Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. The RHSA-2011:1242 Firefox update rendered HTTPS certificates signed by a certain Certificate Authority as untrusted, but made an exception for a select few. This update removes that exception, rendering every HTTPS certificate signed by that CA as untrusted. All Firefox users shoul ...
Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. The RHSA-2011:1242 Firefox update rendered HTTPS certificates signed by a certain Certificate Authority as untrusted, but made an exception for a select few. This update removes that exception, rendering every HTTPS certificate signed by that CA as untrusted. All Firefox users shoul ...
Network Security Services is a set of libraries designed to support the cross-platform development of security-enabled client and server applications. Netscape Portable Runtime provides platform independence for non-GUI operating system facilities. It was found that a Certificate Authority issued fraudulent HTTPS certificates. This update renders any HTTPS certificates signed by that CA as untr ...
Network Security Services is a set of libraries designed to support the cross-platform development of security-enabled client and server applications. Netscape Portable Runtime provides platform independence for non-GUI operating system facilities. It was found that a Certificate Authority issued fraudulent HTTPS certificates. This update renders any HTTPS certificates signed by that CA as untr ...
Network Security Services is a set of libraries designed to support the development of security-enabled client and server applications. This erratum blacklists a small number of HTTPS certificates by adding them, flagged as untrusted, to the NSS Builtin Object Token certificate store. Note: This fix only applies to applications using the NSS Builtin Object Token. It does not blacklist the certi ...
Red Hat OpenShift Container Platform is the company"s cloud computing Platform-as-a-Service solution designed for on-premise or private cloud deployments. This advisory contains RPM packages for this release. See the following advisory for the container images for this release: https://access.redhat.com/errata/RHBA-2018:1240 Security Fix: * source-to-image: Improper path sanitization in ExtractTa ...
linux: Linux kernel Details: USN-4576-1 fixed a vulnerability in the overlay file system implementation in the Linux kernel. Unfortunately, that fix introduced a regression that could incorrectly deny access to overlay files in some situations. This update fixes the problem. We apologize for the inconvenience. Original vulnerability USN-4576-1 introduced a regression in the Linux kernel.
It was discovered that SPIP, a website engine for publishing, would allow a malicious user to perform cross-site scripting attacks, access sensitive information, or execute arbitrary code.
[1.0.1e-60.1] - fix CVE-2017-3731 - DoS via truncated packets with RC4-MD5 cipher - fix CVE-2016-8610 - DoS of single-threaded servers via excessive alerts
[1.1.1c-2] - do not try to use EC groups disallowed in FIPS mode in TLS - fix Valgrind regression with constant-time code [1.1.1c-1] - update to the 1.1.1c release [1.1.1b-6] - adjust the default cert pbe algorithm for pkcs12 -export in the FIPS mode [1.1.1b-5] - Fix small regressions related to the rebase [1.1.1b-3] - FIPS compliance fixes [1.1.1b-1] - update to the 1.1.1b release - EVP_KDF API b ...