Friday, December 4th, 2015

Time	Event
4:05p	Friday's security updates Debian has updated openssl (multiple vulnerabilities) and redis (denial of service). Debian-LTS has updated openssl (memory leak). openSUSE has updated cyrus-imapd (13.1: integer overflow), LibVNCServer (Leap 42.1: multiple vulnerabilities), and python-django (13.2, 13.1: information leak). Red Hat has updated chromium-browser (RHEL6: multiple vulnerabilities) and openshift (RHOSE 3.0, 3.1: information leak). SUSE has updated java-1_6_0-ibm (SLE12: multiple vulnerabilities), java-1_7_1-ibm (SLE11: multiple vulnerabilities), and kernel (SLE12: multiple vulnerabilities). (Comment on this)
4:15p	GnuPG 2.1.10 released Version 2.1.10 of the GNU Privacy Guard is out. There are a number of new features in this release; they include a trust-on-first-use key acceptance mechanism and the ability to fetch public keys anonymously via Tor. (Comment on this)
4:25p	Several OpenSSL security issues fixed The OpenSSL project has released versions 0.9.8zh, 1.0.0t, 1.0.1q, and 1.0.2e with fixes for a number of "moderate" security issues. The announcement also notes that this will be the last update for the 0.9.8 and 1.0.0 branches, so users of those versions are advised to upgrade. (Comment on this)

<< Previous Day

2015/12/04 [Calendar]

Next Day >>