCE] NSPR 4.12 Release
- [dev-tech-nspr] 20160217 [ANNOUNCE] NSPR 4.12 Release
- https://hg.mozilla.org/projects/nspr/rev/96381e3aaae2
- https://hg.mozilla.org/projects/nspr/rev/96381e3aaae2
Closed bugs
Add tstclnt and vfyserv